πŸ‡¬πŸ‡§United Kingdom @JamesOakley

Kent, UK
Account created on 9 August 2008, almost 16 years ago
#

Recent comments

πŸ‡¬πŸ‡§United Kingdom JamesOakley Kent, UK

Meanwhile, while we wait for RTBC, please could someone link to the exact patch that works. I get that we're using a merge record for this, but for all my site deployments I'm simply using cweagans composer patches to apply any patches I need to core or contrib, and I'm not clear reading this history as to what patch I need to add to my composer.json file.

πŸ‡¬πŸ‡§United Kingdom JamesOakley Kent, UK

info.yml. file updated to remove Drupal 8 and 9 compatibility, as well as adding Drupal 11 as suggested by the bot in this issue.

The issue is being left open to pick up future API changes.

πŸ‡¬πŸ‡§United Kingdom JamesOakley Kent, UK

info.yml. file updated to remove Drupal 8 and 9 compatibility, as well as adding Drupal 11 as suggested by the bot in this issue.

The issue is being left open to pick up future API changes.

πŸ‡¬πŸ‡§United Kingdom JamesOakley Kent, UK

info.yml. file updated to remove Drupal 8 and 9 compatibility, as well as adding Drupal 11 as suggested by the bot in this issue.

The issue is being left open to pick up future API changes.

πŸ‡¬πŸ‡§United Kingdom JamesOakley Kent, UK

"Never normally critical" may generally be true. But what we're discussing here is a security vulnerability fixed and published upstream by CKEditor (in March 2022), leading the Drupal security team to release a core update to ensure Drupal 9.x and above does not use the vulnerable library. Drupal 7 needs this module to power the editor, and this module does not support the versions of CKEditor that incorporate the security fix.

I'd say allowing site maintainers to update the CKEditor library to one without vulnerabilities is more pressing than "normal".

πŸ‡¬πŸ‡§United Kingdom JamesOakley Kent, UK

I like that thought, and with some jquery dependencies already in core it shouldn't add much overhead to do it.

If someone wants to propose a simple patch that lets a site administrator opt in to have Scripture links open in a modal popup, I'd be happy to test and commit it once it works correctly.

πŸ‡¬πŸ‡§United Kingdom JamesOakley Kent, UK

It seems so, although in your report there's the added detail that the problem may be in the Claro theme, which is why the problem first appeared when it became the default admin theme. Closing πŸ› "Set up database" screen is displayed even when credentials are properly defined Closed: duplicate as a duplicate

Production build 0.69.0 2024