Actions

Developer Area/Plugins/Third party: Difference between revisions

From Mahara Wiki

< Developer Area‎ | Plugins
No edit summary
No edit summary
Line 397: Line 397:
| 1.19.1
| 1.19.1
| Active
| Active
| Minor<br />- do not accept the hashed admin password for authentication<br />- strengthen against prev security vulnerabilities -3rd party<br />  modules may be affected.<br />
| Minor<br />- do not accept the hashed admin password for authentication<br />- strengthen against prev security vulnerabilities -3rd party
| Related<br />
| Related<br />
|  
|  
Line 412: Line 412:
|  
|  
|-
|-
| Skin fonts<br />font-squirrel<br />
| Aurulent Sans (font)
| /htdocs/lib/fonts/README.Mahara<br />
| /htdocs/lib/fonts/README.Mahara
| - http://www.fontsquirrel.com/fonts/Aurulent-Sans<br />- http://www.fontsquirrel.com/fonts/DejaVu-Sans<br />- http://scripts.sil.org/cms/scripts/page.php?item_id=CharisSIL<br />- http://sourceforge.net/projects/gs-fonts/
| http://www.fontsquirrel.com/fonts/Aurulent-Sans
| Multiple licenses
| SIL Open Font License v1.10
| - n/a<br />- 2.29<br />- 5.000<br />- 8.11
| 2007.05.04
| 2007.05.04
| Unknown
| None
|  
|  
|  
|  
|-
| Deja Vu Sans (font)
| /htdocs/lib/fonts/README.Mahara
| http://www.fontsquirrel.com/fonts/DejaVu-Sans
| DejaVu Fonts License v1.00
| 2.29
| 2.37
| Unknown
| Patch fix
|  
|  
|
|-
| Open Sans (font)
| ./htdocs/theme/raw/fonts/
| https://www.google.com/fonts/specimen/Open+Sans
| Apache License version 2.0
| 1.10
| 1.10
| Unknown
| None<br />
|  
|  
|  
|  
|-
|-
| System fonts<br />fontawesome<br />
| Roboto Slab (font)
| - ./htdocs/theme/raw/fonts/<br />- ./htdocs/theme/raw/sass/lib/font-awesome/
| ./htdocs/theme/raw/fonts/
| - http://fontawesome.io<br />- https://www.google.com/fonts/specimen/Open+Sans<br />- https://www.google.com/fonts/specimen/Roboto+Slab
| https://www.google.com/fonts/specimen/Roboto+Slab
| - http://fontawesome.io/license<br />- MIT License<br />- Apache License version 2.0
| MIT License
| - 5.8.1<br />- 1<br />- 1<br />- 1.9
| 1.9
| - 5.14.0<br />- 1<br />- 1<br />- 1.9
| 1.100263
| Unknown
| Minor
|  
|  
| https://github.com/FortAwesome/Font-Awesome/blob/master/UPGRADING.md
|-
| Fontawesome
| ./htdocs/theme/raw/sass/lib/font-awesome/
| http://fontawesome.io<br />https://github.com/FortAwesome/Font-Awesome
| http://fontawesome.io/license
| 5.8.1<br />
| 5.15.4
| Active
| Minor 5.8.2 - allow role attribute to be specified<br />Minor 5.9.0 - backward-incompatible changes<br />Minor 5.10.0 duo-tone icons 1600<br />Minor 5.11.0 - more icons<br />Minor 5.12.0 <br />Minor 5.13.0 Covid icons + more<br />Minor 5.14.0 - backward-incompatible changes<br />Minor 5.15.0 - backward-incompatible changes
|
| https://github.com/FortAwesome/Font-Awesome/blob/master/UPGRADING.md
|-
| Ghostscript fonts
| ./htdocs/theme/raw/fonts/
| - http://sourceforge.net/projects/gs-fonts/<br />- https://www.ghostscript.com/releases.html
| https://www.ghostscript.com/license.html
| 8.11
| 9.54.0
| Active
| Major
|
|
|-
| Charis SIL (fonts)
| /htdocs/lib/fonts/README.Mahara
| - http://scripts.sil.org/cms/scripts/page.php?item_id=CharisSIL<br />- https://software.sil.org/charis/download/
| SIL Open Font License (OFL)
| 5.000
| 6.001
| Active
| Major
|  
|  
|  
|  
| https://github.com/FortAwesome/Font-Awesome/blob/master/UPGRADING.md
|-
|-
| TinyMCE
| TinyMCE

Revision as of 14:48, 20 August 2021

A list of the third party plugins within Mahara.

A helpful way to update this list is to go:

 find ./htdocs -type f -iname "README.Mahara" -exec grep 'Version' -B1 {} \; -print

on the current codebase.

Note: another thing to keep in sync is the country names we use for 'Country' dropdowns. To check what the current state of play is

 perl -MLocale::Country -le 'print join("\n", sort map { country2code($_) . " => " . country2code($_, LOCALE_CODE_ALPHA_3) . ", // " . $_ } all_country_names())'

and check the results against htdocs/lib/country.php and htdocs/lang/en.utf8/mahara.php files For any confusion you can also check against https://www.iso.org

Indicating what version they are on in Mahara and what they currently are on at time of publishing 18 Feb 2021.

Current versions marked in Red indicate the plugin needs updating/upgrading.

Name Readme file URL License Current version Latest version Support Upgrade type Security fix Notes
ADODB ./htdocs/lib/adodb/ - https://adodb.org/dokuwiki/doku.php
- https://github.com/ADOdb/ADOdb
- https://github.com/ADOdb/ADOdb/blob/
v5.21.0/docs/changelog.md
BSD 3-Clause

GNU Lesser General Public Licence
5.20.20
5.21.1 End 5.20.20 Security - 5.21.0 incl.5.21.0-beta.1 - 2020-12-20
- adodb: prevent SQL injection in SelectLimit()
- session: add 'httponly' flag to cookie

Minor
- Deprecation
- mysqli: Deprecate $optionFlags property in favor
of standard setConnectionParameter() method
Yes News: https://twitter.com/ADOdb_announce first.
Bootstrap htdocs/lib/bootstrap/assets/javascripts/
- https://getbootstrap.com/
- https://github.com/twbs/release
MIT License 4.6.0 5.1.0 Ends 4.x (LTS) - 01 Nov 2022 Major
Bootstrap
Datetimepicker
./htdocs/js/bootstrap-datetimepicker/ - https://getdatepicker.com/
- https://github.com/tempusdominus/bootstrap-4
MIT License 4.17.47 5.39.0 Inactive,
v4 not maintained
None runs using bootstrap and moment.js
There is a version 5 but not finished.
Chart.js ./htdocs/js/chartjs/ http://www.chartjs.org MIT License 2.9.3 3.5.1 LTS 2.x - 2.9.4
Active 3.x
Minor - 2.9.4: bug fixes

Major - 3.0.0 breaking changes
- https://www.chartjs.org/docs/next/getting-started/v3-migration
- https://www.npmjs.com/package/chart.js
- https://www.chartjs.org/docs/next/typedoc/
- https://www.chartjs.org/samples/next/
- https://www.chartjs.org/docs/next/

Minor - 3.0.1 bug fixes
Clipboard js ./htdocs/js/clipboard/ https://clipboardjs.com/ MIT License 2.0.6 2.0.8 Active Patch fix
Cookie consent ./htdocs/js/cookieconsent/ - https://www.osano.com/cookieconsent
- https://github.com/osano/cookieconsent
MIT License 3.1.1 3.1.1 New updates are
proprietary.
None Site talks about versions 2021.6 and 2021.2.3
which are not available on GitHub.
CSS Tidy ./htdocs/lib/csstidy/ https://github.com/Cerdic/CSSTidy LGPL 1.7.1 1.7.3 Inactive, 2020 None -
Dragon-drop ./htdocs/js/dragondrop/ https://github.com/schne324/dragon-drop MIT License 3.2.1 3.6.1 Active Minor - changelog not available.
Datatables https://datatables.net/
https://datatables.net/download/index
MIT License 1.10.20 1.10.25 Active
Patch fix
Dropzone ./htdocs/js/dropzone/ https://github.com/dropzone/dropzone/release


MIT License 5.7.6 5.9.2 Active Minor
- moved the ./src/options.js previewTemplate in its own
preview-template.html file
- Dropzone triggers custom events on DOM using dropzone
Dwoo ./htdocs/lib/dwoo/ - http://dwoo.org/
- https://github.com/dwoo-project/dwoo
GNU Lesser General Public License 1.3.7 1.3.7 Deprecated
Replace
Elastic Search ./htdocs/lib/elasticsearch/ https://github.com/elastic/elasticsearch-php Apache v2.0
LGPL v2.1
6.1.0 7.11.0 Active
WIP - Gold
fancybox3 ./htdocs/js/fancybox/ https://github.com/fancyapps/ui - in BETA stage
https://fancyapps.com/docs/ui/installation
Creative Commons: CC BY-SA 4.0 license 3.5.6 3.5.7 Inactive
- v3 deprecated
- v4 in beta stage
None https://fancyapps.com/next/
Notifications: https://twitter.com/thefancyapps
gridstack ./htdocs/js/gridstack/ https://github.com/gridstack/gridstack.js MIT License 0.6.4 3.3.0 Active WIP - Robert
Slack channel can be found on https://gridstackjs.com
HTML Purifier ./htdocs/lib/htmlpurifier/ http://www.htmlpurifier.org/ LGPL v2.1+ 4.13.0 4.13.0 Inactive, 2020 None https://github.com/ezyang/htmlpurifier/blob/v4.13.0/NEWS
Javascript templates ./htdocs/js/javascript-templates/ https://github.com/blueimp/JavaScript-Templates MIT License 3.19.0 3.19.0 Inactive, 2020 None
jQuery ./htdocs/js/jquery/ http://jquery.com/
https://github.com/jquery/jquery
MIT License 3.5.1 3.6.0 Active Minor https://blog.jquery.com/2021/03/02/jquery-3-6-0-released/
News: - QA: https://forum.jquery.com/
Twitter: https://twitter.com/jquery
jQuery mobile ./htdocs/js/jquery/jquery-mobile/ http://jquerymobile.com MIT License 1.5.0-alpha.1 1.5.0-rc1 Inactive, 2017 None https://blog.jquerymobile.com - lack of resources but wish to maintain.
jQuery UI ./htdocs/js/jquery/jquery-ui/ http://jqueryui.com/ MIT License 1.12.1 1.12.1 Inactive, 2017 None https://blog.jqueryui.com/ - lack of resources but with to maintain.
jQuery UI plugin
touch-punch
./htdocs/js/jquery/jquery-ui/
jquery-ui-touch-punch.min.js
http://touchpunch.furf.com/
https://github.com/furf/jquery-ui-touch-punch
MIT or GPL Version 2 licenses 0.2.3 0.2.3 Deprecated None
JS Color ./htdocs/js/jscolor/README.Mahara http://jscolor.com/ GPL 3 2.4.5 2.4.5 Active None
Json editor ./htdocs/js/jsoneditor/README.Mahara https://github.com/json-editor/json-editor MIT License 1.3.5 2.5.4 Active Major 2.x
jTLine .htdocs/js/jTLine/README.Mahara https://naadydev.github.io/jTLine/ MIT License 1.0 1.0 Inactive, 2018 None Twitter: https://twitter.com/naadydev
Lodash ./htdocs/js/lodash/README.Mahara https://github.com/lodash/lodash MIT License 4.17.15 4.17.21 Active Patch fix Lodash was brought in with gridstack- gridstack
v0.5.0 no longer have it as a requirement
Marked ./htdocs/js/marked/README.Mahara https://github.com/markedjs/marked MIT License 2.0.0 3.0.0 Active Minor - v2.1.1, v2.1.2, v2.1.3
Major 3.x - breaking changes
Masonry ./htdocs/js/masonry/README.Mahara https://masonry.desandro.com/
https://github.com/desandro/masonry
MIT License 4.2.2 4.2.2 Inactive, 2018 None
TinyMCE -Mathslate ./htdocs/js/tinymce/plugins/mathslate/ https://github.com/dthies/tinymce4-mathslate GPL 3 1.1 1.1 Forked version, 2015 None Our version is now forked to keep make it work with Tinymce 5
Moment.js ./htdocs/js/momentjs/ http://momentjs.com/ MIT License 2.29.1 2.29.1 Inactive, 2020 None
Oauth PHP ./htdocs/webservice/libs/oauth-php/ https://code.google.com/archive/p/oauth-php/ MIT License 175 175 Archived, 2010 Replace We should replace with an oauth2 php library https://oauth.net/code/php
checkout what Moodle does (old comment)
PDFjs ./htdocs/artefact/file/blocktype/pdf/js/pdfjs/ http://mozilla.github.io/pdf.js/getting_started/#download
https://github.com/mozilla/pdf.js
Apache License 2 2.8.335
2.9.359
Active Minor
- improving text layer rendering
- accessibility for screen readers
PHPMailer ./htdocs/lib/phpmailer/ https://github.com/PHPMailer/PHPMailer LGPL 6.2.0 6.5.1 Active
Minor 6.5.0 - security release
Minor 6.5.1 - maintenance release
Yes
Popper ./htdocs/lib/popper/ https://popper.js.org/ MIT License 1.16.0 2.9.3 Active v2
LTS 1.16.1 w/o warnings
(when we use bootstrap 5 supporting v2.x)
Major 2.x - breaking 2020
2.9.3
(while we are still at bootstrapr4)

Minor 1.16.1, Mar 2020
https://dev.to/fezvrasta/smarter-tooltips-and-popovers-with-popper-2-44bh
ReCaptcha ./htdocs/lib/recaptcha/ https://github.com/google/recaptcha BSD-3 1.2.1 1.2.4 Active Patch fix This client supports both v2 and v3.
simplesamlphp /htdocs/auth/saml/extlib/simplesamlphp/ https://github.com/simplesamlphp/simplesamlphp GPL 2.1 1.18.7 1.19.1 Active Minor
- do not accept the hashed admin password for authentication
- strengthen against prev security vulnerabilities -3rd party
Related
Select2 ./htdocs/js/select2/ https://select2.org/ MIT License 4.0.9 4.0.13 Active Patch fix
Aurulent Sans (font) /htdocs/lib/fonts/README.Mahara http://www.fontsquirrel.com/fonts/Aurulent-Sans SIL Open Font License v1.10 2007.05.04 2007.05.04 Unknown None
Deja Vu Sans (font) /htdocs/lib/fonts/README.Mahara http://www.fontsquirrel.com/fonts/DejaVu-Sans DejaVu Fonts License v1.00 2.29 2.37 Unknown Patch fix
Open Sans (font) ./htdocs/theme/raw/fonts/ https://www.google.com/fonts/specimen/Open+Sans Apache License version 2.0 1.10 1.10 Unknown None
Roboto Slab (font) ./htdocs/theme/raw/fonts/ https://www.google.com/fonts/specimen/Roboto+Slab MIT License 1.9 1.100263 Unknown Minor https://github.com/FortAwesome/Font-Awesome/blob/master/UPGRADING.md
Fontawesome ./htdocs/theme/raw/sass/lib/font-awesome/ http://fontawesome.io
https://github.com/FortAwesome/Font-Awesome
http://fontawesome.io/license 5.8.1
5.15.4 Active Minor 5.8.2 - allow role attribute to be specified
Minor 5.9.0 - backward-incompatible changes
Minor 5.10.0 duo-tone icons 1600
Minor 5.11.0 - more icons
Minor 5.12.0
Minor 5.13.0 Covid icons + more
Minor 5.14.0 - backward-incompatible changes
Minor 5.15.0 - backward-incompatible changes
https://github.com/FortAwesome/Font-Awesome/blob/master/UPGRADING.md
Ghostscript fonts ./htdocs/theme/raw/fonts/ - http://sourceforge.net/projects/gs-fonts/
- https://www.ghostscript.com/releases.html
https://www.ghostscript.com/license.html 8.11 9.54.0 Active Major
Charis SIL (fonts) /htdocs/lib/fonts/README.Mahara - http://scripts.sil.org/cms/scripts/page.php?item_id=CharisSIL
- https://software.sil.org/charis/download/
SIL Open Font License (OFL) 5.000 6.001 Active Major
TinyMCE ./htdocs/js/tinymce/README.Mahara https://www.tiny.cloud/
https://www.tiny.cloud/get-tiny/self-hosted
LGPL 2.1 5.7.0 5.8.2 Active Minor - small https://www.tiny.cloud/docs/changelog/
Test on mobile when updating
Blog: https://www.tiny.cloud/blog/category/news-and-updates/
Video.js ./htdocs/artefact/file/blocktype/internalmedia/
videojs/
http://videojs.com/
https://github.com/videojs/video.js
Apache License 2.0 7.11.4 7.14.3 Active Minor
- use setup-node cache and remove individual cache step
- playbackRates() method
zxcvbn ./htdocs/js/zxcvbn/ https://github.com/dropbox/zxcvbn MIT License 4.4.2 4.4.2 Inactive, 2017 None
composer.json
dependencies
https://git.mahara.org/mahara/mahara/
-/blob/master/external/composer.json
Check for updates for each dependency inside the .json file.