Multiple javascript library versions with security vulnurabilities in h2o-core

Description

We are using h2o-core, version 3.28.1.2, and on a security scan we are finding that the produced jar contains javascript libraries which have open security issues. The list is as follows:
moment 2.2.1
jquery 1.8.3
org.webjars bootstrap 2.3.1
org.webjars typeahead.js 0.9.3

I was unable to see in the code where these dependencies were coming in.

Could these dependencies be updated?

Assignee

New H2O Bugs

Fix versions

None

Reporter

Ben Everest

Support ticket URL

None

Labels

Affected Spark version

None

Customer Request Type

None

Task progress

None

CustomerVisible

Yes

Components

Affects versions

Priority

Major
Configure