New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Update IDP and dependencies #7957
Comments
Asked the kpop devs if we can remove |
@kulmann Assigning you to avoid confusion in the ocis team. |
We made #7988 to mitigate the security concerns. @rhafer voiced his opinion here #7988 (comment) to stay in sync with upstream as much as possible. I'm not in favour of that "busy work" because there are plans to switch to Authelia and nobody here has in depth understanding of the lico ui. Needs a decision. |
Fine for now. |
That alone already sound like a really good reason to stay as close to upstream as possible IMO. Keeping it diverging further makes maintenance even harder.
We have been mumbling about that for a while now. But there has been very little progress, nor a full understanding what we actually need for that. And we'll have to live with lico for at least the whole 5.0.0 lifetime. |
Description
We are approaching a new major release and need to keep the IdP dependencies up to date and free of vulnerabilities.
The text was updated successfully, but these errors were encountered: