Sonar dependency update, round 3.

Review Request #12469 — Created July 13, 2022 and submitted

Information

student-sonar
master

Reviewers

This change updates a few more dependencies, and gets rid of some things
that we actually don't need:

  • Passport has been updated to the latest, and the slack stragegy has
    been switched over to a different implementation which is actually
    being maintained.
  • Changed to importing the standalone build for selectize, which lets us
    get rid of the explicit sifter dependency. sifter was depending on
    some vulnerable versions of other libraries. The standalone Selectize
    bundles a newer version of selectize which doesn't have this problem.
  • The published versions of scss libraries have some security problems.
    We're not importing any SCSS files, so all of this can just go away.
  • We're no longer using gulp-shell at all.

Verified that login/logout still worked correctly. Checked build and
basic functionality.

Summary ID
Sonar dependency update, round 3.
This change updates a few more dependencies, and gets rid of some things that we actually don't need: - Passport has been updated to the latest, and the slack stragegy has been switched over to a different implementation which is actually being maintained. - Changed to importing the standalone build for selectize, which lets us get rid of the explicit `sifter` dependency. `sifter` was depending on some vulnerable versions of other libraries. The standalone Selectize bundles a newer version of selectize which doesn't have this problem. - The published versions of scss libraries have some security problems. We're not importing any SCSS files, so all of this can just go away. - We're no longer using gulp-shell at all. Testing Done: Verified that login/logout still worked correctly. Checked build and basic functionality.
8291819b91f1f4fd86d54180c05105bd0680034f
maubin
  1. Ship It!
  2. 
      
david
Review request changed
Status:
Completed
Change Summary:
Pushed to master (e0b7827)