Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Fix security vulnerabilities that can't be automatically fixed by Dependabot alerts #2119

Open
julianguyen opened this issue Oct 1, 2022 · 1 comment

Comments

@julianguyen
Copy link
Member

julianguyen commented Oct 1, 2022

Description

Update JS and Rails dependencies from this list of Dependabot alerts 🔒

Please make one PR per dependency update! There can be multiple assignees for this issue. Make a comment and state which dependency you'll be upgrading.

You'll be added to a specific org team so you can view the security page. You can't access it by default as an org member.

Do not update the Ruby, Rails, and React versions.


Please assign yourself (via the Assignees dropdown), if you do want to work on this issue. Can't find yourself? You need to join our organization.

Check out our Picking Up Issues guide if you haven't already!

@rohandaxini
Copy link
Contributor

I am checking https://github.com/ifmeorg/ifme/security/dependabot/69 and will create a new issue if necessary.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

No branches or pull requests

3 participants