-
Notifications
You must be signed in to change notification settings - Fork 103
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Public-sans - POAM: September '24 #315
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@mahoneycm thanks for the notes in the description. Hope you don't mind, I've modified the Important
alert to state the workaround (last sentence - In the meantime I've downgraded ruby.
I've been able to successfully switch to Ruby 3.25 and do a clean install of both Node & Ruby dependencies without issues.
Tested using npm run serve
and npm start
.
October updatesDependency updates
Gem updates
|
Resuming review of this PR since we would have to wait for the next compile release to resolve |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM.
I've added a note about Gulp 5 and fonts/images, but didn't see any regressions at first glance.
"@uswds/uswds": "3.8.1", | ||
"gulp": "^4.0.2", | ||
"@uswds/uswds": "3.9.0", | ||
"gulp": "^5.0.0", |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Tip
This major Gulp update has caused issues with fonts and images. I tested npm run copy-webfonts
and didn't see any issues.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I took a look at your work in uswds/uswds-compile#96 to make sure the issue that was captured and resolved there wasn't going to be an issue here! I didn't find any issues either 👍
return src(`${WEBFONTS_SRC}/**/**`, { | ||
encoding: false, | ||
}).pipe(dest(WEBFONTS_DEST)); |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Added to address the issue fixed in uswds/uswds-compile#96 from a solution noted in gulpjs/gulp#2803
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM
Summary
POAM updates for September 2024
Warning
We received deprecation warnings for dependencies that are no longer supported. They are coming from USWDS compile and will be resolved in uswds/uswds-compile#122.
Important
This PR caught a Federalist build issue. The issue appears unrelated to these changes but was caught due to generating a new
gemfile.lock
.The federalist pages team is investigating. Additional details in this slack thread (🔒).
In the meantime I've downgraded ruby.
Related issue
uswds/uswds-team#390
Resolves https://github.com/uswds/public-sans/security/dependabot/84
Resolves https://github.com/uswds/public-sans/security/dependabot/83
Resolves https://github.com/uswds/public-sans/security/dependabot/74
Resolves https://github.com/uswds/public-sans/security/dependabot/81
Resolves https://github.com/uswds/public-sans/security/dependabot/82
Preview link
Preview link →
Major changes
3.3.4
to3.2.5
to resolve Cloud Pages build error3.9.0
Dependency updates
Before:
After
Dependency updates
Node package updates
Gem updates:
Testing and review
Gulp commands run without error
npm run start
npm run serve
npm run test:a11y
(while localhost is being served from the serve script)