Skip to content

vdk-jupyter: research on updating jupyterlab dependencies to v4 #2587

New issue
New issue
Open
Open
vdk-jupyter: research on updating jupyterlab dependencies to v4#2587
Assignees
gabrielgeorgiev1
Labels
enhancementNew feature or requestinitiative: VDK Notebooks BetaThis is all the work to accomplish the VDK notebooks beta integration
Milestone
VDK Notebook Beta
@duyguHsnHsn

Description

@duyguHsnHsn
duyguHsnHsn
opened on Aug 21, 2023

What is the feature request? What problem does it solve?
Some dependencies we have on vdk-jupyterlab-extension use an older version of a "marked" npm package which has security vulnerabilities:

Screenshot 2023-08-21 at 9 48 49

The packages we use that has this package as dependency are:
Screenshot 2023-08-21 at 9 49 08

Apparently, the vulnerability is solved in the latest versions of the jupyterlab packages (4.0.10 at the time), but since these packages are freshly released and new bugs are yet being found it is not feasible to use them in the extension, yet.

The main idea of this ticket is to investigate after some time (at least 1 month after the release of the v4 packages) and to see whether they are compatible with the jupyterlab extensions and whether they have still have issues.

Acceptance criteria

  1. Find the latest most stable Jupyter version
  2. Remove as many deprecated packages as possible
  3. Test the UI components
  4. Fix broken UI components (open different tickets for this work if necessary)

Metadata

Metadata

Assignees

Labels

enhancementNew feature or requestinitiative: VDK Notebooks BetaThis is all the work to accomplish the VDK notebooks beta integration

Type

No type

Projects

No projects

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions