jszip.min.js upgrade

Progress® Kendo UI® for jQuery Feedback Portal

Create an account Log In

Back to Feed

Request a Feature Report a Bug

Completed

Last Updated: 12 Jan 2024 09:40 by ADMIN

Release R1.2024-Increment.1(15.Nov.2023)

Srinivas

Created on: 09 May 2022 15:59

Category: Kendo UI for jQuery

Type: Feature Request

jszip.min.js upgrade

Hi Telerik Team,

We are using latest version (2022.1.412) of the Kendo jQuery tool set. The latest version of Kendo jQuery is using one of the older version of jszip 2.6.1, which is being tagged a vulnerable by our scanning tool. Can you please upgrade the version of jszip in your latest Kendo jQuery (KendoUIProfessional and Telerik.UI.for.AspNet.Mvc5)

13 comments

ADMIN

Neli

Posted on: 12 Jan 2024 09:40

Hi David,

Please find below a link to the related issue.

- https://github.com/telerik/kendo-ui-core/issues/2316

As mentioned in the comments: Kendo UI for jQuery/MVC/Core(Exporting) is compatible with JSZip 3.x starting v2023.3.1114 (R3 2023 SP1).

I hope this helps.

Regards,
Neli
Progress Telerik

Stay tuned by visiting our public roadmap and feedback portal pages! Or perhaps, if you are new to our Kendo family, check out our getting started resources!

David PettyJohn

Posted on: 05 Jan 2024 15:52

Martin,

To be clear, can you confirm that 2023.3.1114 version of Progress® Telerik® UI for ASP.NET MVC includes the remediation for jszip?

ADMIN

Martin

Posted on: 02 Nov 2023 11:01

Hello, David,

The jszip library has been upgraded for the next official release in mid November.

Let me know if you have any questions on the matter.

Regards,
Martin
Progress Telerik

Stay tuned by visiting our public roadmap and feedback portal pages! Or perhaps, if you are new to our Kendo family, check out our getting started resources!

David PettyJohn

Posted on: 26 Oct 2023 20:50

Is this jszip.min.js upgrade currently in progress? Any update?

ADMIN

Martin

Posted on: 28 Jul 2023 14:08

Hello, Fahmi,

We had to postpone the JSZip upgrade for now, unfortunately. The item still remains our priority and we will try to add it to our Roadmap as soons as possible.

We greatly apologize for the circumstances, we are aware that you were relying on the latest JSZip version.

Please keep following the thread for further updates.

Regards,
Martin
Progress Telerik

Stay tuned by visiting our public roadmap and feedback portal pages! Or perhaps, if you are new to our Kendo family, check out our getting started resources!

Fahmi

Posted on: 28 Jul 2023 10:51

I've asked for updates and the Feature has migrated from Planned to Unplanned. Is this a mistake or what ?

Fahmi

Posted on: 28 Jul 2023 09:21

Hi Telerik Team,

Could you please get back to us with updates , this is urgent and jeopardizing the integrity of our project.

When will this be implemented ?

Thanks,

Fahmi

ADMIN

Martin

Posted on: 28 Apr 2023 11:08

Hello,

Thank you for your patience.

After consulting with my colleagues, I can confirm that this item is in our immediate plans and we will try to upgrade the version within the next two releases.

Regards,
Martin
Progress Telerik

Love the Telerik and Kendo UI products and believe more people should try them? Invite a fellow developer to become a Progress customer and each of you can get a $50 Amazon gift voucher.

ADMIN

Martin

Posted on: 20 Apr 2023 09:27

Hello, guys,

I am currently discussing the matter with my colleagues. I will get back to you with an update.

Thank you for your patience.

Regards,
Martin
Progress Telerik

Love the Telerik and Kendo UI products and believe more people should try them? Invite a fellow developer to become a Progress customer and each of you can get a $50 Amazon gift voucher.

Ravi

Posted on: 20 Apr 2023 09:04

Hi Team,

Can you please update jszip as we really need to deploy the fix.

Can we have an ETA on this please?

Fahmi

Posted on: 13 Apr 2023 10:51

The same this for: angular.min.js (v 1.7.9)

Fahmi

Posted on: 13 Apr 2023 10:48

Hi Telerik Team,

I'm using the latest version of Kendo UI MVC (v2023.1.314.545) , I'm still having this issue;

This vulnerability severity is high so when this is planned please ?

Thanks,

Fahmi

ADMIN

Martin

Posted on: 10 May 2022 13:55

Hello, Srinivas,

I have discussed the matter with my team and we agreed to log an enhancement item to update the jszip version. I have converted the current thread to a feature request so that you can track its progress in our Feedback Portal.

Let me know if you have any further questions.

Regards,
Martin
Progress Telerik

Virtual Classroom, the free self-paced technical training that gets you up to speed with Telerik and Kendo UI products quickly just got a fresh new look + new and improved content including a brand new Blazor course! Check it out at https://learn.telerik.com/.