[wp-trac] [WordPress Trac] #47020: jQuery Update 3.4.0 vulnerability
WordPress Trac
noreply at wordpress.org
Fri May 17 16:37:40 UTC 2019
#47020: jQuery Update 3.4.0 vulnerability
--------------------------------+-------------------------
Reporter: MikeNGarrett | Owner: azaozz
Type: defect (bug) | Status: reopened
Priority: normal | Milestone: 5.2.1
Component: External Libraries | Version: 5.1.1
Severity: normal | Resolution:
Keywords: fixed-major | Focuses: javascript
--------------------------------+-------------------------
Comment (by desrosj):
After [https://wordpress.slack.com/archives/core-js/p1558102473000400 some
discussion], it seems that the issue in the lock file is trivial.
The correct version of jQuery is being included when building (confirmed
in the build change set), and jQuery only appears to be in the lock file
because it is a specified dependency.
Since everything is checking out except the lock file, this does not seem
like a blocker for 5.2.1-RC!, and can be sorted out after.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/47020#comment:15>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list