fix(security): upgrade jquery and bootstrap (#253)

* Upgrade Bootstrap to v3.4.1 This fixes several [vulnerabilities][0] that are present in the currently used Bootstrap v3.7.1. * Upgrade jQuery to v3.5.1 This fixes several [vulnerabilities][1] that are present in the currently used jQuery 3.2.1. [0]: https://snyk.io/test/npm/bootstrap/3.3.7 [1]: https://snyk.io/test/npm/jquery/3.2.1
bee-queue · Oct 20, 2020 · 14b317b · 14b317b · bogdan · Oct 28, 2020
1 parent 2a268c3
commit 14b317b
Show file tree

Hide file tree

Showing 4 changed files with 11 additions and 19 deletions.
diff --git a/public/bootstrap.min.css b/public/bootstrap.min.css
diff --git a/public/bootstrap.min.js b/public/bootstrap.min.js
diff --git a/public/jquery.min.js b/public/jquery.min.js
diff --git a/src/server/views/layout.hbs b/src/server/views/layout.hbs
@@ -9,7 +9,7 @@
 
     {{#if (useCdn)}}
     <!-- Bootstrap core CSS -->
-    <link rel="stylesheet" href="https://cdn.jsdelivr.net/bootstrap/3.3.7/css/bootstrap.min.css">
+    <link rel="stylesheet" href="https://cdn.jsdelivr.net/bootstrap/3.4.1/css/bootstrap.min.css">
     <!-- JSON Viewer -->
     <link rel="stylesheet" href="//cdnjs.cloudflare.com/ajax/libs/highlight.js/9.12.0/styles/default.min.css">
     <script src="//cdnjs.cloudflare.com/ajax/libs/highlight.js/9.12.0/highlight.min.js"></script>
@@ -60,7 +60,7 @@
 
     <input type="hidden" id="basePath" value="{{ basePath }}">
     {{#if (useCdn)}}
-    <script type="text/javascript" src="//cdn.jsdelivr.net/g/jquery@3.2.1,bootstrap@3.3.7"></script>
+    <script type="text/javascript" src="//cdn.jsdelivr.net/combine/npm/jquery@3.5.1,npm/bootstrap@3.4.1/dist/js/bootstrap.min.js"></script>
     {{else}}
     <script type="text/javascript" src="{{ basePath }}/jquery.min.js"></script>
     <script type="text/javascript" src="{{ basePath }}/bootstrap.min.js"></script>