Skip to content

added ignore for elliptic vulnerability #139

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Mar 20, 2025
Merged

added ignore for elliptic vulnerability #139

merged 1 commit into from
Mar 20, 2025

Conversation

acharya-deepak
Copy link
Contributor

Description

Resolve pending snyk vulnerabilities or create tickets for unresolvable ones.

Linked JIRA Task or Github Issue

JIRA Task: EDPUB-1471

Github Issue: example

Types of changes

What types of changes does your code introduce to Earthdata Pub (EDPub)?
Put an x in the boxes that apply

  • Bugfix (non-breaking change which fixes an issue)
  • New feature (non-breaking change which adds functionality)
  • Breaking change (fix or feature that would cause existing functionality to not work as expected)
  • Documentation Update (if adding or updating the existing documentation resources)
  • Other (if none of the other choices apply)

Validation Steps

This will help us get a jump start on validating your PR by describing the steps to replicate
and validate the expected behavior. (For an example of good validation instructions, check out Bryan's Bouncy Ball PR.)

  1. Make sure all merge request checks have passed (CI/CD).
  2. Pull related branches locally.
  3. Navigate to make sure build doesn't fail when the code changes are pushed to the branch and also, make sure the application is working as expected.

@acharya-deepak acharya-deepak requested a review from a team as a code owner March 19, 2025 17:16
camposeddie
camposeddie approved these changes Mar 20, 2025
View reviewed changes
Copy link
Contributor

@camposeddie camposeddie left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Unfortunately, this dependency is deeply nested in various dependencies, so instead of continually failing our build processes, we will set an ignore for 1 month then revisit at that time
indutny/elliptic#322

@camposeddie camposeddie merged commit af2d937 into develop Mar 20, 2025
1 check passed
@camposeddie camposeddie deleted the EDPUB-1471 branch March 20, 2025 17:22
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@camposeddie camposeddie camposeddie approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@acharya-deepak @camposeddie