[Systemlibarian University St.Gallen]

Hello

Part of my pre-release workflow is running ‘npm audit –audit-level=critical’, to make sure, my CloudApp wont be rejected.
Now npm tells me, there are 4 critical vulnerabilities, because of ‘ loader-utils’ which is a dependecy of ‘@exlibris/exl-cloudapp-base’.

I tried to add “loader-utils”: “^2.0.4” to my package.json, but it didn’t help.

Can you please give me some advice, on how to solve this issue?
I’m using:
$ eca version
v1.4.4
$ node -v
v13.14.0
$ npm -v
6.14.4

Thank you and br
Jonas

[Mark Gobat]

Hi Jonas…

We are working on an update to the Cloud App SDK.

Are you looking to publish an update to an existing Cloud App, or are you publishing a new Cloud App? We can get it published but may change our method of publication depending on your answer.

Thank you.

-mark

[Systemlibarian University St.Gallen]

Hi Mark

Thank for your quick response!
Currently I need to update an existing Cloud App (https://developers.exlibrisgroup.com/appcenter/print-slip-report/). I would greatly appreciate your help. How should I proceed?

br
Jonas

[Mark Gobat]

Hi Jonas…

Go ahead and submit it for publication at your convenience. I’ll watch for it.

Thank you.

-mark

[Systemlibarian University St.Gallen]

Hi Mark

Thank you very much. I just drafted a release on Github, so the Webhook should be run already.

Best regards
Jonas

[Author]

Posts