update jquery.js, jquery-ui.js, and moment.js

[andresperezl]

Some Open Source vulnerabilities scanners will mark goconvey as vulnerable because of the versions of jquery, jquery-ui, and moment.js (moment.js is actually marked as HIGH). Even if the vulnerable parts are not used, this can prevent some organizations of integrating goconvey on their code because of it.

CVEs addressed:

• CVE-2012-6708
• CVE-2015-9251
• CVE-2020-11023
• CVE-2020-11022
• CVE-2019-11358
• CVE-2016-7103
• CVE-2016-4055
• CVE-2016-0075
• CVE-2017-18214

[lootek]

Are there any chances for this PR to get merged?

[mihaicc]

+1

[Anthony-Bible]

+1

[devopsmk]

@riannucci @andresperezl When will this get merged , looks like there are multiple vulnerabilities and whitesource is showing this package as vulnerable.

[riannucci]

Did you actually test these to ensure the goconvey UI still works after this?

[riannucci]

(that's why I haven't been merging these; last time I tried one of these pulls locally the UI fell apart and I didn't have time to investigate what went wrong)

[andresperezl]

We stopped using goconvey, so I can close this, and let someone try the change.