You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
CVE-2020-11023 mentions that jQuery versions >= 1.03 and < 3.5.0 may be vulnerable to HTML containing option elements. Not sure if this is applicable to patchwork.
The text was updated successfully, but these errors were encountered:
Bumped to 3.6.0 in a741c95. I'm not sure there's much I can do for older stable releases without introducing risks of breakages. Maintainers of instances here will have to handle this themselves.
We really need to get rid of jQuery at some point, likely when we finally bump bootstrap.
CVE-2020-11023 mentions that jQuery versions >= 1.03 and < 3.5.0 may be vulnerable to HTML containing option elements. Not sure if this is applicable to patchwork.
The text was updated successfully, but these errors were encountered: