[Snyk] Upgrade terser from 5.16.4 to 5.39.0 by MichaelLukowski · Pull Request #80 · uc-cdis/Atlas

MichaelLukowski · 2025-04-28T22:10:12Z

Snyk has created this PR to upgrade terser from 5.16.4 to 5.39.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 58 versions ahead of your current version.
The recommended version was released 3 months ago.

Release notes

Package name: terser

from terser GitHub release notes

Important

Check the changes in this PR to ensure they won't cause issues with your project.
This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

📜 Customise PR templates

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Signed-off-by: Andrew Prokhorenkov <aprokh@uchicago.edu> ...at 6a6e63c

…s for users TODO: This should be made configurable in the future...

…te access to a global shared artifact reader role that would be given to all users. Next steps are to 1) make this configurable, 2) allow users to configure the global author role if they want only some users to be able to grant global read access, and 3) set up global read role for all users as a default assigned system role Other commit messages squashed in here: - first working configuration of sharing using an authoring role - some fixes to global sharing after testing; moved the shared reader role to a new roleid. - started to implement the ability to hide the share-global buttons but then decided not to - changed the 'shared artifact reader' role checked by Atlas to be the 'public' role since this would remove the need to change WebAPI to add a new system role that pretty much duplicates 'public' - added the configurable ability to restrict generation of a given cohort to only persons who have been granted permission to change the same cohort.

…bal sharing ...and introduce some other fixes: - fix: correct styling for sharing buttons on access modal ui - fix: cleanup/remove unnecessary parts - fix: adjust permission name to "artifact:global:share:put" to better reflect its real purpose - fix: better name for isPermittedGlobalShareArtifact (previous name isPermittedGlobalShareCohort did not reflect the fact that it is about all kind of artifacts) - fix: move isOwner() check and make sure it is only applied when !config.limitedPermissionManagement - fix: move isOwner() check for conceptset-manager

based on this discussion OHDSI#2929 (comment)

until we have a final solution for storing cohortdefinitions as part of a workflow run. TODO - remove this once a solution is in place. See https://ctds-planx.atlassian.net/browse/VADC-1177

...because of 508 issues and also because they are not needed

...to improve accessibility

...by adding keyboard support for opening dropdown and submenu and allowing items in submenu to be selected

Security updates

…nceptset subtab

Fix: 508/accessibility issues in Atlas UI

Fix: remove unnecessary parts, improving 508

Create NOTICE file

Display a warning when session expires and force refresh the page

Now checkbox column has a title and items can be selected with keyboard

...not to mention that they are most likely not necessary in these pages and only cause more usability issues by cluttering up the page

…characterization Fix: resolve accessibility/508 issues in cohort-characterization

…rt_characterization_508 Fix: resolve accessibility issues by disabling problematic table buttons

Feat: enable "Characterizations" page

This allows for the correct (more strict) permission check to find place based on the user's permissions on the given cohort-characterization

…_on_cc Fix: add cohort-characterization id to various methods/api calls

…to expiring

Feat: refresh auth token if user is actively using the Atlas UI

Snyk has created this PR to upgrade terser from 5.16.4 to 5.39.0. See this package in npm: terser See this project in Snyk: https://app.snyk.io/org/plan-x/project/2a7c4a8f-a932-4389-9c5a-a5e625369b1e?utm_source=github&utm_medium=referral&page=upgrade-pr

m0nhawk and others added 30 commits November 25, 2024 22:20

ctds integration changes

63ae27a

Signed-off-by: Andrew Prokhorenkov <aprokh@uchicago.edu> ...at 6a6e63c

only show relevant pages

f2d217f

add configuration to pages shown

7833ba6

remove data sources and configuration pages

0fd1bd1

tmp: turn off uncessary initial event, criteria, and attribute option…

cfadd15

…s for users TODO: This should be made configurable in the future...

fix: removing dead code

40eac0f

based on this discussion OHDSI#2929 (comment)

tmp: temporarily disable the delete option for cohortdefinition

37a9bb5

until we have a final solution for storing cohortdefinitions as part of a workflow run. TODO - remove this once a solution is in place. See https://ctds-planx.atlassian.net/browse/VADC-1177

feat: add better caching instruction to headers

a9a19a8

fix: hide menu options until user has logged in

c373db2

dep: some updates

1884d13

back out change after new feature is implememnted

e6968e1

back out backout change

eb98f65

backout temp fix

cc10984

dep: update express to 4.20.0 for vulnerability remediation

72b9b7c

fix: 508 issue in language selector

425b8c7

dep: update express to 4.21.1

4722d14

feat: disable samples and reporting tabs

259b72f

...because of 508 issues and also because they are not needed

feat: add "alt" to OHDSI logo

11151bc

feat: add aria-label to OHDSI doc icon/link

16fd0ef

fix: change role of tabs from "presentation" to "tab"

3938b3d

fix: add "title" attribute to various select items

80ae2fe

...to improve accessibility

fix: improve accessibility in cohort entry criteria dropdown

67bf3d4

...by adding keyboard support for opening dropdown and submenu and allowing items in submenu to be selected

fix: add aria-label to auto-complete fields in "configure access" view

2c6e1a9

fix: Add "Options" label to cohort generation actions column

9103489

fix: add aria-label to cohortExpressionJSON

1562ae3

feat: update datatables.net-buttons to 2.4.2

d5e0eaa

Merge pull request #68 from uc-cdis/dep/sec

aa1c768

Security updates

fix: added a header text to the Concepts table selection column in co…

0ed5b6a

…nceptset subtab

pieterlukasse and others added 29 commits January 14, 2025 21:37

Merge pull request #69 from uc-cdis/fix/508_issues

ac33ac6

Fix: 508/accessibility issues in Atlas UI

Merge pull request #71 from uc-cdis/fix/remove_unnecessary_parts_508

88ee6e2

Fix: remove unnecessary parts, improving 508

Create NOTICE

7391d58

Merge pull request #73 from uc-cdis/beamcb-patch-1

77fc064

Create NOTICE file

Reload window when session is cleared to prevent team project errors

37a7d68

Refresh the whole page not just iframe.

681bc04

fix domain difference

78af190

fix url location

808d878

Merge pull request #76 from uc-cdis/feat/VADC-1600

a7728a4

Display a warning when session expires and force refresh the page

tmp: enable "Characterizations" page again

c0f776c

fix: correct isPermittedGetCC in the context of a "new CC" scenario

cd9625f

fix: fix accessibility/508 issues in cohort-characterization

11bbaed

fix: fix title for save button in feature-analysis

f849986

fix: address 508 issues in multi-select and fa-design

692c084

fix: fix 508 issues in entity-browser

e192a7e

Now checkbox column has a title and items can be selected with keyboard

fix: add titles and aria-labels to multiple places

44b8bbf

fix: fix to remove invalid aria-role attribute

e4f1bdb

fix: resolve accessibility issues by disabling problematic table buttons

df72805

...not to mention that they are most likely not necessary in these pages and only cause more usability issues by cluttering up the page

Merge pull request #74 from uc-cdis/fix/resolve_508_issues_in_cohort_…

650d610

…characterization Fix: resolve accessibility/508 issues in cohort-characterization

Merge pull request #75 from uc-cdis/fix/remove_unnecessary_parts_coho…

09c4a40

…rt_characterization_508 Fix: resolve accessibility issues by disabling problematic table buttons

Merge pull request #72 from uc-cdis/feat/enable_cohort_characterization

0e89028

Feat: enable "Characterizations" page

fix: add cohort-characterization id to various methods/api calls

100c611

This allows for the correct (more strict) permission check to find place based on the user's permissions on the given cohort-characterization

fix: fix typo in createdDate field name

d01c541

fix: use this.characterizationId() and improve code readability

0163fa2

Merge pull request #78 from uc-cdis/fix/isPermittedResults_permission…

63a891a

…_on_cc Fix: add cohort-characterization id to various methods/api calls

feat: refresh auth token if user is actively using the app

0220ae8

fix: update user interaction listener to only refresh token if close …

b8e7a87

…to expiring

Merge pull request #79 from uc-cdis/feat/refresh_token_if_user_is_active

0ba76b1

Feat: refresh auth token if user is actively using the Atlas UI

pieterlukasse force-pushed the 2.15.0-DEV branch from 0ba76b1 to 49f4f94 Compare October 24, 2025 20:28

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Snyk] Upgrade terser from 5.16.4 to 5.39.0#80

[Snyk] Upgrade terser from 5.16.4 to 5.39.0#80
MichaelLukowski wants to merge 70 commits into
2.15.0-DEVfrom
snyk-upgrade-19e8e8942660d17ab187622f681c9f70

MichaelLukowski commented Apr 28, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

7 participants

Conversation

MichaelLukowski commented Apr 28, 2025

Snyk has created this PR to upgrade terser from 5.16.4 to 5.39.0.

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

7 participants