Merge pull request #60 from questionlp/develop

Upgrade Plotly.js v2 and v3 to latest versions, bump nanoid version to address dependency security vulnerabilities
questionlp · Dec 16, 2024 · 34740e3 · 34740e3
2 parents 33f7a07 + 759d7a7
commit 34740e3
Show file tree

Hide file tree

Showing 8 changed files with 3,902 additions and 7 deletions.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,5 +1,13 @@
 # Changes
 
+## 3.3.1
+
+### Component Changes
+
+- Upgrade Plotly.js v2 from 2.35.2 to 2.35.3
+- Upgrade Ployly.js v3 from 3.0.0-rc.1 to 3.0.0-rc.2
+- Upgrade nanoid from 3.3.7 to 3.3.8 to fix a security vulnerability for a package required to compile, minify and copy generated CSS files
+
 ## 3.3.0
 
 ### Application Changes

diff --git a/app/static/js/plotly-2.35.3.min.js b/app/static/js/plotly-2.35.3.min.js
diff --git a/app/static/js/plotly-3.0.0-rc.2.min.js b/app/static/js/plotly-3.0.0-rc.2.min.js
diff --git a/app/static/js/plotly-latest.min.js b/app/static/js/plotly-latest.min.js
@@ -1 +1 @@
-plotly-2.35.2.min.js
+plotly-2.35.3.min.js
diff --git a/app/static/js/plotly-stable.min.js b/app/static/js/plotly-stable.min.js
@@ -1 +1 @@
-plotly-2.35.2.min.js
+plotly-2.35.3.min.js
diff --git a/app/static/js/plotly-v3.min.js b/app/static/js/plotly-v3.min.js
@@ -1 +1 @@
-plotly-3.0.0-rc.1.min.js
+plotly-3.0.0-rc.2.min.js
diff --git a/app/version.py b/app/version.py
@@ -5,4 +5,4 @@
 # vim: set noai syntax=python ts=4 sw=4:
 """Application Version for Wait Wait Graphs Site."""
 
-APP_VERSION = "3.3.0"
+APP_VERSION = "3.3.1"
diff --git a/package-lock.json b/package-lock.json