Security issue

Created on 20 February 2024, 4 months ago

Updated 21 February 2024, 4 months ago

Problem/Motivation

On deploying module to an AWS EC2 and running AWS security scanning the CVE-2023-45133 advisory is triggered on the version of the yarn library manager in the openai_ckeditor sub module

Steps to reproduce

1. Deploy on AWS EC2
2. Run composer install
3. Scan using a tool like app.whiz.io

Proposed resolution

Update packages

Remaining tasks

Test build tools for regression issues

User interface changes

N/A

API changes

N/A

Data model changes

N/A

🐛 Bug report

Status

Needs review

Version

1.0

Component

OpenAI CKEditor

Created by

🇦🇺Australia code poet

Live updates comments and jobs are added and updated live.

Comments & Activities

Issue created by @code poet
Comment 4 months ago →
🇦🇺Australia code poet
Comment 4 months ago →
🇦🇺Australia code poet
Created patch on 1.0.dev branch.
Status changed to Needs review 4 months ago11:02pm 20 February 2024
Comment 4 months ago →
🇦🇺Australia code poet
Comment 4 months ago →
🇦🇺Australia code poet
Issue was unassigned.
Comment 4 months ago →
🇦🇺Australia code poet

contrib.social Blog FAQ Discussions

Production build 0.69.0 2024