From 3fef9557fcc00c2461b8220edb978ae38c91bfe8 Mon Sep 17 00:00:00 2001 From: Atsushi Neki Date: Mon, 28 Sep 2020 21:21:19 +1000 Subject: [PATCH] BE-832 v1.1.3 release Signed-off-by: Atsushi Neki --- CHANGELOG.md | 19 +++++++ README.md | 2 +- client/package-lock.json | 2 +- client/package.json | 2 +- package-lock.json | 2 +- package.json | 2 +- release_notes/v1.1.3.md | 114 +++++++++++++++++++++++++++++++++++++++ 7 files changed, 138 insertions(+), 5 deletions(-) create mode 100644 release_notes/v1.1.3.md diff --git a/CHANGELOG.md b/CHANGELOG.md index 8565edb06..b5f07285a 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,3 +1,22 @@ +## v1.1.3 + +* [a105280](https://github.com/hyperledger/blockchain-explorer/commit/a105280) Fix tsconfig.json for backward compatibility for docker env (#185) +* [65b5001](https://github.com/hyperledger/blockchain-explorer/commit/65b5001) Be 769 convert to ts (#184) +* [571ba55](https://github.com/hyperledger/blockchain-explorer/commit/571ba55) [BE-824](https://jira.hyperledger.org/browse/BE-824) Converted javascript to typescript (#181) +* [74f5f4a](https://github.com/hyperledger/blockchain-explorer/commit/74f5f4a) [BE-823](https://jira.hyperledger.org/browse/BE-823) Convert to TS : app/persistence/... (#180) +* [aa870ea](https://github.com/hyperledger/blockchain-explorer/commit/aa870ea) [BE-822](https://jira.hyperledger.org/browse/BE-822) Converted javascript to typescript (#179) +* [63f77c1](https://github.com/hyperledger/blockchain-explorer/commit/63f77c1) [BE-821](https://jira.hyperledger.org/browse/BE-821) Convert to TS : app/platfrom/... (#178) +* [21d718a](https://github.com/hyperledger/blockchain-explorer/commit/21d718a) [BE-828](https://jira.hyperledger.org/browse/BE-828) Fix transaction timestamps (#177) +* [cc2f637](https://github.com/hyperledger/blockchain-explorer/commit/cc2f637) [BE-827](https://jira.hyperledger.org/browse/BE-827)-security-vulnerability Updated node-forge (#176) +* [7eff791](https://github.com/hyperledger/blockchain-explorer/commit/7eff791) [BE-769](https://jira.hyperledger.org/browse/BE-769) Initial migration (#175) +* [59fa173](https://github.com/hyperledger/blockchain-explorer/commit/59fa173) Fix Security Vulnerability (#174) +* [f875250](https://github.com/hyperledger/blockchain-explorer/commit/f875250) [BE-819](https://jira.hyperledger.org/browse/BE-819) Security Vulnerability - Upgraded bl version (#173) +* [b020de2](https://github.com/hyperledger/blockchain-explorer/commit/b020de2) [BE-814](https://jira.hyperledger.org/browse/BE-814) Fix inconsistency of network key (#172) +* [d8a1d3e](https://github.com/hyperledger/blockchain-explorer/commit/d8a1d3e) [BE-812](https://jira.hyperledger.org/browse/BE-812) Add an index to sequelize option (#171) +* [7be8ad3](https://github.com/hyperledger/blockchain-explorer/commit/7be8ad3) [BE-812](https://jira.hyperledger.org/browse/BE-812) Updated username validation message and rules (#170) +* [33995ec](https://github.com/hyperledger/blockchain-explorer/commit/33995ec) updated maintainer name (#169) +* [9b5246d](https://github.com/hyperledger/blockchain-explorer/commit/9b5246d) [BE-813](https://jira.hyperledger.org/browse/BE-813) Fixed security vulnerability issues (#168) + ## v1.1.2 * [4528879](https://github.com/hyperledger/blockchain-explorer/commit/4528879) [BE-804](https://jira.hyperledger.org/browse/BE-804) Fix Security vulnerability (#167) diff --git a/README.md b/README.md index d1388c94b..7fe1c27e3 100644 --- a/README.md +++ b/README.md @@ -27,13 +27,13 @@ Hyperledger Explorer is a simple, powerful, easy-to-use, well maintained, open s | Hyperledger Explorer Version | Fabric Version Supported | NodeJS Version Supported | | -- | -- | -- | +| [v1.1.3](release_notes/v1.1.3.md) (Sep 28, 2020) | [v1.4.0 to v2.2.0](https://hyperledger-fabric.readthedocs.io/en/release-2.2) | [12.16.x](https://nodejs.org/en/download/releases) | | [v1.1.2](release_notes/v1.1.2.md) (Aug 12, 2020) | [v1.4.0 to v2.2.0](https://hyperledger-fabric.readthedocs.io/en/release-2.2) | [12.16.x](https://nodejs.org/en/download/releases) | | [v1.1.1](release_notes/v1.1.1.md) (Jul 17, 2020) | [v1.4.0 to v2.1.1](https://hyperledger-fabric.readthedocs.io/en/release-2.1) | [12.16.x](https://nodejs.org/en/download/releases) | | [v1.1.0](release_notes/v1.1.0.md) (Jul 01, 2020) | [v1.4.0 to v2.1.1](https://hyperledger-fabric.readthedocs.io/en/release-2.1) | [12.16.x](https://nodejs.org/en/download/releases) | | [v1.0.0](release_notes/v1.0.0.md) (Apr 09, 2020) | [v1.4.0 to v1.4.8](https://hyperledger-fabric.readthedocs.io/en/release-1.4) | [10.19.x](https://nodejs.org/en/download/releases) | | [v1.0.0-rc3](release_notes/v1.0.0-rc3.md) (Apr 01, 2020) | [v1.4.0 to v1.4.6](https://hyperledger-fabric.readthedocs.io/en/release-1.4) | [10.19.x](https://nodejs.org/en/download/releases) | | [v1.0.0-rc2](release_notes/v1.0.0-rc2.md) (Dec 10, 2019) | [v1.4.0 to v1.4.4](https://hyperledger-fabric.readthedocs.io/en/release-1.4) | [8.11.x](https://nodejs.org/en/download/releases) | -| [v1.0.0-rc1](release_notes/v1.0.0-rc1.md) (Nov 18, 2019) | [v1.4.2](https://hyperledger-fabric.readthedocs.io/en/release-1.4) | [8.11.x](https://nodejs.org/en/download/releases) | --- diff --git a/client/package-lock.json b/client/package-lock.json index 716af110c..94d3a2aa3 100644 --- a/client/package-lock.json +++ b/client/package-lock.json @@ -1,6 +1,6 @@ { "name": "hyperledger-explorer-client", - "version": "1.1.2", + "version": "1.1.3", "lockfileVersion": 1, "requires": true, "dependencies": { diff --git a/client/package.json b/client/package.json index 76cd9f6d4..530a10abc 100644 --- a/client/package.json +++ b/client/package.json @@ -1,6 +1,6 @@ { "name": "hyperledger-explorer-client", - "version": "1.1.2", + "version": "1.1.3", "private": true, "license": "Apache-2.0", "dependencies": { diff --git a/package-lock.json b/package-lock.json index a936c01a5..1ecc06e07 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,6 +1,6 @@ { "name": "hyperledger-explorer", - "version": "1.1.2", + "version": "1.1.3", "lockfileVersion": 1, "requires": true, "dependencies": { diff --git a/package.json b/package.json index 84de5944e..696bbcfae 100644 --- a/package.json +++ b/package.json @@ -1,6 +1,6 @@ { "name": "hyperledger-explorer", - "version": "1.1.2", + "version": "1.1.3", "description": "hyperledger-explorer", "private": true, "main": "main.js", diff --git a/release_notes/v1.1.3.md b/release_notes/v1.1.3.md new file mode 100644 index 000000000..c27e016cf --- /dev/null +++ b/release_notes/v1.1.3.md @@ -0,0 +1,114 @@ + + +## Bug Fixes and Updates + +* Fixed issue that network name including spaces cause error (#172) +* Fix transaction timestamps (#177) + +## Known Vulnerabilities + +* `client/package.json` +``` + === npm audit security report === + +# Run npm install @material-ui/core@4.11.0 to resolve 1 vulnerability +SEMVER WARNING: Recommended action is a potentially breaking change +┌───────────────┬──────────────────────────────────────────────────────────────┐ +│ Low │ Denial of Service │ +├───────────────┼──────────────────────────────────────────────────────────────┤ +│ Package │ node-fetch │ +├───────────────┼──────────────────────────────────────────────────────────────┤ +│ Dependency of │ @material-ui/core │ +├───────────────┼──────────────────────────────────────────────────────────────┤ +│ Path │ @material-ui/core > recompose > fbjs > isomorphic-fetch > │ +│ │ node-fetch │ +├───────────────┼──────────────────────────────────────────────────────────────┤ +│ More info │ https://npmjs.com/advisories/1556 │ +└───────────────┴──────────────────────────────────────────────────────────────┘ + + +# Run npm install @material-ui/icons@4.9.1 to resolve 1 vulnerability +SEMVER WARNING: Recommended action is a potentially breaking change +┌───────────────┬──────────────────────────────────────────────────────────────┐ +│ Low │ Denial of Service │ +├───────────────┼──────────────────────────────────────────────────────────────┤ +│ Package │ node-fetch │ +├───────────────┼──────────────────────────────────────────────────────────────┤ +│ Dependency of │ @material-ui/icons │ +├───────────────┼──────────────────────────────────────────────────────────────┤ +│ Path │ @material-ui/icons > recompose > fbjs > isomorphic-fetch > │ +│ │ node-fetch │ +├───────────────┼──────────────────────────────────────────────────────────────┤ +│ More info │ https://npmjs.com/advisories/1556 │ +└───────────────┴──────────────────────────────────────────────────────────────┘ + + +# Run npm install react-redux@7.2.1 to resolve 1 vulnerability +SEMVER WARNING: Recommended action is a potentially breaking change +┌───────────────┬──────────────────────────────────────────────────────────────┐ +│ Low │ Denial of Service │ +├───────────────┼──────────────────────────────────────────────────────────────┤ +│ Package │ node-fetch │ +├───────────────┼──────────────────────────────────────────────────────────────┤ +│ Dependency of │ react-redux │ +├───────────────┼──────────────────────────────────────────────────────────────┤ +│ Path │ react-redux > create-react-class > fbjs > isomorphic-fetch > │ +│ │ node-fetch │ +├───────────────┼──────────────────────────────────────────────────────────────┤ +│ More info │ https://npmjs.com/advisories/1556 │ +└───────────────┴──────────────────────────────────────────────────────────────┘ + + +# Run npm install react-slick@0.27.11 to resolve 1 vulnerability +┌───────────────┬──────────────────────────────────────────────────────────────┐ +│ Low │ Denial of Service │ +├───────────────┼──────────────────────────────────────────────────────────────┤ +│ Package │ node-fetch │ +├───────────────┼──────────────────────────────────────────────────────────────┤ +│ Dependency of │ react-slick │ +├───────────────┼──────────────────────────────────────────────────────────────┤ +│ Path │ react-slick > create-react-class > fbjs > isomorphic-fetch > │ +│ │ node-fetch │ +├───────────────┼──────────────────────────────────────────────────────────────┤ +│ More info │ https://npmjs.com/advisories/1556 │ +└───────────────┴──────────────────────────────────────────────────────────────┘ + + +# Run npm install react-swipeable-views@0.13.9 to resolve 1 vulnerability +┌───────────────┬──────────────────────────────────────────────────────────────┐ +│ Low │ Denial of Service │ +├───────────────┼──────────────────────────────────────────────────────────────┤ +│ Package │ node-fetch │ +├───────────────┼──────────────────────────────────────────────────────────────┤ +│ Dependency of │ react-swipeable-views │ +├───────────────┼──────────────────────────────────────────────────────────────┤ +│ Path │ react-swipeable-views > react-swipeable-views-utils > fbjs > │ +│ │ isomorphic-fetch > node-fetch │ +├───────────────┼──────────────────────────────────────────────────────────────┤ +│ More info │ https://npmjs.com/advisories/1556 │ +└───────────────┴──────────────────────────────────────────────────────────────┘ + + +┌──────────────────────────────────────────────────────────────────────────────┐ +│ Manual Review │ +│ Some vulnerabilities require your attention to resolve │ +│ │ +│ Visit https://go.npm.me/audit-guide for additional guidance │ +└──────────────────────────────────────────────────────────────────────────────┘ +┌───────────────┬──────────────────────────────────────────────────────────────┐ +│ Low │ Denial of Service │ +├───────────────┼──────────────────────────────────────────────────────────────┤ +│ Package │ node-fetch │ +├───────────────┼──────────────────────────────────────────────────────────────┤ +│ Patched in │ >=2.6.1 <3.0.0-beta.1|| >= 3.0.0-beta.9 │ +├───────────────┼──────────────────────────────────────────────────────────────┤ +│ Dependency of │ recompose │ +├───────────────┼──────────────────────────────────────────────────────────────┤ +│ Path │ recompose > fbjs > isomorphic-fetch > node-fetch │ +├───────────────┼──────────────────────────────────────────────────────────────┤ +│ More info │ https://npmjs.com/advisories/1556 │ +└───────────────┴──────────────────────────────────────────────────────────────┘ +found 6 low severity vulnerabilities in 2123 scanned packages +``` + +