mgr/dashboard: Update Bootstrap to 3.4.0
Bootstrap 3.4.0 has been released a few weeks ago, which contains a fix for an XSS issue. Please update the dashboard code accordingly.
#3 Updated by Lenz Grimmer 6 months ago
FYI: Ernesto run a quick check on the impact of this issue (https://github.com/twbs/bootstrap/pull/26630) to the dashboard codebase, and currently we are not using any of the vulnerable properties (data-parent, data-target or data-container).
$ egrep "data-(parent|target|container)" src/pybind/mgr/dashboard/frontend -RI --include="*.html" --include="*.ts"
However, I suggest to update the Boostrap library anyway, just in case we ever plan to use any of these properties.