Security fixes (#102)

* fixed: CVE-2021-23358
* Version: bumped installation packages version
* Actions: remove unused code

.github/workflows/ci.yml

@@ -108,14 +108,6 @@ jobs:
       - name: Checkout
         uses: actions/checkout@v2
 
-      - name: Setup node
-        uses: actions/setup-node@v1
-        with:
-          node-version: "14"
-
-      - name: Install Node dependencies
-        run: npm install -g jsonlint
-
       - name: Check fixtures
         run: ./run-tests.sh --check-fixtures
 

Dockerfile

@@ -37,6 +37,7 @@ RUN yum install -y \
         epel-release \
         libuuid-devel \
         rlwrap \
+        jq \
         vim && \
     yum groupinstall -y "Development Tools" && \
     yum clean -y all
@@ -45,8 +46,8 @@ RUN echo "Will install xrootd version: $XROOTD_VERSION (latest if empty)" && \
     yum install -y xrootd-"$XROOTD_VERSION" python3-xrootd-"$XROOTD_VERSION" && \
     yum clean -y all
 
-RUN pip uninstall pipenv -y && pip install --no-cache-dir --upgrade pip==20.2.4 setuptools==68.2.2 wheel==0.36.2 && \
-    npm install -g --unsafe-perm [email protected] [email protected] [email protected] [email protected] [email protected] [email protected] \
+RUN pip uninstall pipenv -y && pip install --no-cache-dir --upgrade pip==24.3.1 setuptools==70.0.0 wheel==0.45.1 && \
+    npm install -g --unsafe-perm [email protected] [email protected] [email protected] [email protected] [email protected] \
     @cernopendata/[email protected] [email protected]
 
 # Make a relative link, so that if the directory is copied, it still works

run-tests.sh

@@ -37,7 +37,7 @@ check_black () {
 
 check_fixtures () {
     # check for possibly incorrect JSON files:
-    find cernopendata/modules/fixtures/data/ -name "*.json" -exec jsonlint -q {} \;
+    find cernopendata/modules/fixtures/data/ -name "*.json" -exec jq -re "." {} \; > /dev/null
 
     # check record ID uniqueness:
     dupes=$(jq '.[].recid' cernopendata/modules/fixtures/data/records/*.json | sort | uniq -d)