Bump plotly.js version to avoid CVE (#6230)

holoviz · Jan 18, 2024 · 3f77369 · 3f77369
1 parent 6601d92
commit 3f77369
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/panel/models/plotly.py b/panel/models/plotly.py
@@ -18,7 +18,7 @@ class PlotlyPlot(LayoutDOM):
 
     __javascript_raw__ = [
         JS_URLS['jQuery'],
-        'https://cdn.plot.ly/plotly-2.18.0.min.js'
+        'https://cdn.plot.ly/plotly-2.25.2.min.js'
     ]
 
     @classproperty
@@ -31,7 +31,7 @@ def __js_skip__(cls):
 
     __js_require__ = {
         'paths': {
-            'plotly': 'https://cdn.plot.ly/plotly-2.18.0.min'
+            'plotly': 'https://cdn.plot.ly/plotly-2.25.2.min'
         },
         'exports': {'plotly': 'Plotly'}
     }