fix: jquery & bootstrap versions upgrade to fix vulnerables (jquery v…

…ulns related to xss and bootstrap vulns related to CVE & Sonatype)

src/ydata_profiling/report/presentation/flavours/html/templates.py

@@ -52,7 +52,7 @@ def create_html_assets(config: Settings, output_file: Path) -> None:
  else:
  css.append("wrapper/assets/bootstrap.min.css")
  css.append("wrapper/assets/bootstrap-theme.min.css")
- js.append("wrapper/assets/jquery-1.12.4.min.js")
+ js.append("wrapper/assets/jquery-3.7.0.min.js")
  js.append("wrapper/assets/bootstrap.min.js")
 
  css.append("wrapper/assets/style.css")

src/ydata_profiling/report/presentation/flavours/html/templates/wrapper/javascript.html

@@ -1,19 +1,19 @@
 {% if offline %}
  {% if inline %}
  <script>
- {% include 'wrapper/assets/jquery-1.12.4.min.js' %}
+ {% include 'wrapper/assets/jquery-3.7.0.min.js' %}
  {% include 'wrapper/assets/bootstrap.min.js' %}
  </script>
  <script>
  {% include 'wrapper/assets/script.js' %}
  </script>
  {% else %}
- <script src="{{ assets_prefix }}/js/jquery-1.12.4.min.js"></script>
+ <script src="{{ assets_prefix }}/js/jquery-3.7.0.min.js"></script>
  <script src="{{ assets_prefix }}/js/bootstrap.min.js"></script>
  <script src="{{ assets_prefix }}/js/script.js"></script>
  {% endif %}
 {% else %}
- <script src="https://code.jquery.com/jquery-1.12.4.min.js"></script>
+ <script src="https://code.jquery.com/jquery-3.7.0.min.js"></script>
  <script src="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js" integrity="sha384-Tc5IQib027qvyjSMfHjOMaLkfuWVxZxUPnCJA7l2mCWNIpG9mGCD8wGNIcPD7Txa" crossorigin="anonymous"></script>
  <script>
  {% include 'wrapper/assets/script.js' %}