Bump all dependencies to latest #29
Labels
dependencies
Pull requests that update a dependency file
infra
Related to site infrastructure (building, automation, etc.)
Comments
GZGavinZhao
added
help wanted
This was referenced Dec 3, 2021
|
Gem has been finished, only need to resolve npm dependencies, specifically with the new behavior of |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
All dependencies are very old and some have security issues pointed out by Dependabot.
The npm dependencies are not urgent as we don't actually use them in the building process (very little even if we do use them). The ruby dependencies (gems) should be updated first. Most of the blocking issues pointed out in the Gemfile have already been resolved.
This is medium priority, but since I'm not too familiar with how gem works and dependencies are likely going to break the current site, this might take some time.
The text was updated successfully, but these errors were encountered: