v1.0.0

- Upgrade yarn.lock
- Adapt changelog
- Upgrade versions to 1.0.0
- Update security md

CHANGELOG.md

@@ -1,14 +1,14 @@
 # Eclipse GLSP Server Node Changelog
 
-## v1.0.0- Upcoming
+## [v1.0.0 - 30/06/2022](https://github.com/eclipse-glsp/glsp-server-node/releases/tag/v1.0.0)
 
 Inception of the Node GLSP Server.
 This project provides the Node based server component for the Eclipse Graphical Language Platform (GLSP).
 The implementation of this server is aligned with the default Java based [GLSP Server](https://github.com/eclipse-glsp/glsp-server).
 The [initial implementation](https://github.com/eclipse-glsp/glsp-server-node/commit/4fba8e8beef07798a7eff27c9c04ca68583e5960) was contributed on behalf of STMicroelectronics.
 The following list composes changes that have been made since the initial implementation.
 
-### Changes
+### Changes (since the initial contribution )
 
 -   [core] Implement `dispatchOnNextUpdate` method that enables queuing of actions that should be dispatched after the next graphical model update. [#1](https://github.com/eclipse-glsp/glsp-server-node/pull/1) - Contributed on behalf of STMicroelectronics
 -   [diagram] Implement LayoutEngine API for server-side autolayouting & provide an integration package for layout engines based on ELK. [#2](https://github.com/eclipse-glsp/glsp-server-node/pull/2) [#5](https://github.com/eclipse-glsp/glsp-server-node/pull/5) - Contributed on behalf of STMicroelectronics

SECURITY.md

@@ -1,25 +1,7 @@
-<!--- https://www.eclipse.org/security/ --->
+# Eclipse GLSP Vulnerability Reporting Policy
 
-_ISO 27005 defines vulnerability as:
-"A weakness of an asset or group of assets that can be exploited by one or more threats."_
+If you think or suspect that you have discovered a new security vulnerability in this project, please do not disclose it on GitHub, e.g. in an issue, a PR, or a discussion. Any such disclosure will be removed/deleted on sight, to promote orderly disclosure, as per the Eclipse Foundation Security Policy (1).
 
-# Security Policy
+Instead, please report any potential vulnerability to the Eclipse Foundation Security Team. Make sure to provide a concise description of the issue, a CWE, and other supporting information.
 
-Eclipse GLSP follows the [Eclipse Vulnerability Reporting Policy](https://www.eclipse.org/security/policy.php). Vulnerabilities are tracked by the Eclipse security team, in cooperation with the GLSP project leads. Fixing vulnerabilities is taken care of by the GLSP committers, with assistance and guidance of the security team.
-
-## Reporting a Security Vulnerability
-
-We recommend that in case of suspected vulnerabilities you do not use the public issue tracker, but instead contact the Eclipse Security Team.
-
-The Eclipse Security Team provides help and advice to Eclipse projects on vulnerability issues and is the first point of contact for handling security vulnerabilities.
-Members of the Security Team are committers on Eclipse Projects and members of the Eclipse Architecture Council. You can contact the Eclipse Security Team via [[email protected]](mailto:[email protected]). Note that, as a matter of policy, the security team does not open attachments.
-
-Members of the Eclipse Security Team will receive messages sent to this address.
-This address should be used only for reporting undisclosed vulnerabilities; regular issue reports and questions unrelated to vulnerabilities in Eclipse software will be ignored.
-Note that this email address is not encrypted.
-
-## Disclosure
-
-Disclosure is initially limited to the reporter and all Eclipse Committers, but is expanded to include other individuals, and the general public.
-The timing and manner of disclosure is governed by the [Eclipse Security Policy](https://www.eclipse.org/security/policy.php).
-Publicly disclosed issues are listed on the [Disclosed Vulnerabilities Page](https://www.eclipse.org/security/known.php).
+(1) Eclipse Foundation Vulnerability Reporting Policy: <https://www.eclipse.org/security/policy.php>

examples/workflow-server/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@eclipse-glsp-examples/workflow-server",
-  "version": "0.9.0",
+  "version": "1.0.0",
   "description": "GLSP node server for the workflow example",
   "license": "(EPL-2.0 OR GPL-2.0 WITH Classpath-exception-2.0)",
   "keywords": [
@@ -37,8 +37,8 @@
     "src"
   ],
   "dependencies": {
-    "@eclipse-glsp/server-node": "0.9.0",
-    "@eclipse-glsp/layout-elk": "0.9.0"
+    "@eclipse-glsp/layout-elk": "^1.0.0",
+    "@eclipse-glsp/server-node": "^1.0.0"
   },
   "scripts": {
     "clean": "rimraf tsconfig.tsbuildinfo lib",

lerna.json

@@ -1,6 +1,6 @@
 {
   "lerna": "2.4.0",
-  "version": "0.8.0",
+  "version": "1.0.0",
   "useWorkspaces": true,
   "npmClient": "yarn",
   "command": {

package.json

@@ -13,14 +13,14 @@
     "lint": "lerna run lint --",
     "test": "lerna run test",
     "test:ci": "lerna run test:ci",
-    "publish:prepare": "lerna version minor --exact --ignore-scripts --yes --no-push",
-    "publish:latest": "lerna publish from-git --no-git-reset --no-verify-access --no-push",
+    "publish:prepare": "lerna version --ignore-scripts --yes --no-push",
+    "publish:latest": "lerna publish from-git --no-git-reset --no-git-tag-version --no-verify-access --no-push",
     "publish:next": "SHA=$(git rev-parse --short HEAD) && lerna publish preminor --exact --canary --preid next.${SHA} --dist-tag next --no-git-reset --no-git-tag-version --no-push --ignore-scripts --yes --no-verify-access",
     "upgrade:next": "yarn upgrade -p \"@eclipse-glsp*\"",
     "start": "yarn --cwd examples/workflow-server start:server"
   },
   "devDependencies": {
-    "@eclipse-glsp/config": "next",
+    "@eclipse-glsp/config": "1.0.0",
     "@types/node": "12.x",
     "lerna": "^4.0.0",
     "reflect-metadata": "^0.1.13",

packages/graph/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@eclipse-glsp/graph",
-  "version": "0.9.0",
+  "version": "1.0.0",
   "description": "The typescript implementation of the GLSP graphical model (GModel)",
   "license": "(EPL-2.0 OR GPL-2.0 WITH Classpath-exception-2.0)",
   "keywords": [
@@ -38,7 +38,7 @@
     "css"
   ],
   "dependencies": {
-    "@eclipse-glsp/protocol": "next"
+    "@eclipse-glsp/protocol": "1.0.0"
   },
   "devDependencies": {
     "@types/uuid": "8.3.1"

packages/layout-elk/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@eclipse-glsp/layout-elk",
-  "version": "0.9.0",
+  "version": "1.0.0",
   "description": "Integration of ELK graph layout algorithms in GLSP Node Server",
   "license": "(EPL-2.0 OR GPL-2.0 WITH Classpath-exception-2.0)",
   "keywords": [
@@ -38,10 +38,10 @@
     "css"
   ],
   "dependencies": {
-    "sprotty-elk": "next",
+    "@eclipse-glsp/server-node": "^1.0.0",
+    "elkjs": "^0.7.1",
     "inversify": "^5.1.1",
-    "@eclipse-glsp/server-node": "0.9.0",
-    "elkjs": "^0.7.1"
+    "sprotty-elk": "0.12.0"
   },
   "scripts": {
     "clean": "rimraf tsconfig.tsbuildinfo lib",

packages/server-node/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@eclipse-glsp/server-node",
-  "version": "0.9.0",
+  "version": "1.0.0",
   "description": "A node.js server framework for GLSP",
   "license": "(EPL-2.0 OR GPL-2.0 WITH Classpath-exception-2.0)",
   "keywords": [
@@ -37,12 +37,12 @@
     "src"
   ],
   "dependencies": {
-    "@eclipse-glsp/protocol": "next",
-    "@eclipse-glsp/graph": "0.9.0",
-    "inversify": "5.1.1",
+    "@eclipse-glsp/graph": "^1.0.0",
+    "@eclipse-glsp/protocol": "1.0.0",
+    "@types/uuid": "8.3.1",
     "commander": "^8.3.0",
-    "winston": "^3.3.3",
-    "@types/uuid": "8.3.1"
+    "inversify": "5.1.1",
+    "winston": "^3.3.3"
   },
   "devDependencies": {
     "@types/fs-extra": "^9.0.13"