Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Onboarding bug fix #3392

Closed
wants to merge 8 commits into from
Closed

Onboarding bug fix #3392

wants to merge 8 commits into from

Conversation

nicolas-amabile
Copy link

What type of PR is this? (check all applicable)

  • Refactor
  • Feature
  • Bug Fix
  • Documentation Update

Description

I've seen that there are some PRs (#3391, #3390 and #3388 for example) failing because of this issue:
Screen Shot 2019-07-06 at 11 58 01 PM

Undefined followedTags on getUserTags (app/javascript/src/Onboarding.jsx file) is not being handle properly.

The first commit (196bcfa) only fixes some ESLint issues, and the following commit (276b8ec) is the actual fix.

Related Tickets & Documents

Mobile & Desktop Screenshots/Recordings (if there are UI changes)

Added to documentation?

  • docs.dev.to
  • readme
  • no documentation needed

@pr-triage pr-triage bot added the PR: unreviewed bot applied label for PR's with no review label Jul 7, 2019
@CLAassistant
Copy link

CLAassistant commented Jul 7, 2019
edited

CLA assistant check
All committers have signed the CLA.

@rhymes
Copy link
Contributor

rhymes commented Jul 7, 2019

Hi, good catch about the improved logic even though that's not why they are failing. That error is indeed logged but if you check closely (just scroll to the end of the build logs) those PRs are not failing because of a JS error but because there's a vulnerability out for omniauth:

ruby-advisory-db: 372 advisories
Name: omniauth
Version: 1.9.0
Advisory: CVE-2015-9284
Criticality: High
URL: https://github.com/omniauth/omniauth/pull/809
Title: CSRF vulnerability in OmniAuth's request phase
Solution: remove or disable this gem until a patch is available!
Vulnerabilities found!
The command "bundle exec bundle-audit check --update" exited with 1.

which unfortunately is blocking all deploys

@nicolas-amabile
Copy link
Author

Hi, good catch about the improved logic even though that's not why they are failing. That error is indeed logged but if you check closely (just scroll to the end of the build logs) those PRs are not failing because of a JS error but because there's a vulnerability out for omniauth:

ruby-advisory-db: 372 advisories
Name: omniauth
Version: 1.9.0
Advisory: CVE-2015-9284
Criticality: High
URL: https://github.com/omniauth/omniauth/pull/809
Title: CSRF vulnerability in OmniAuth's request phase
Solution: remove or disable this gem until a patch is available!
Vulnerabilities found!
The command "bundle exec bundle-audit check --update" exited with 1.

which unfortunately is blocking all deploys

Got it 👍I thought the first error makes the build fail. Thanks!

@weekly-digest weekly-digest bot mentioned this pull request Jul 8, 2019
Closed
@Zhao-Andy
Copy link
Contributor

Hey @nicolas-amabile, thanks for your first PR! We’re actually going to merge it into @aspittel’s PR since she’s been actively working on the onboarding feature itself, and we’ve since taken it in a different direction.

We’ll be happy to proceed once you’ve signed the CLA.

@weekly-digest weekly-digest bot mentioned this pull request Jul 15, 2019
Closed
@maestromac
Copy link
Member

Merged into #3333

@maestromac maestromac closed this Jul 16, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
PR: unreviewed bot applied label for PR's with no review
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
5 participants
@nicolas-amabile @CLAassistant @rhymes @Zhao-Andy @maestromac