Upgrading SKIA from M65 to M121

[Vikram B]

Hi, we have a large application using SKIA version M65, which was released in early 2018.

Could you please help understand:

- If there are security issues because of on being such an old version?

- What other issue anyone foresees because of being on such an old version?

- Is it a smooth transition to upgrade SKIA from M65 to the latest version M121?

Thank you in advance for helping on this.

[Vikram B]

Hi all, any suggestion on the above questions? Thought of checking again!

[John Stiles]

It's impossible for anyone to know if your usage of Skia is safe from security issues without auditing your code.

There have absolutely been critical safety fixes in Skia between 2018 and present day that affected Chrome, but Chrome uses just about every feature that Skia has to offer, and its draws are based on HTML/CSS/Canvas commands that are freely accessible to an attacker. It's likely that your app is less flexible so you may not be exposed to these issues.

 

Also, M121 is not the latest version; that's from last year. See https://github.com/google/skia/tree/chrome/m128

I think you should just try updating and see what happens. You will need to update some things, but it might not be as bad as you are concerned about. If it is rough, consider doing it in stages—first upgrade to M80, then to M100, then to M115, then to latest. This will take more time to do, but it should be much easier, since you probably won't encounter more than one or two broken things at a time.

--
You received this message because you are subscribed to the Google Groups "skia-discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email to skia-discuss...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/skia-discuss/f82b9ec9-0498-4ba3-83ab-7c770dcdd8fdn%40googlegroups.com.

[Vikram B]

Much appreciated, thank you for the advice.