[
https://issues.apache.org/jira/browse/THRIFT-4064?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16168591#comment-16168591
]
ASF GitHub Bot commented on THRIFT-4064:
----------------------------------------
Github user zertosh commented on the issue:
https://github.com/apache/thrift/pull/1175
sorry @jeking3, I don't have the bandwidth these days to pick this back up
> Update node library dependencies
> --------------------------------
>
> Key: THRIFT-4064
> URL: https://issues.apache.org/jira/browse/THRIFT-4064
> Project: Thrift
> Issue Type: Improvement
> Components: Node.js - Library
> Affects Versions: 0.10.0
> Reporter: Andres Suarez
> Assignee: James E. King, III
> Labels: security-issue
>
> [email protected] is really old and presents issues for users using modern versions
> of Node (see
> https://github.com/apache/thrift/pull/672#issuecomment-276678791). Its should
> be updated.
> In the third pull request, here are the dependencies:
> node-int64 ~0.4.0
> q ~1.5.0
> ws >= 2.2.3 which implies node >= 4.1.0
> (https://github.com/websockets/ws/tree/2.2.3)
> On the ubuntu-xenial image which uses node v8.4.0 and npm 5.3.0, and on the
> centos-7.3 image which uses node v6.11.1 and npm 3.10.10 you end up with the
> following packages:
> {noformat}
> root@ddb384ee75a5:/thrift/src/lib/nodejs# npm list --depth 0
> [email protected] /thrift/src
> +-- [email protected]
> +-- [email protected]
> +-- [email protected]
> +-- [email protected]
> +-- [email protected]
> +-- [email protected]
> +-- [email protected]
> +-- [email protected]
> +-- [email protected]
> +-- [email protected]
> +-- [email protected]
> `-- [email protected]
> {noformat}
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
