privilegedescalation-engineer[bot]
58c9597388
* fix: override lodash >=4.18.0 to patch code injection vulnerability GHSA-r5fr-rjxr-66jc is a code injection vulnerability in lodash below 4.18.0. The vulnerable transitive dependency comes through @kinvolk/headlamp-plugin. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com> * fix: update pnpm-lock.yaml to satisfy lodash override The package.json pnpm.overrides requires lodash >=4.18.0, but the lockfile had an older version. Regenerated lockfile with pnpm install. Co-Authored-By: Paperclip <noreply@paperclip.ing> * fix(e2e): scope heading locators to main content area Fix E2E test failures by scoping heading locators to the main content area instead of searching the entire page. This prevents matching headings in the sidebar or other non-content areas. Co-Authored-By: Paperclip <noreply@paperclip.ing> * fix(e2e): scope remaining getByText to main element The 'Cluster Score' text matcher was still searching the entire page instead of being scoped to the main content area. This could cause false positives if the same text appears in the sidebar. Co-Authored-By: Paperclip <noreply@paperclip.ing> * ci: trigger fresh E2E run Re-pushing to trigger a new CI run since the last E2E was cancelled. Co-Authored-By: Paperclip <noreply@paperclip.ing> * fix(e2e): use [role=main] instead of main element Switch from 'main' element selector to '[role="main"]' attribute selector for better compatibility with Headlamp's app structure. Co-Authored-By: Paperclip <noreply@paperclip.ing> * fix(e2e): hybrid approach - unscoped headings, main-scoped text Use broader heading selectors matching intel-gpu pattern, but keep text checks scoped to main element to avoid sidebar conflicts. Co-Authored-By: Paperclip <noreply@paperclip.ing> * ci: re-test original code to verify baseline --------- Co-authored-by: Gandalf the Greybeard <gandalf@privilegedescalation.dev> Co-authored-by: Claude Opus 4.7 <noreply@anthropic.com> Co-authored-by: Paperclip <noreply@paperclip.ing>
65 lines
1.9 KiB
JSON
65 lines
1.9 KiB
JSON
{
|
|
"name": "headlamp-polaris",
|
|
"version": "1.0.0",
|
|
"description": "Headlamp plugin for Fairwinds Polaris audit results",
|
|
"repository": {
|
|
"type": "git",
|
|
"url": "https://github.com/privilegedescalation/headlamp-polaris-plugin.git"
|
|
},
|
|
"bugs": {
|
|
"url": "https://github.com/privilegedescalation/headlamp-polaris-plugin/issues"
|
|
},
|
|
"homepage": "https://github.com/privilegedescalation/headlamp-polaris-plugin#readme",
|
|
"author": "privilegedescalation",
|
|
"license": "Apache-2.0",
|
|
"packageManager": "pnpm@10.32.1",
|
|
"scripts": {
|
|
"start": "headlamp-plugin start",
|
|
"build": "headlamp-plugin build",
|
|
"package": "headlamp-plugin package",
|
|
"tsc": "tsc --noEmit",
|
|
"lint": "eslint --ext .ts,.tsx src/",
|
|
"lint:fix": "eslint --ext .ts,.tsx --fix src/",
|
|
"format": "prettier --write src/",
|
|
"format:check": "prettier --check src/",
|
|
"test": "vitest run",
|
|
"test:watch": "vitest",
|
|
"e2e": "playwright test",
|
|
"e2e:headed": "playwright test --headed"
|
|
},
|
|
"peerDependencies": {
|
|
"react": "^18.0.0",
|
|
"react-dom": "^18.0.0"
|
|
},
|
|
"pnpm": {
|
|
"overrides": {
|
|
"tar": "^7.5.11",
|
|
"undici": "^7.24.3",
|
|
"flatted": "^3.4.2",
|
|
"lodash": ">=4.18.0"
|
|
}
|
|
},
|
|
"devDependencies": {
|
|
"@kinvolk/headlamp-plugin": "^0.13.0",
|
|
"@mui/material": "^5.15.14",
|
|
"@playwright/test": "^1.58.2",
|
|
"@testing-library/jest-dom": "^6.4.8",
|
|
"@testing-library/react": "^16.0.0",
|
|
"@testing-library/user-event": "^14.5.2",
|
|
"@types/react": "^19.2.14",
|
|
"@types/react-dom": "^19.2.3",
|
|
"@vitest/coverage-v8": "^3.2.4",
|
|
"@headlamp-k8s/eslint-config": "^0.6.0",
|
|
"eslint": "^8.57.0",
|
|
"jsdom": "^24.0.0",
|
|
"prettier": "^2.8.8",
|
|
"react": "^18.3.1",
|
|
"react-dom": "^18.3.1",
|
|
"react-router-dom": "^5.3.0",
|
|
"tar": "^7.5.11",
|
|
"typescript": "~5.6.2",
|
|
"undici": "^7.24.3",
|
|
"vitest": "^3.0.5"
|
|
}
|
|
}
|