Skip to content

[DDW-1037] Bump version of create-react-context #208

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 4 commits into from
Apr 13, 2022
Merged

[DDW-1037] Bump version of create-react-context #208

merged 4 commits into from
Apr 13, 2022

Conversation

szymonmaslowski
Copy link
Contributor

@szymonmaslowski szymonmaslowski commented Mar 31, 2022
edited
Loading

In order to eliminate vulnerability introduced by the node-fetch < 2.6.7 we need to bump the version of create-react-context which currently brings the vulnerable version of node-fetch in its dependency tree.

Changes:

  • bump of the create-react-context version from 0.2.2 to 0.3.0. It is a seamless upgrade as there is nothing that could affect the react-polymorth that was introduced between those versions (check here)
  • Removed the check for existence of context API in react as this is already done by the create-react-context (check here)

Checks:

  • storybook works correctly

QA Thread

@szymonmaslowski szymonmaslowski self-assigned this Mar 31, 2022
@szymonmaslowski szymonmaslowski requested a review from a team March 31, 2022 09:20
DominikGuzei
DominikGuzei previously approved these changes Mar 31, 2022
View reviewed changes
@DominikGuzei
Copy link
Member

@szymonmaslowski did you do a smoke test for Daedalus too?

@szymonmaslowski
Copy link
Contributor Author

@DominikGuzei No I did not. Will do that. I will locally install RP with my change in the Daedalus and check if it starts correctly. Is that what you mean by the smoke test in this case?

@szymonmaslowski
Copy link
Contributor Author

@DominikGuzei I did the test and it seems to work correclty.

@DominikGuzei DominikGuzei merged commit c4fe9d9 into develop Apr 13, 2022
@DominikGuzei DominikGuzei deleted the chore/ddw-1037-vulnerabilities branch April 13, 2022 08:08
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@renanvalentin renanvalentin renanvalentin approved these changes

@danielmain danielmain danielmain approved these changes

@lucas-barros lucas-barros lucas-barros approved these changes

@przemyslaw-wlodek przemyslaw-wlodek przemyslaw-wlodek approved these changes

@DominikGuzei DominikGuzei Awaiting requested review from DominikGuzei

Assignees

@szymonmaslowski szymonmaslowski

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
6 participants
@szymonmaslowski @DominikGuzei @renanvalentin @danielmain @lucas-barros @przemyslaw-wlodek