Mercurial > p > roundup > code
comparison doc/upgrading.txt @ 6290:944e4dfcc9b7
issue2551100 - out of date jquery fix security and user.help.html
GitHub security scan flagged instances of older 1.3.2 jquery. Updated
jQuery to current version 3.5.1 and fix user.help.html to have apply
button work.
| author | John Rouillard <rouilj@ieee.org> |
|---|---|
| date | Fri, 27 Nov 2020 00:15:26 -0500 |
| parents | b2eb59ada444 |
| children | bd84f43e1d13 |
comparison
equal
deleted
inserted
replaced
| 6289:6672d92b2ce1 | 6290:944e4dfcc9b7 |
|---|---|
| 26 | 26 |
| 27 Migrating from 2.0.0 to 2.x.x | 27 Migrating from 2.0.0 to 2.x.x |
| 28 ============================= | 28 ============================= |
| 29 | 29 |
| 30 Classname Format Enforced | 30 Classname Format Enforced |
| 31 ========================= | 31 ------------------------- |
| 32 | 32 |
| 33 Check schema.py and look at all Class(), IssueClass(), FileClass() | 33 Check schema.py and look at all Class(), IssueClass(), FileClass() |
| 34 calls. The second argument is the classname. All classnames must: | 34 calls. The second argument is the classname. All classnames must: |
| 35 | 35 |
| 36 * start with an alphabetic character | 36 * start with an alphabetic character |
| 37 * consist of alphanumerics and '_' | 37 * consist of alphanumerics and '_' |
| 38 * not end with a digit | 38 * not end with a digit |
| 39 | 39 |
| 40 this was not enforced before. Using non-standard classnames could lead | 40 this was not enforced before. Using non-standard classnames could lead |
| 41 to other issues. | 41 to other issues. |
| 42 | |
| 43 jQuery updated with updates to user.help.html | |
| 44 --------------------------------------------- | |
| 45 | |
| 46 The devel and responsive templates shipped with an old version of | |
| 47 jQuery with some security issues. It has been updated to the current | |
| 48 version: 3.5.1. If your tracker is based on one of these templates | |
| 49 (see the ``TEMPLATE-INFO.txt`` file in your tracker), remove the old | |
| 50 ``html/jquery.js`` file from your tracker and copy the new | |
| 51 ``jquery-3.5.1.js`` file from the template directory to your tracker's | |
| 52 ``html`` directory. Also copy in the new ``user.help.html`` file. It now | |
| 53 references the new ``jquery-3.5.1.js`` file and also fixes a bug that | |
| 54 prevented applying the change from the helper to the field on the main | |
| 55 form. | |
| 42 | 56 |
| 43 .. index:: Upgrading; 1.6.x to 2.0.0 | 57 .. index:: Upgrading; 1.6.x to 2.0.0 |
| 44 | 58 |
| 45 Migrating from 1.6.X to 2.0.0 | 59 Migrating from 1.6.X to 2.0.0 |
| 46 ============================= | 60 ============================= |