Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump moment minor version to mitigate CVE-2016-4055 #1067

Merged
merged 2 commits into from Jul 19, 2016
Merged

Conversation

@kwm4385
Copy link
Contributor

@kwm4385 kwm4385 commented Jun 7, 2016

Ran a dependency analyzer and saw moment had a DDOS vulnerability via regexes. Bumped the minor version with the fix. No breaking changes that I'm aware of.
@wolfd @tpetr

kwm4385 added 2 commits Jun 7, 2016
@tpetr tpetr added the hs_staging label Jun 9, 2016
@tpetr tpetr added the UI label Jul 15, 2016
@ssalinas
Copy link
Member

@ssalinas ssalinas commented Jul 18, 2016

👍

@kwm4385 kwm4385 added hs_qa labels Jul 18, 2016
@ssalinas ssalinas merged commit b7cf517 into master Jul 19, 2016
0 of 2 checks passed
0 of 2 checks passed
continuous-integration/travis-ci/pr The Travis CI build could not complete due to an error
Details
continuous-integration/travis-ci/push The Travis CI build could not complete due to an error
Details
@ssalinas ssalinas deleted the update_moment branch Jul 19, 2016
@ssalinas ssalinas removed hs_qa labels Jul 19, 2016
@ssalinas ssalinas added this to the 0.9.0 milestone Jul 29, 2016
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Linked issues

Successfully merging this pull request may close these issues.

None yet

3 participants
You can’t perform that action at this time.