Roadmap to fix XSLX vulnerabilty #609

digital-codes · 2023-10-21T10:05:54Z

digital-codes
Oct 21, 2023

The master branch has a dependency on a vulnerable XLSX version which is fixed in the dev branch already. What keeps you from upgrading the master branch for so long? Any help on particular topics required?

ZandercraftGames · 2025-03-26T19:53:22Z

ZandercraftGames
Mar 26, 2025

Agreed. It's a year later and they still have these changes sitting on the dev branch. When will we get a new NPM release with these changes?

0 replies

RahulDas-dev · 2025-03-31T03:25:14Z

RahulDas-dev
Mar 31, 2025

They are not maintaining this repo.

If anyone is interested, we can clone it and create a new package with the same functionality.

3 replies

digital-codes Apr 1, 2025
Author

Jeah, not much happened here in the last 2 years ... Well, browser based data processing in not so interesting given the limitations imposed by CORS when accessing resources. Anyway, browser based demos or educational tools are usefull, I believe. I started a couple of thing a while ago, basically aiming for a simplified version of https://orangedatamining.com/ or https://www.knime.com/ in the browser to show people how to use open data (and to get some data skills).
Not sure if it makes sense to continue on this repo (which is a pity, though) ...

ZandercraftGames Apr 2, 2025

Looks like we just got some updates! Woo!

risenW Apr 2, 2025
Maintainer

Yeah, sorry for the delay on this. I'm reviewing existing PRs, and fixing some high priority issues. Will be releasing a new version tomorrow.

ZandercraftGames · 2025-04-02T15:25:02Z

ZandercraftGames
Apr 2, 2025

Awesome! Thanks so much! :)

…

________________________________ From: Rising Odegua ***@***.***> Sent: Wednesday, April 2, 2025 11:23:05 a.m. To: javascriptdata/danfojs ***@***.***> Cc: Zander ***@***.***>; Comment ***@***.***> Subject: Re: [javascriptdata/danfojs] Roadmap to fix XSLX vulnerabilty (Discussion #609) Yeah, sorry for the delay on this. I'm reviewing existing PRs, and fixing some high priority issues. Will be releasing a new version tomorrow. — Reply to this email directly, view it on GitHub<#609 (reply in thread)>, or unsubscribe<https://github.com/notifications/unsubscribe-auth/AG2WCUEKKIXNPW7RZGPDQNL2XP6FRAVCNFSM6AAAAABZ3HAOUOVHI2DSMVQWIX3LMV43URDJONRXK43TNFXW4Q3PNVWWK3TUHMYTENZQGI2TAMI>. You are receiving this because you commented.

0 replies

risenW · 2025-04-03T23:02:37Z

risenW
Apr 3, 2025
Maintainer

New version 1.2.0 has been released with this fix.

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Roadmap to fix XSLX vulnerabilty #609

{{title}}

Replies: 4 comments 3 replies

{{title}}

{{title}}

{{editor}}'s edit

{{editor}}'s edit

{{title}}

{{title}}

{{title}}

{{title}}

{{title}}

Select a reply

Roadmap to fix XSLX vulnerabilty #609

digital-codes Oct 21, 2023

Replies: 4 comments · 3 replies

ZandercraftGames Mar 26, 2025

RahulDas-dev Mar 31, 2025

digital-codes Apr 1, 2025 Author

ZandercraftGames Apr 2, 2025

risenW Apr 2, 2025 Maintainer

ZandercraftGames Apr 2, 2025

risenW Apr 3, 2025 Maintainer

digital-codes
Oct 21, 2023

Replies: 4 comments 3 replies

ZandercraftGames
Mar 26, 2025

RahulDas-dev
Mar 31, 2025

digital-codes Apr 1, 2025
Author

risenW Apr 2, 2025
Maintainer

ZandercraftGames
Apr 2, 2025

risenW
Apr 3, 2025
Maintainer