Security review - vulnerable library

dev_comtec · May 17, 2023, 5:55am

Hi team,

We are currently undergoing a Security Review in order to make our OAuth app publicly accessible.
It has come to our attention that the system is utilizing a vulnerable library (jQuery), and we are considering upgrading to the latest version.
However, due to the widespread impact on the entire system, the fixes are taking a considerable amount of time. As a solution, we are contemplating using the latest version of jQuery exclusively for the integration with Zoom, while maintaining the functionality of other features with the previous version of jQuery (allowing coexistence of different jQuery versions).
Would this approach meet the security requirements?

Regards, Developer

kwaku.nyante · May 17, 2023, 12:03pm

Hello @dev_comtec Please email marketplace.security@zoom.us include the name of your app and ask the question there the security team will answer you directly.

Regards, Kwaku

dev_comtec · May 22, 2023, 12:20am

Hi Kwaku,

Thank you for your response.
On 5/18, I sent an email directly to marketplace.security@zoom.us and I am currently awaiting a reply from the security team.

Regards

Topic		Replies	Views
Zoom Marketplace security review (jquery 3.1.1.) App Submission	1	319	April 6, 2023
Zoom Marketplace App submission update App Submission	1	350	August 26, 2022
Technical Design for Zoom OAuth app Submission App Submission	2	234	May 17, 2023
Zoom App submitted on 4/5 and still no reply App Submission	14	488	May 24, 2023
Zoom app publication status App Submission api	5	354	April 13, 2024

Security review - vulnerable library

Related Topics