notebook icon indicating copy to clipboard operation
notebook copied to clipboard

Published 20 hours ago verified publisher icon jupyter

Upgrade jQuery to 3.5.x for Notebook 5.x

Open dylanraws opened this issue 3 years ago • 1 comments

As reported in https://github.com/jupyter/notebook/issues/5489, jQuery versions below 3.5.0 have known security vulnerabilities. My organization provides customers with a managed compute environment with Jupyter Notebook 5.x installed. Our customers have the requirement that we update jQuery to resolve known CVEs. Long term, we will work with our customers to use newer major versions of Jupyter Notebook and Jupyter Lab, but for now, we ask that the jQuery version be upgraded and a new version of Jupyter Notebook 5.x be released.

dylanraws avatar Jul 12 '22 21:07 dylanraws

Tagging @jweill-aws for visibility

dylanraws avatar Jul 12 '22 21:07 dylanraws

Closing as this would have to be implemented in https://github.com/jupyter/nbclassic if still needed.

Please open a new issue there if the issue is still relevant, thanks!

jtpio avatar Aug 01 '23 08:08 jtpio