Cdnjs: Can't not update some libs from npm

Created on 13 Jul 2016  路  6Comments  路  Source: cdnjs/cdnjs

The error message:

Found version 2.1.1 of cloudinary-jquery-file-upload, now try to import it.
cloudinary-jquery-file-upload contains a malicious file path: /run/shm/cdnjs_NPM_temp/cloudinary-jquery-file-upload/2.1.1/package
Found version 2.0.9 of cloudinary-jquery-file-upload, now try to import it.
cloudinary-jquery-file-upload contains a malicious file path: /run/shm/cdnjs_NPM_temp/cloudinary-jquery-file-upload/2.0.9/package
Found version 2.1.0 of cloudinary-jquery-file-upload, now try to import it.
cloudinary-jquery-file-upload contains a malicious file path: /run/shm/cdnjs_NPM_temp/cloudinary-jquery-file-upload/2.1.0/package
Library "cloudinary-jquery-file-upload" update finished
Found version 2.0.9 of cloudinary-core, now try to import it.
cloudinary-core contains a malicious file path: /run/shm/cdnjs_NPM_temp/cloudinary-core/2.0.9/package
Found version 2.1.0 of cloudinary-core, now try to import it.
cloudinary-core contains a malicious file path: /run/shm/cdnjs_NPM_temp/cloudinary-core/2.1.0/package
Found version 2.1.1 of cloudinary-core, now try to import it.
cloudinary-core contains a malicious file path: /run/shm/cdnjs_NPM_temp/cloudinary-core/2.1.1/package
Bug
Source
picture PeterDaveHello

Most helpful comment

@pvnr0082t @kennynaoh would you please take a look?

picture PeterDaveHello on 13 Jul 2016
👍2

All 6 comments

@pvnr0082t @kennynaoh would you please take a look?

PeterDaveHello picture PeterDaveHello on 13 Jul 2016
👍2

@PeterDaveHello it seems updates to these repositories are still not detected. The CDNJS versions are 'stuck' on 2.1.2 while the ones on GitHub have tags up to 2.1.5.

And

holtkamp picture holtkamp on 17 Oct 2016

@holtkamp I'll take a look at it, thanks!

PeterDaveHello picture PeterDaveHello on 17 Oct 2016

@holtkamp that two libs are using "npm" auto-update, the upstream didn't update their npm package, would you mind to open issues to them? Once the missing versions been published on npm, we'll grab it, thanks!

PeterDaveHello picture PeterDaveHello on 17 Oct 2016

@PeterDaveHello NPM was updated and CDNJS picked it up, also at 2.1.5 now, thanks for the pointer! Also see https://github.com/cloudinary/cloudinary_js/issues/59#issuecomment-255671689, this issue can be closed!

holtkamp picture holtkamp on 24 Oct 2016

Thanks.

PeterDaveHello picture PeterDaveHello on 24 Oct 2016
Was this page helpful?
0 / 5 - 0 ratings

Related issues

dsinkey picture dsinkey  路  5Comments
netil picture netil  路  5Comments
wolfet picture wolfet  路  4Comments
drees picture drees  路  6Comments
binki picture binki  路  5Comments