Zach Wasserman
4ecc7db6d6
Complete removal of Cypress ( #13389 )
...
Remove the last of the dependencies and configuration around Cypress
since we no longer use it for testing.
2023-08-18 11:06:12 -06:00
dependabot[bot]
d458d25524
Bump word-wrap from 1.2.3 to 1.2.4 ( #12833 )
2023-07-26 11:04:16 -07:00
Jacob Shandling
2855bc8f7f
ChromeOS privacy_preferences table ( #12441 )
...
## Addresses #11037
### Implement the `privacy_preferences` table for the Fleetd Chrome
extension. Columns correspond to the available properties of
[`chrome.privacy`](https://developer.chrome.com/docs/extensions/reference/privacy/ ).
Chrome on mac:
<img width="816" alt="Screenshot 2023-06-23 at 11 55 21 AM"
src="https://github.com/fleetdm/fleet/assets/61553566/a4700749-6325-442e-acf2-c14b1c9adf8f ">
Chromebook with enterprise access (actual use case):
* Chromebook w/o enterprise access: as you can see, sometimes certain
APIs are not available - this error occurs because the expected API
object that would have a `get` method is actually `undefined` TODO – How
to handle this case given that we want to let errors bubble up to the
level at which Fleet can catch them? Maybe it would be nice to catch
such errors and send them up to the Fleet layer, and still allow the
loop to continue to populate the columns whose APIs _are_ available.
_Decision: catch API errors here to preserve functionality of the
remaining columns_
- [x] Changes file
- [x] Manual QA
---------
Co-authored-by: Jacob Shandling <jacob@fleetdm.com>
2023-06-23 14:52:16 -07:00
Luke Heath
ab9e823ac9
Increase software name container width ( #12296 )
2023-06-12 14:57:15 -05:00
Jacob Shandling
1c18765dfa
UI: Security patch ( #12229 )
...
## Addresses
[confidential/2940](https://github.com/fleetdm/confidential/issues/2940 )
Patched a potential security issue in UI
# Checklist for submitter
If some of the following don't apply, delete the relevant line.
- [x] Changes file added for user-visible changes in `changes/`
- [x] Manual QA for all new/changed functionality
---------
Co-authored-by: Jacob Shandling <jacob@fleetdm.com>
2023-06-08 13:13:27 -04:00
Gabriel Hernandez
d027036985
add figma to storybook and a couple new stories ( #11521 )
...
add figma addon to storybook that allows us to link figma designed to
our storybook
2023-05-09 16:53:43 +01:00
Gabriel Hernandez
546225ed35
update storybook to work with webpack 5 and move babelrc into its own file out of package.json ( #11499 )
2023-05-03 17:50:17 +01:00
Zach Wasserman
a14228dd11
Upgrade webpack to v5 ( #11173 )
...
Upgrades webpack and other JS dependencies. This was primarily motivated
by GitHub reporting a vulnerability in Webpack (which shouldn't actually
effect our use of Webpack) and wanting to clean up some tech debt.
Note that equivalent functionality for url-loader and file-loader is now
included in webpack itself.
# Checklist for submitter
If some of the following don't apply, delete the relevant line.
- [x] Manual QA for all new/changed functionality
2023-04-14 07:58:54 -07:00
dependabot[bot]
eb1194a0b4
Bump loader-utils from 1.4.0 to 1.4.2 ( #10234 )
...
Bumps [loader-utils](https://github.com/webpack/loader-utils ) from 1.4.0
to 1.4.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/webpack/loader-utils/releases ">loader-utils's
releases</a>.</em></p>
<blockquote>
<h2>v1.4.2</h2>
<h3><a
href="https://github.com/webpack/loader-utils/compare/v1.4.1...v1.4.2 ">1.4.2</a>
(2022-11-11)</h3>
<h3>Bug Fixes</h3>
<ul>
<li>ReDoS problem (<a
href="https://github-redirect.dependabot.com/webpack/loader-utils/issues/226 ">#226</a>)
(<a
href="17cbf8fa89https://github.com/webpack/loader-utils/compare/v1.4.0...v1.4.1 ">1.4.1</a>
(2022-11-07)</h3>
<h3>Bug Fixes</h3>
<ul>
<li>security problem (<a
href="https://github-redirect.dependabot.com/webpack/loader-utils/issues/220 ">#220</a>)
(<a
href="4504e34c47https://github.com/webpack/loader-utils/blob/v1.4.2/CHANGELOG.md ">loader-utils's
changelog</a>.</em></p>
<blockquote>
<h3><a
href="https://github.com/webpack/loader-utils/compare/v1.4.1...v1.4.2 ">1.4.2</a>
(2022-11-11)</h3>
<h3>Bug Fixes</h3>
<ul>
<li>ReDoS problem (<a
href="https://github-redirect.dependabot.com/webpack/loader-utils/issues/226 ">#226</a>)
(<a
href="17cbf8fa89https://github.com/webpack/loader-utils/compare/v1.4.0...v1.4.1 ">1.4.1</a>
(2022-11-07)</h3>
<h3>Bug Fixes</h3>
<ul>
<li>security problem (<a
href="https://github-redirect.dependabot.com/webpack/loader-utils/issues/220 ">#220</a>)
(<a
href="4504e34c47331ad5067d17cbf8fa89https://github-redirect.dependabot.com/webpack/loader-utils/issues/226 ">#226</a>)</li>
<li><a
href="8f082b39f64504e34c47https://github-redirect.dependabot.com/webpack/loader-utils/issues/220 ">#220</a>)</li>
<li>See full diff in <a
href="https://github.com/webpack/loader-utils/compare/v1.4.0...v1.4.2 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts page](https://github.com/fleetdm/fleet/network/alerts ).
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-03-01 12:39:57 -08:00
dependabot[bot]
12751b853f
Bump json5 from 1.0.1 to 1.0.2 ( #10233 )
...
Bumps [json5](https://github.com/json5/json5 ) from 1.0.1 to 1.0.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/json5/json5/releases ">json5's
releases</a>.</em></p>
<blockquote>
<h2>v1.0.2</h2>
<ul>
<li>Fix: Properties with the name <code>__proto__</code> are added to
objects and arrays. (<a
href="https://github-redirect.dependabot.com/json5/json5/issues/199 ">#199</a>)
This also fixes a prototype pollution vulnerability reported by Jonathan
Gregson! (<a
href="https://github-redirect.dependabot.com/json5/json5/issues/295 ">#295</a>).
This has been backported to v1. (<a
href="https://github-redirect.dependabot.com/json5/json5/issues/298 ">#298</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/json5/json5/blob/main/CHANGELOG.md ">json5's
changelog</a>.</em></p>
<blockquote>
<h3>Unreleased [<a
href="https://github.com/json5/json5/tree/main ">code</a>, <a
href="https://github.com/json5/json5/compare/v2.2.3...HEAD ">diff</a>]</h3>
<h3>v2.2.3 [<a
href="https://github.com/json5/json5/tree/v2.2.3 ">code</a>, <a
href="https://github.com/json5/json5/compare/v2.2.2...v2.2.3 ">diff</a>]</h3>
<ul>
<li>Fix: json5@2.2.3 is now the 'latest' release according to npm
instead of
v1.0.2. (<a
href="https://github-redirect.dependabot.com/json5/json5/issues/299 ">#299</a>)</li>
</ul>
<h3>v2.2.2 [<a
href="https://github.com/json5/json5/tree/v2.2.2 ">code</a>, <a
href="https://github.com/json5/json5/compare/v2.2.1...v2.2.2 ">diff</a>]</h3>
<ul>
<li>Fix: Properties with the name <code>__proto__</code> are added to
objects and arrays.
(<a
href="https://github-redirect.dependabot.com/json5/json5/issues/199 ">#199</a>)
This also fixes a prototype pollution vulnerability reported by
Jonathan Gregson! (<a
href="https://github-redirect.dependabot.com/json5/json5/issues/295 ">#295</a>).</li>
</ul>
<h3>v2.2.1 [<a
href="https://github.com/json5/json5/tree/v2.2.1 ">code</a>, <a
href="https://github.com/json5/json5/compare/v2.2.0...v2.2.1 ">diff</a>]</h3>
<ul>
<li>Fix: Removed dependence on minimist to patch CVE-2021-44906. (<a
href="https://github-redirect.dependabot.com/json5/json5/issues/266 ">#266</a>)</li>
</ul>
<h3>v2.2.0 [<a
href="https://github.com/json5/json5/tree/v2.2.0 ">code</a>, <a
href="https://github.com/json5/json5/compare/v2.1.3...v2.2.0 ">diff</a>]</h3>
<ul>
<li>New: Accurate and documented TypeScript declarations are now
included. There
is no need to install <code>@types/json5</code>. (<a
href="https://github-redirect.dependabot.com/json5/json5/issues/236 ">#236</a>,
<a
href="https://github-redirect.dependabot.com/json5/json5/issues/244 ">#244</a>)</li>
</ul>
<h3>v2.1.3 [<a
href="https://github.com/json5/json5/tree/v2.1.3 ">code</a>, <a
href="https://github.com/json5/json5/compare/v2.1.2...v2.1.3 ">diff</a>]</h3>
<ul>
<li>Fix: An out of memory bug when parsing numbers has been fixed. (<a
href="https://github-redirect.dependabot.com/json5/json5/issues/228 ">#228</a>,
<a
href="https://github-redirect.dependabot.com/json5/json5/issues/229 ">#229</a>)</li>
</ul>
<h3>v2.1.2 [<a
href="https://github.com/json5/json5/tree/v2.1.2 ">code</a>, <a
href="https://github.com/json5/json5/compare/v2.1.1...v2.1.2 ">diff</a>]</h3>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="a62db1e51ee0c23fe45862a6540840https://github.com/json5/json5/compare/v1.0.1...v1.0.2 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts page](https://github.com/fleetdm/fleet/network/alerts ).
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-03-01 12:39:29 -08:00
Zach Wasserman
515cdb918c
Replace import-glob-loader with node-sass-glob-importer ( #10171 )
...
import-glob-loader has a very old loader-utils dependency that triggers
security alerting. Hoping that replacing this will allow the
loader-utils version to be updated.
# Checklist for submitter
If some of the following don't apply, delete the relevant line.
- [x] Manual QA for all new/changed functionality
2023-03-01 12:33:42 -08:00
Zach Wasserman
8f083f8d4c
Move JS deps to devDependencies ( #10155 )
...
Many of these dependencies are only used in development.
2023-02-28 09:13:30 -08:00
Luke Heath
bc2c6e59f5
Update node-sass frontend dependency ( #9954 )
...
Due to the update in https://github.com/fleetdm/fleet/pull/9950 we need
to update our version of `node-sass` to support Node 19.
2023-02-20 14:23:19 -06:00
dependabot[bot]
47543707ac
Bump http-cache-semantics from 4.1.0 to 4.1.1 ( #9685 )
...
Bumps
[http-cache-semantics](https://github.com/kornelski/http-cache-semantics )
from 4.1.0 to 4.1.1.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="2449650435560b2d8ef4b1bdb92638c20dc7eecahttps://github.com/kornelski/http-cache-semantics/compare/v4.1.0...v4.1.1 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts page](https://github.com/fleetdm/fleet/network/alerts ).
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-13 10:19:15 -06:00
Luke Heath
5b9ad6946e
Removed unused frontend dependencies, updated axios ( #9389 )
2023-01-23 12:07:26 -06:00
dependabot[bot]
7595cb63a0
Bump express from 4.16.3 to 4.17.3 ( #8943 )
...
Bumps [express](https://github.com/expressjs/express ) from 4.16.3 to 4.17.3.
- [Release notes](https://github.com/expressjs/express/releases )
- [Changelog](https://github.com/expressjs/express/blob/master/History.md )
- [Commits](https://github.com/expressjs/express/compare/4.16.3...4.17.3 )
---
updated-dependencies:
- dependency-name: express
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-15 17:03:27 -06:00
dependabot[bot]
b7e44e4b2e
Bump decode-uri-component from 0.2.0 to 0.2.2 ( #8912 )
...
Bumps [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component ) from 0.2.0 to 0.2.2.
- [Release notes](https://github.com/SamVerschueren/decode-uri-component/releases )
- [Commits](https://github.com/SamVerschueren/decode-uri-component/compare/v0.2.0...v0.2.2 )
---
updated-dependencies:
- dependency-name: decode-uri-component
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-06 16:26:36 -06:00
Gabriel Hernandez
bcfd000adf
integration test device user page with mock and custom renderer ( #8475 )
2022-11-01 18:59:40 +00:00
Gabriel Hernandez
6febfce2d2
update jest setup and move config to its own file ( #8258 )
2022-10-25 14:17:32 +01:00
Gabriel Hernandez
a950e9d095
Feat/update query doc sidepanel ( #8214 )
...
* create new components for query side panel
* add reusable icon component that uses svg for icons
* integrate with new osquery_fleet_schema.json data
* update UI to work with osquery_fleet_schema.json
* add remark-gfm to safely support direct urls in markdown
* move fleet ace into markdown component so we can render code with ace editor
* add testing for new query sidebar
* remove incomplete tests for query sidepanel
2022-10-14 17:45:57 +01:00
Luke Heath
65840ecf82
Fix pack dropdown function call, lock npm dependencies ( #7781 )
2022-09-15 11:46:48 -05:00
Luke Heath
289dc97ec5
Remove require-hacker from npm dependencies ( #7691 )
2022-09-12 12:52:34 -05:00
dependabot[bot]
ff844114aa
Bump core-js from 3.21.1 to 3.25.1 ( #7654 )
...
Bumps [core-js](https://github.com/zloirock/core-js ) from 3.21.1 to 3.25.1.
- [Release notes](https://github.com/zloirock/core-js/releases )
- [Changelog](https://github.com/zloirock/core-js/blob/master/CHANGELOG.md )
- [Commits](https://github.com/zloirock/core-js/compare/v3.21.1...v3.25.1 )
---
updated-dependencies:
- dependency-name: core-js
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-09-12 10:44:26 -05:00
Gabriel Hernandez
f1995bf79e
Fleet UI update to testing tooling user-event library ( #7514 )
...
* adding FE testing documentation
* extend radio button tests
* update test to work with new user-events lib version
* more testing docs
2022-09-12 16:10:10 +01:00
dependabot[bot]
a07c529f66
Bump normalizr from 2.3.1 to 3.6.2 ( #7569 )
...
Bumps [normalizr](https://github.com/paularmstrong/normalizr ) from 2.3.1 to 3.6.2.
- [Release notes](https://github.com/paularmstrong/normalizr/releases )
- [Changelog](https://github.com/paularmstrong/normalizr/blob/master/CHANGELOG.md )
- [Commits](https://github.com/paularmstrong/normalizr/compare/2.3.1...v3.6.2 )
---
updated-dependencies:
- dependency-name: normalizr
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-09-12 09:49:50 -05:00
dependabot[bot]
f85b863dc0
Bump react-router-transition from 0.1.1 to 1.2.1 ( #7563 )
...
Bumps [react-router-transition](https://github.com/maisano/react-router-transition ) from 0.1.1 to 1.2.1.
- [Release notes](https://github.com/maisano/react-router-transition/releases )
- [Changelog](https://github.com/maisano/react-router-transition/blob/master/HISTORY.md )
- [Commits](https://github.com/maisano/react-router-transition/compare/v0.1.1...v1.2.1 )
---
updated-dependencies:
- dependency-name: react-router-transition
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-09-02 14:17:17 -05:00
dependabot[bot]
4b833ee618
Bump es6-promise from 4.2.4 to 4.2.8 ( #7539 )
...
Bumps [es6-promise](https://github.com/stefanpenner/es6-promise ) from 4.2.4 to 4.2.8.
- [Release notes](https://github.com/stefanpenner/es6-promise/releases )
- [Changelog](https://github.com/stefanpenner/es6-promise/blob/master/CHANGELOG.md )
- [Commits](https://github.com/stefanpenner/es6-promise/compare/v4.2.4...v4.2.8 )
---
updated-dependencies:
- dependency-name: es6-promise
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-09-02 13:28:26 -05:00
dependabot[bot]
4930616bbb
Bump axios from 0.21.4 to 0.27.2 ( #7505 )
...
Bumps [axios](https://github.com/axios/axios ) from 0.21.4 to 0.27.2.
- [Release notes](https://github.com/axios/axios/releases )
- [Changelog](https://github.com/axios/axios/blob/v0.27.2/CHANGELOG.md )
- [Commits](https://github.com/axios/axios/compare/v0.21.4...v0.27.2 )
---
updated-dependencies:
- dependency-name: axios
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Luke Heath <luke@fleetdm.com>
2022-09-01 16:25:27 -05:00
Gabriel Hernandez
9f9cb597fa
remove unused code and change copy ( #7376 )
2022-08-24 15:45:32 +01:00
Gabriel Hernandez
041920bcaf
Implement dropdown for label filters on manage hosts page ( #7300 )
...
* add label filter dropdown to the manage host page table
* increase label filter select width
* improve responsive styling for manage host page
2022-08-24 13:38:43 +01:00
Gabriel Hernandez
f61a17bd9b
add google analytics to sandbox instances ( #6941 )
...
* add google analytics to sandbox instances
* Add serverType variable to frontend handler
* update version of html-webpack-plugin
Co-authored-by: Lucas Rodriguez <lucas@fleetdm.com>
2022-08-01 11:27:12 +01:00
Zach Wasserman
3290eb5fd7
Update SockJS client ( #6048 )
...
Mainly motivated by update to eventsource dependency to address
CVE-2022-1650. This polyfill would have been unused by all modern
browsers.
2022-06-02 16:44:07 -07:00
Tharun Rajendran
3b21e8630b
chore(test): remove enzyme from the package.json ( #5359 )
2022-04-25 20:28:41 -05:00
Martavis Parker
384c987389
Removed all traces of Redux from the app! ( #5287 )
...
* clean up routes and useless components
* component clean up
* removed redux from routes
* rename file
* moved useDeepEffect hook with others
* removed redux, fleet, app_constants dirs; added types to utilities
* style cleanup
* typo fix
* removed unused ts-ignore comments
* removed redux packages!!!
* formatting
* fixed typing for simple search function
* updated frontend readme
2022-04-22 09:45:35 -07:00
dependabot[bot]
b55e8e336f
Bump async from 2.6.3 to 2.6.4 ( #5194 )
...
Bumps [async](https://github.com/caolan/async ) from 2.6.3 to 2.6.4.
- [Release notes](https://github.com/caolan/async/releases )
- [Changelog](https://github.com/caolan/async/blob/v2.6.4/CHANGELOG.md )
- [Commits](https://github.com/caolan/async/compare/v2.6.3...v2.6.4 )
---
updated-dependencies:
- dependency-name: async
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-18 17:51:14 -07:00
dependabot[bot]
d24ec5fbba
Bump minimist from 1.2.5 to 1.2.6 ( #4783 )
...
Bumps [minimist](https://github.com/substack/minimist ) from 1.2.5 to 1.2.6.
- [Release notes](https://github.com/substack/minimist/releases )
- [Commits](https://github.com/substack/minimist/compare/1.2.5...1.2.6 )
---
updated-dependencies:
- dependency-name: minimist
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-04-04 11:58:50 -07:00
Luke Heath
48f85cfb17
Optimize webpack using esbuild-loader ( #4586 )
2022-03-15 09:45:34 -05:00
Luke Heath
a9d2d28495
Version bump frontend dependencies ( #4577 )
2022-03-14 11:59:05 -05:00
Luke Heath
df08b40eb8
Update dependencies to resolve dependabot alerts ( #4396 )
2022-03-01 11:02:05 -06:00
dependabot[bot]
1a110e918c
Bump url-parse from 1.5.6 to 1.5.10 ( #4386 )
...
Bumps [url-parse](https://github.com/unshiftio/url-parse ) from 1.5.6 to 1.5.10.
- [Release notes](https://github.com/unshiftio/url-parse/releases )
- [Commits](https://github.com/unshiftio/url-parse/compare/1.5.6...1.5.10 )
---
updated-dependencies:
- dependency-name: url-parse
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-02-28 13:34:59 -06:00
Luke Heath
0aac17d035
Bump isomorphic-fetch and css-loader ( #4302 )
2022-02-28 10:32:19 -06:00
gillespi314
7e95a48096
Improve UX for async filtering in select targets component ( #4349 )
2022-02-25 13:04:05 -06:00
Luke Heath
fbfc77150f
Version bump prop-types and storybook ( #4236 )
2022-02-16 17:09:41 -06:00
Martavis Parker
d536aad63e
Removed moment.js in favor of date-fns ( #4238 )
...
* removed moment.js in favor of date-fns
* updated yarn and unit test
* fixed e2e test
2022-02-16 15:01:05 -08:00
dependabot[bot]
06e7d5472f
Bump node-sass from 6.0.1 to 7.0.0 ( #4148 )
...
Bumps [node-sass](https://github.com/sass/node-sass ) from 6.0.1 to 7.0.0.
- [Release notes](https://github.com/sass/node-sass/releases )
- [Changelog](https://github.com/sass/node-sass/blob/master/CHANGELOG.md )
- [Commits](https://github.com/sass/node-sass/compare/v6.0.1...v7.0.0 )
---
updated-dependencies:
- dependency-name: node-sass
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-02-15 10:09:11 -06:00
dependabot[bot]
7aaba70d5b
Bump follow-redirects from 1.14.5 to 1.14.8 ( #4184 )
...
Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects ) from 1.14.5 to 1.14.8.
- [Release notes](https://github.com/follow-redirects/follow-redirects/releases )
- [Commits](https://github.com/follow-redirects/follow-redirects/compare/v1.14.5...v1.14.8 )
---
updated-dependencies:
- dependency-name: follow-redirects
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-02-15 10:07:21 -06:00
Martavis Parker
349a88e25b
Forcing 404 page where entity ids do not exist ( #3833 )
...
* Allow sort by more than one key
* forcing 404 page where entity ids do not exist
* refactored error boundary; handling 404s now
* added 403 overlay; refactored auth wrappers
* fixed test for maintainer
* more efficient fetches; test fixes
* clarify comment
* clean up
Co-authored-by: Tomas Touceda <chiiph@gmail.com>
2022-01-27 14:10:12 -08:00
Luke Heath
7161160a9f
Audit UI logic and remove redundant initializations ( #3574 )
2022-01-05 21:41:52 -06:00
Luke Heath
f6a74f69c9
Refine create policy UI flow ( #3379 )
2021-12-16 12:09:10 -06:00
Zach Wasserman
2b8502ad61
Upgrade node-sass for Node 16 compatibility ( #2863 )
2021-11-09 14:33:33 -08:00
