[jbosstools-issues] [JBoss JIRA] (JBDS-3840) Installer: upgrade electon-packager to latest version (security fix)
Pavol Pitonak (JIRA)
issues at jboss.org
Tue Jul 26 03:01:00 EDT 2016
[ https://issues.jboss.org/browse/JBDS-3840?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13270324#comment-13270324 ]
Pavol Pitonak commented on JBDS-3840:
-------------------------------------
Seems to be resolved by https://github.com/redhat-developer-tooling/developer-platform-install/commit/d5682d6e4f6d96479f2437266c3efe49704af8ec
[~jrichter1] please update this issue accordingly
> Installer: upgrade electon-packager to latest version (security fix)
> --------------------------------------------------------------------
>
> Key: JBDS-3840
> URL: https://issues.jboss.org/browse/JBDS-3840
> Project: Red Hat JBoss Developer Studio (devstudio)
> Issue Type: Component Upgrade
> Components: platform-installer
> Affects Versions: 9.1.0.CR1
> Reporter: Pavol Pitonak
> Priority: Critical
> Labels: havoc
> Fix For: 10.1.0.AM2
>
>
> The version of electron-packager that we use doesn't check SSL certificates by default because of this issue \[1]. We should upgrade to latest version ASAP (now 7.0.0).
> \[1] https://github.com/electron-userland/electron-packager/issues/333
--
This message was sent by Atlassian JIRA
(v6.4.11#64026)
More information about the jbosstools-issues
mailing list