LineageOS/android_development
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
34,349 Commits 2 Branches 0 Tags
67dda587bbf01c26c8c4040083ddeced64f8db3b
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Nataniel Borges 67dda587bb Update dependencies to fix security vulnerability 
npm audit report:

jsonwebtoken  <=8.5.1
Severity: high
jsonwebtoken has insecure input validation in jwt.verify function - https://github.com/advisories/GHSA-27h2-hvpr-p74q
jsonwebtoken's insecure implementation of key retrieval function could lead to Forgeable Public/Private Tokens from RSA to HMAC - https://github.com/advisories/GHSA-hjrf-2m68-5959
jsonwebtoken vulnerable to signature validation bypass due to insecure default algorithm in jwt.verify() - https://github.com/advisories/GHSA-qwph-4952-7xr6
jsonwebtoken unrestricted key type could lead to legacy keys usage  - https://github.com/advisories/GHSA-8cf7-32gw-wr33
fix available via `npm audit fix --force`
Will install auth0@3.0.1, which is a breaking change
node_modules/jsonwebtoken
  auth0  2.13.0 - 3.0.0
  Depends on vulnerable versions of jsonwebtoken
  Depends on vulnerable versions of jwks-rsa
  node_modules/auth0
  jwks-rsa  1.5.1 - 1.12.3
  Depends on vulnerable versions of jsonwebtoken
  node_modules/jwks-rs

Test: npm install && npm run build:all && npm run test:unit
Change-Id: I47dfb353718cd3c40dd7060d2c31cb5e1ebaec43
2022-12-23 15:55:25 +00:00
apps
Add FLAG_IMMUTABLE to PendingIntents
2022-09-23 15:17:52 -07:00
build
Always use prebuilt version of core-lambda-stubs in build-tools am: e52040b4a0 am: ff8ff13b53 am: 082182d3de
2022-12-13 20:31:17 +00:00
cmds/monkey
Fix errorprone warnings that should be errors
2022-10-15 21:33:28 -07:00
docs
Happy New Year!
2016-03-26 20:30:14 -07:00
gki
Update Android 13 GKI KMI symbol files and test
2022-07-12 14:59:15 +08:00
gsi
Remove Python enables identical to global defaults.
2022-09-17 11:33:50 +00:00
host/windows
[LSC] Add LOCAL_LICENSE_KINDS to development
2021-02-12 17:13:45 -08:00
ide
Use the CMakeLists.txt for IS_NEWER_THAN
2022-12-19 17:39:57 -05:00
multitree
Support extra targets for build_vendor script
2022-11-21 22:48:51 +09:00
python-packages
Add logcat APIs.
2022-10-20 17:03:10 -07:00
samples
Support aspect ratio change in PiP demo am: 0373c0b168 am: 5f56b6a2d7
2022-12-07 20:03:33 +00:00
scripts
Merge "update_crate_tests.py: update location of bazel binary"
2022-12-13 16:22:35 +00:00
sdk
Update build tools version to fix b/237299698 am: 0d7a50767b am: cfc8963c7c
2022-12-19 22:35:40 +00:00
sdk_overlay
Move transport out of system server.
2018-09-07 13:57:47 +00:00
sys-img
Add source prop for ATD image.
2021-10-26 21:30:07 +00:00
testrunner
[LSC] Add LOCAL_LICENSE_KINDS to development
2021-04-20 14:03:26 -07:00
tools
Update dependencies to fix security vulnerability
2022-12-23 15:55:25 +00:00
vendor_snapshot
Provide a script to update the generated Android.bp
2022-11-30 04:44:27 +00:00
vndk
Explicitly search header files in abi dumper.
2022-12-15 21:48:11 -08:00
.gitignore
Update Winscope for TaskFragment
2021-06-17 22:01:14 +08:00
Android.bp
Fix license texts.
2022-01-20 19:04:52 +00:00
CleanSpec.mk
Revert "Move SdkSetup.apk to vendor partition"
2018-07-19 12:57:33 +00:00
METADATA
Move comment to license_note
2022-03-03 14:50:46 -08:00
Description
android_development
592 MiB
Languages
PostScript 31.4%
TypeScript 16.9%
C++ 15.5%
Python 11.8%
Java 11.4%
Other 12.7%