Security issues for jQuery < 3.5.0

Question

octaroot opened this issue 3 years ago · comments

According to the CVE report, jquery version < 3.5.0 with a security risk.

Could we please have an update to 3.6.0?
Thank you.

Martin Černáč · Answer 1 · Sat Jun 19 2021 00:30:32 GMT+0800 (China Standard Time)

Sorry, I should clarify - could the 3.6.0 please be marked as a release on GitHub? Changes are otherwise not distributed to https://packagist.org/packages/components/jquery

Bruce Wells · Answer 2 · Fri Aug 20 2021 01:07:48 GMT+0800 (China Standard Time)

Can we get a release tag for 3.6.0? Looks like it was merged back in March, but latest tag is 3.5.1.

Thanks!

Martin Černáč · Answer 3 · Sat Sep 25 2021 00:36:55 GMT+0800 (China Standard Time)

Ignored by maintainers, but resolved by adding a tag for 3.6.0.

Closing