https://bugzilla.redhat.com/show_bug.cgi?id=2162694 --- Comment #6 from Lumír Balhar <lbalhar@xxxxxxxxxx> --- (In reply to Miro Hrončok from comment #5) > The notebook package patched the bundled moment to fix CVE-2022-31129. I > believe this contains an old version of mement as well which might require > keeping that patch. This problem is already fixed upstream. They should release a new version soon. We can wait for it. https://github.com/jupyter/nbclassic/pull/186 > I'd also strongly consider not unbundling any of the javascript, rebundling > it once it is retired from Fedora has proven to be quite cumbersome in > Fedora, see > https://src.fedoraproject.org/rpms/python-notebook/c/ > 89be135877952b931c3cb6d736a55eb69f6038d9?branch=rawhide Okay, I'm gonna unbundle just the fonts. -- You are receiving this mail because: You are on the CC list for the bug. You are always notified about changes to this product and component https://bugzilla.redhat.com/show_bug.cgi?id=2162694 _______________________________________________ package-review mailing list -- package-review@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to package-review-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-review@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
