Skip to content

Release: Merge back 2.37.3 into bugfix from: master-into-bugfix/2.37.3-2.38.0-dev#10811

Merged
Maffooch merged 3 commits intobugfixfrom
master-into-bugfix/2.37.3-2.38.0-dev
Aug 26, 2024
Merged

Release: Merge back 2.37.3 into bugfix from: master-into-bugfix/2.37.3-2.38.0-dev#10811
Maffooch merged 3 commits intobugfixfrom
master-into-bugfix/2.37.3-2.38.0-dev

Conversation

@github-actions
Copy link
Copy Markdown
Contributor

@github-actions github-actions Bot commented Aug 26, 2024

Release triggered by Maffooch

DefectDojo release bot and others added 3 commits August 26, 2024 16:08
@dryrunsecurity
Copy link
Copy Markdown

dryrunsecurity Bot commented Aug 26, 2024
edited
Loading

DryRun Security Summary

The pull request includes a minor version update to the DefectDojo application and an update to the Helm chart responsible for managing the deployment and configuration of the application in a Kubernetes environment, which should be reviewed carefully to ensure the security of the deployment process and the application's configuration.

Expand for full summary

Summary:

The changes in this pull request are relatively minor and do not introduce any obvious security concerns. The first change is a simple version update from "2.37.2" to "2.37.3" in the dojo/__init__.py file, which is likely a routine maintenance release. The second change is an update to the version of the Helm chart for the DefectDojo application, which is responsible for managing the deployment and configuration of the application in a Kubernetes environment.

While version updates should always be reviewed carefully, as they may include security patches or address known vulnerabilities, the changes in this case appear to be straightforward and do not directly impact the security of the application itself. However, it's important to review the dependencies and configurations of the Helm chart to ensure that the deployment process is secure and that the application is properly configured to mitigate potential security risks.

Files Changed:

  1. dojo/__init__.py: This file has been updated to change the version number from "2.37.2" to "2.37.3". This is a minor version update and is likely a routine maintenance release.

  2. helm/defectdojo/Chart.yaml: The Helm chart for the DefectDojo application has been updated from version 1.6.147-dev to 1.6.148-dev. This change is related to the deployment and configuration of the application in a Kubernetes environment and does not directly impact the security of the application itself. However, it's important to review the dependencies and configurations of the Helm chart to ensure that the deployment process is secure.

Code Analysis

We ran 9 analyzers against 2 files and 0 analyzers had findings. 9 analyzers had no findings.

Riskiness

🟢 Risk threshold not exceeded.

View PR in the DryRun Dashboard.

@dryrunsecurity
Copy link
Copy Markdown

dryrunsecurity Bot commented Aug 26, 2024

DryRun Security Summary

We are currently analyzing this pull request to produce a meaningful summary.

Code Analysis

We ran 9 analyzers against 2 files and 0 analyzers had findings. 9 analyzers had no findings.

Riskiness

🟢 Risk threshold not exceeded.

View PR in the DryRun Dashboard.

@Maffooch Maffooch merged commit bd19d49 into bugfix Aug 26, 2024
@Maffooch Maffooch deleted the master-into-bugfix/2.37.3-2.38.0-dev branch August 26, 2024 17:03
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@Maffooch