Update bootstrap to 5.x to mitigate CVE-2024-6531

[scotty6435]

What's not working?

The UI which is driven by Twitter Bootstrap uses a legacy v4 version when version 5 has been stable since 2021. As a result, a low severity vulnerability exists - https://nvd.nist.gov/vuln/detail/CVE-2024-6531.

One enhancement I would recommend is localising the open sans font and maybe look at a charting library that can be hosted locally. Doing this makes the application front-end work when an internet connection is not available and reduces exposure in corporate environments when CDNs may not be trusted for all users given some recent high-visibility compromises.

What're application dependencies ?

N/A

How to Reproduce (optional)?

N/A

Additional Details (optional)

Add any other context about the problem that would be helpful like OS, Redis, Docker etc

[miguellords]

This might help:This file might fix it
https://mega.co.nz/#!B31G2LaZ!uBBOCp9hLC7bq9kP8NC6s4DanQJJZuoFRr5FI_jkeic

you may need to install the c compiler

[sonus21]

I;ve checked this issue, there's a minor security vulnerability in the bootstrap 4. For CDN, it would be difficult to migrate as we've other dependencies as well like google chart library. So we have to copy all the files one by one.