Merge pull request #2538 from Azure/release/prepare-2.14.0

Manual merge of master into stable

Author: cRui861

.editorconfig

@@ -4,5 +4,5 @@ indent_size = 4
 insert_final_newline = true
 trim_trailing_whitespace = true
 
-[*.{yml,json}]
+[*.{yml,json,bicep}]
 indent_size = 2

.eslintrc.json

@@ -23,7 +23,8 @@
       "extends": [
         ".eslintrc.common.json",
         "prettier",
-        "prettier/@typescript-eslint"
+        "prettier/@typescript-eslint",
+        "plugin:security/recommended"
       ],
       "plugins": [
         "@angular-eslint/eslint-plugin",

.github/CODEOWNERS

@@ -1,6 +1,6 @@
 # These owners will be the default owners for everything in
 # the repo. Unless a later match takes precedence,
-# they will be requested for review when someone opens a 
+# they will be requested for review when someone opens a
 # pull request.
 
-*       @cRui861  @dpwatrous  @gingi  @zfengms  @paterasMSFT  @seth-barshay  @wiboris
+*       @cRui861  @dpwatrous  @gingi  @zfengms  @paterasMSFT  @seth-barshay  @wiboris  @skapur12

.vscode/launch.json

@@ -5,7 +5,6 @@
       "name": "Debug: Main",
       "type": "node",
       "request": "launch",
-      "protocol": "inspector",
       "program": "${workspaceRoot}/src/client/main.ts",
       "stopOnEntry": false,
       "args": [
@@ -44,7 +43,6 @@
       "request": "attach",
       "port": 9222,
       "sourceMaps": true,
-      "trace": "verbose",
       "webRoot": "${workspaceRoot}/build",
       "timeout": 30000,
       "presentation": {
@@ -61,7 +59,6 @@
       "name": "Test: Client",
       "type": "node",
       "request": "launch",
-      "protocol": "inspector",
       "program": "${workspaceRoot}/test/client/run-jasmine.js",
       "cwd": "${workspaceRoot}",
       "runtimeExecutable": "node",

CHANGELOG.md

@@ -1,3 +1,24 @@
+# 2.14.0
+
+[All items](https://github.com/Azure/BatchExplorer/milestone/48?closed=1)
+
+### Features
+
+* Improve proxy support with MSAL authentication [\#2528](https://github.com/Azure/BatchExplorer/issues/2528)
+* Add new heatmap node display for better running task visualization and made improvements to the heatmap legend [\#2527](https://github.com/Azure/BatchExplorer/issues/2527)
+* Re-land API call for List Supported Virtual Machine and Cloud Service SKUs [\#2525](https://github.com/Azure/BatchExplorer/issues/2525)
+
+### Bugs
+
+* April and May accessibility bug fixes and improvements [\#2531](https://github.com/Azure/BatchExplorer/issues/2531)
+* Fix issue with menubar not appearing on Windows Insider build [\#2529](https://github.com/Azure/BatchExplorer/issues/2529)
+* Fix issue with failed silent auth [\#2524](https://github.com/Azure/BatchExplorer/issues/2524)
+
+### Other
+
+* Update dependencies for better security [\#2530](https://github.com/Azure/BatchExplorer/issues/2530)
+* Upgrade to Electron 13 [\#2526](https://github.com/Azure/BatchExplorer/issues/2526)
+
 # 2.13.0
 
 [All items](https://github.com/Azure/BatchExplorer/milestone/47?closed=1)

SECURITY.md

@@ -0,0 +1,41 @@
+<!-- BEGIN MICROSOFT SECURITY.MD V0.0.7 BLOCK -->
+
+## Security
+
+Microsoft takes the security of our software products and services seriously, which includes all source code repositories managed through our GitHub organizations, which include [Microsoft](https://github.com/Microsoft), [Azure](https://github.com/Azure), [DotNet](https://github.com/dotnet), [AspNet](https://github.com/aspnet), [Xamarin](https://github.com/xamarin), and [our GitHub organizations](https://opensource.microsoft.com/).
+
+If you believe you have found a security vulnerability in any Microsoft-owned repository that meets [Microsoft's definition of a security vulnerability](https://aka.ms/opensource/security/definition), please report it to us as described below.
+
+## Reporting Security Issues
+
+**Please do not report security vulnerabilities through public GitHub issues.**
+
+Instead, please report them to the Microsoft Security Response Center (MSRC) at [https://msrc.microsoft.com/create-report](https://aka.ms/opensource/security/create-report).
+
+If you prefer to submit without logging in, send email to [[email protected]](mailto:[email protected]).  If possible, encrypt your message with our PGP key; please download it from the [Microsoft Security Response Center PGP Key page](https://aka.ms/opensource/security/pgpkey).
+
+You should receive a response within 24 hours. If for some reason you do not, please follow up via email to ensure we received your original message. Additional information can be found at [microsoft.com/msrc](https://aka.ms/opensource/security/msrc). 
+
+Please include the requested information listed below (as much as you can provide) to help us better understand the nature and scope of the possible issue:
+
+  * Type of issue (e.g. buffer overflow, SQL injection, cross-site scripting, etc.)
+  * Full paths of source file(s) related to the manifestation of the issue
+  * The location of the affected source code (tag/branch/commit or direct URL)
+  * Any special configuration required to reproduce the issue
+  * Step-by-step instructions to reproduce the issue
+  * Proof-of-concept or exploit code (if possible)
+  * Impact of the issue, including how an attacker might exploit the issue
+
+This information will help us triage your report more quickly.
+
+If you are reporting for a bug bounty, more complete reports can contribute to a higher bounty award. Please visit our [Microsoft Bug Bounty Program](https://aka.ms/opensource/security/bounty) page for more details about our active programs.
+
+## Preferred Languages
+
+We prefer all communications to be in English.
+
+## Policy
+
+Microsoft follows the principle of [Coordinated Vulnerability Disclosure](https://aka.ms/opensource/security/cvd).
+
+<!-- END MICROSOFT SECURITY.MD BLOCK -->

ThirdPartyNotices.txt

@@ -18,7 +18,7 @@ Microsoft reserves all other rights not expressly granted under this agreement,
 8. @angular/platform-browser-dynamic(https://github.com/angular/angular) - MIT
 9. @angular/platform-server(https://github.com/angular/angular) - MIT
 10. @angular/router(https://github.com/angular/angular/tree/master/packages/router) - MIT
-11. @azure/msal-node(https://github.com/AzureAD/microsoft-authentication-library-for-js#readme) - MIT
+11. @azure/msal-node(https://github.com/AzureAD/microsoft-authentication-library-for-js) - MIT
 12. @azure/storage-blob(https://github.com/Azure/azure-sdk-for-js#readme) - MIT
 13. applicationinsights(https://github.com/microsoft/ApplicationInsights-node.js#readme) - MIT
 14. azure-storage(http://github.com/Azure/azure-storage-node) - Apache-2.0
@@ -729,7 +729,7 @@ SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
 ============================================================
     Start license for d3
 ------------------------------------------------------------
-Copyright 2010-2021 Mike Bostock
+Copyright 2010-2022 Mike Bostock
 
 Permission to use, copy, modify, and/or distribute this software for any purpose
 with or without fee is hereby granted, provided that the above copyright notice
@@ -1105,12 +1105,6 @@ WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
 ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR
 IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
 
-## Glob Logo
-
-Glob's logo created by Tanya Brassie <http://tanyabrassie.com/>, licensed
-under a Creative Commons Attribution-ShareAlike 4.0 International License
-https://creativecommons.org/licenses/by-sa/4.0/
-
 ------------------------------------------------------------
     End license for glob
 ============================================================
@@ -2848,9 +2842,22 @@ The externally maintained libraries used by Node.js are:
 
 - ICU, located at deps/icu-small, is licensed as follows:
   """
-    COPYRIGHT AND PERMISSION NOTICE (ICU 58 and later)
+    UNICODE, INC. LICENSE AGREEMENT - DATA FILES AND SOFTWARE
+
+    See Terms of Use
+    for definitions of Unicode Inc.’s Data Files and Software.
+
+    NOTICE TO USER: Carefully read the following legal agreement.
+    BY DOWNLOADING, INSTALLING, COPYING OR OTHERWISE USING UNICODE INC.'S
+    DATA FILES ("DATA FILES"), AND/OR SOFTWARE ("SOFTWARE"),
+    YOU UNEQUIVOCALLY ACCEPT, AND AGREE TO BE BOUND BY, ALL OF THE
+    TERMS AND CONDITIONS OF THIS AGREEMENT.
+    IF YOU DO NOT AGREE, DO NOT DOWNLOAD, INSTALL, COPY, DISTRIBUTE OR USE
+    THE DATA FILES OR SOFTWARE.
 
-    Copyright © 1991-2020 Unicode, Inc. All rights reserved.
+    COPYRIGHT AND PERMISSION NOTICE
+
+    Copyright © 1991-2022 Unicode, Inc. All rights reserved.
     Distributed under the Terms of Use in https://www.unicode.org/copyright.html.
 
     Permission is hereby granted, free of charge, to any person obtaining
@@ -2882,15 +2889,17 @@ The externally maintained libraries used by Node.js are:
     use or other dealings in these Data Files or Software without prior
     written authorization of the copyright holder.
 
-    ---------------------
+    ----------------------------------------------------------------------
 
     Third-Party Software Licenses
 
     This section contains third-party software notices and/or additional
     terms for licensed third-party software components included within ICU
     libraries.
 
-    1. ICU License - ICU 1.8.1 to ICU 57.1
+    ----------------------------------------------------------------------
+
+    ICU License - ICU 1.8.1 to ICU 57.1
 
     COPYRIGHT AND PERMISSION NOTICE
 
@@ -2925,7 +2934,9 @@ The externally maintained libraries used by Node.js are:
     All trademarks and registered trademarks mentioned herein are the
     property of their respective owners.
 
-    2. Chinese/Japanese Word Break Dictionary Data (cjdict.txt)
+    ----------------------------------------------------------------------
+
+    Chinese/Japanese Word Break Dictionary Data (cjdict.txt)
 
      #     The Google Chrome software developed by Google is licensed under
      # the BSD license. Other software included in this distribution is
@@ -3129,7 +3140,9 @@ The externally maintained libraries used by Node.js are:
      #
      #  ---------------COPYING.ipadic-----END----------------------------------
 
-    3. Lao Word Break Dictionary Data (laodict.txt)
+    ----------------------------------------------------------------------
+
+    Lao Word Break Dictionary Data (laodict.txt)
 
      # Copyright (C) 2016 and later: Unicode, Inc. and others.
      # License & terms of use: http://www.unicode.org/copyright.html
@@ -3169,7 +3182,9 @@ The externally maintained libraries used by Node.js are:
      # OF THE POSSIBILITY OF SUCH DAMAGE.
      #  --------------------------------------------------------------------------
 
-    4. Burmese Word Break Dictionary Data (burmesedict.txt)
+    ----------------------------------------------------------------------
+
+    Burmese Word Break Dictionary Data (burmesedict.txt)
 
      #  Copyright (c) 2014 International Business Machines Corporation
      #  and others. All Rights Reserved.
@@ -3209,7 +3224,9 @@ The externally maintained libraries used by Node.js are:
      #  SUCH DAMAGE.
      #  --------------------------------------------------------------------------
 
-    5. Time Zone Database
+    ----------------------------------------------------------------------
+
+    Time Zone Database
 
       ICU uses the public domain data and code derived from Time Zone
     Database for its time zone support. The ownership of the TZ database
@@ -3232,7 +3249,9 @@ The externally maintained libraries used by Node.js are:
      #    making a contribution to the database or code waives all rights to
      #    future claims in that contribution or in the TZ Database.
 
-    6. Google double-conversion
+    ----------------------------------------------------------------------
+
+    Google double-conversion
 
     Copyright 2006-2011, the V8 project authors. All rights reserved.
     Redistribution and use in source and binary forms, with or without
@@ -3260,6 +3279,83 @@ The externally maintained libraries used by Node.js are:
     THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
     (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
     OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+    ----------------------------------------------------------------------
+
+    File: aclocal.m4 (only for ICU4C)
+    Section: pkg.m4 - Macros to locate and utilise pkg-config.
+
+    Copyright © 2004 Scott James Remnant .
+    Copyright © 2012-2015 Dan Nicholson
+
+    This program is free software; you can redistribute it and/or modify
+    it under the terms of the GNU General Public License as published by
+    the Free Software Foundation; either version 2 of the License, or
+    (at your option) any later version.
+
+    This program is distributed in the hope that it will be useful, but
+    WITHOUT ANY WARRANTY; without even the implied warranty of
+    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+    General Public License for more details.
+
+    You should have received a copy of the GNU General Public License
+    along with this program; if not, write to the Free Software
+    Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA
+    02111-1307, USA.
+
+    As a special exception to the GNU General Public License, if you
+    distribute this file as part of a program that contains a
+    configuration script generated by Autoconf, you may include it under
+    the same distribution terms that you use for the rest of that
+    program.
+
+    (The condition for the exception is fulfilled because
+    ICU4C includes a configuration script generated by Autoconf,
+    namely the `configure` script.)
+
+    ----------------------------------------------------------------------
+
+    File: config.guess (only for ICU4C)
+
+    This file is free software; you can redistribute it and/or modify it
+    under the terms of the GNU General Public License as published by
+    the Free Software Foundation; either version 3 of the License, or
+    (at your option) any later version.
+
+    This program is distributed in the hope that it will be useful, but
+    WITHOUT ANY WARRANTY; without even the implied warranty of
+    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+    General Public License for more details.
+
+    You should have received a copy of the GNU General Public License
+    along with this program; if not, see .
+
+    As a special exception to the GNU General Public License, if you
+    distribute this file as part of a program that contains a
+    configuration script generated by Autoconf, you may include it under
+    the same distribution terms that you use for the rest of that
+    program.  This Exception is an additional permission under section 7
+    of the GNU General Public License, version 3 ("GPLv3").
+
+    (The condition for the exception is fulfilled because
+    ICU4C includes a configuration script generated by Autoconf,
+    namely the `configure` script.)
+
+    ----------------------------------------------------------------------
+
+    File: install-sh (only for ICU4C)
+
+    Copyright 1991 by the Massachusetts Institute of Technology
+
+    Permission to use, copy, modify, distribute, and sell this software and its
+    documentation for any purpose is hereby granted without fee, provided that
+    the above copyright notice appear in all copies and that both that
+    copyright notice and this permission notice appear in supporting
+    documentation, and that the name of M.I.T. not be used in advertising or
+    publicity pertaining to distribution of the software without specific,
+    written prior permission.  M.I.T. makes no representations about the
+    suitability of this software for any purpose.  It is provided "as is"
+    without express or implied warranty.
   """
 
 - libuv, located at deps/uv, is licensed as follows: