Details
-
Tech Debt
-
Status: Closed (View Workflow)
-
P3
-
Resolution: Won't Do
-
None
-
None
-
-
Spitfire
Description
https://www.npmjs.com/package/impagination
is not production ready because
- it hasn't been updated for 7 months
- it depends on binary-search-tree that hasn't been maintained for 7 years: https://www.npmjs.com/package/binary-search-tree
- it depends on babel-runtime that hasn't been maintained for 4 years: https://www.npmjs.com/package/babel-runtime
Unmaintained dependencies put FOLIO at risk because we don't get security updates.
Task:
Either replace impagination, or update it (pull requests against impagination or against a fork, take over maintenance).
TestRail: Results
Attachments
Issue Links
- relates to
-
UIEH-1130 underscore arbitrary code execution (CVE-2021-23358)
-
- Closed
-