Closed
Bug 1054265
Opened 10 years ago
Closed 8 years ago
Audit and update Python dependencies
Categories
(developer.mozilla.org Graveyard :: General, defect)
Tracking
(Not tracked)
RESOLVED
FIXED
People
(Reporter: jezdez, Assigned: groovecoder)
References
Details
(Keywords: sec-audit, Whiteboard: [specification][type:change])
What feature should be changed? Please provide the URL of the feature if possible. ================================================================================== Python dependencies that are outdated need to be updated. What problems would this solve? =============================== Security issues and outdated APIs. Who would use this? =================== Developers What would users see? ===================== Hopefully nothing What would users do? What would happen as a result? =================================================== n/a Is there anything else we should know? ======================================
Reporter | ||
Comment 1•10 years ago
|
||
https://github.com/mozilla/kuma/issues/1934 is the original ticket about this. We track dependencies at https://requires.io/github/mozilla/kuma/requirements/?branch=master
Updated•10 years ago
|
Assignee: nobody → lcrouch
Assignee | ||
Comment 2•10 years ago
|
||
Adding all MDN devs to cc list of these security bugs.
Reporter | ||
Comment 3•10 years ago
|
||
Upping the priority since we're seeing more issues now.
Severity: normal → critical
Assignee | ||
Comment 4•10 years ago
|
||
Making this depend on 1057293 since that will make it so much easier to update python dependencies.
Depends on: 1057293
Reporter | ||
Comment 5•9 years ago
|
||
Where in the tree fits bug 1110230?
Comment 6•9 years ago
|
||
I'd have it block bug 1054265, but I'm open to other ideas.
Reporter | ||
Comment 7•9 years ago
|
||
https://github.com/mozilla/kuma/pull/3294
Reporter | ||
Comment 8•8 years ago
|
||
We've deployed a bunch of updates yesterday in the Django 1.8 update pull request and got rid of the git submodules based vendoring. Closing this as fixed.
Status: NEW → RESOLVED
Closed: 8 years ago
Resolution: --- → FIXED
Comment 9•8 years ago
|
||
For bugs that are resolved, we remove the security flag. These haven't had their flag removed, so I'm removing it now.
Group: websites-security
Updated•4 years ago
|
Product: developer.mozilla.org → developer.mozilla.org Graveyard
You need to log in
before you can comment on or make changes to this bug.
Description
•