Release: Merge release into master from: release/2.7.1 #5869
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![github-actions[bot]](https://avatars.githubusercontent.com/in/15368?s=60&v=4){kind=small}
… (.github/workflows/release-drafter.yml) (#5736) Co-authored-by: Renovate Bot <bot@renovateapp.com>
#5705) Co-authored-by: Renovate Bot <bot@renovateapp.com>
… (.github/workflows/release-drafter.yml) (#5759) Co-authored-by: Renovate Bot <bot@renovateapp.com>
SLA days is currently being calculated with the Finding's report date, even if the field sla_start_date is set to a date. With this change, the SLA will be calculated using the date from sla_start_date when it's available.
… (.github/workflows/release-drafter.yml) (#5761) Co-authored-by: Renovate Bot <bot@renovateapp.com>
* update wpscan data upload * update based on review comments * update test case name * update wpscan parser * dev branch changes * update unittest wpscan scan file location
* Update test_importers_importer.py * fixed environment * Add model change * Remove swallowing * Fix DB migration * Update 0146_useless_check.py * update unittest * fix unittest * update migrations naming * Switch back to restricted * Update models.py * renamed migration Co-authored-by: Damien Carol <damien.carol@gmail.com> Co-authored-by: Manuel Sommer <manuel.sommer@tradebyte.com>
* Update README.md * Update README.md * Update values.yaml (#5762) Minor typo fix * Update social-authentication.md added some language changes and updates related to SAML2 difficulties I hit * Update docs/content/en/integrations/social-authentication.md Co-authored-by: Stefan Fleckenstein <stefan.fleckenstein@maibornwolff.de> * Update social-authentication.md Co-authored-by: valentijnscholten <valentijnscholten@gmail.com> Co-authored-by: Matt Colman <33348891+mtcolman@users.noreply.github.com> Co-authored-by: Stefan Fleckenstein <stefan.fleckenstein@maibornwolff.de>
The Snyk parser uses the file_path field to show dependency paths. Many package names include ampersands in them, which are not being preserved due to truncation when trimming out version numbers. This PR preserves the packages names in the file_path field.
* first shot #5777 * flake8 * Update test_rusty_hog_parser.py * fix unittest * typo Co-authored-by: Damien Carol <damien.carol@gmail.com>
* advances cyclonedx parser #5376 * fix unittest
…permissions (#5756) * înitial commit * intermediate commit * intermediate commit * documentation * remove forgotten is_staff flags * release documentation * make sure superusers are always staff as well
…5797) * Add support for including multiple setting files via extra_settings * Remove single setting copy blocks in favor of the generic one
Co-authored-by: Renovate Bot <bot@renovateapp.com>
Bumps [easymde](https://github.com/Ionaru/easy-markdown-editor) from 2.16.0 to 2.16.1. - [Release notes](https://github.com/Ionaru/easy-markdown-editor/releases) - [Changelog](https://github.com/Ionaru/easy-markdown-editor/blob/master/CHANGELOG.md) - [Commits](Ionaru/easy-markdown-editor@2.16.0...2.16.1) --- updated-dependencies: - dependency-name: easymde dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [json-log-formatter](https://github.com/marselester/json-log-formatter) from 0.5.0 to 0.5.1. - [Release notes](https://github.com/marselester/json-log-formatter/releases) - [Commits](marselester/json-log-formatter@v0.5.0...v0.5.1) --- updated-dependencies: - dependency-name: json-log-formatter dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [social-auth-core](https://github.com/python-social-auth/social-core) from 4.1.0 to 4.2.0. - [Release notes](https://github.com/python-social-auth/social-core/releases) - [Changelog](https://github.com/python-social-auth/social-core/blob/master/CHANGELOG.md) - [Commits](python-social-auth/social-core@4.1.0...4.2.0) --- updated-dependencies: - dependency-name: social-auth-core dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [sqlalchemy](https://github.com/sqlalchemy/sqlalchemy) from 1.4.29 to 1.4.31. - [Release notes](https://github.com/sqlalchemy/sqlalchemy/releases) - [Changelog](https://github.com/sqlalchemy/sqlalchemy/blob/main/CHANGES) - [Commits](https://github.com/sqlalchemy/sqlalchemy/commits) --- updated-dependencies: - dependency-name: sqlalchemy dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…5790) Co-authored-by: Renovate Bot <bot@renovateapp.com>
… (.github/workflows/release-drafter.yml) (#5788) Co-authored-by: Renovate Bot <bot@renovateapp.com>
Bumps [google-api-python-client](https://github.com/googleapis/google-api-python-client) from 2.35.0 to 2.36.0. - [Release notes](https://github.com/googleapis/google-api-python-client/releases) - [Changelog](https://github.com/googleapis/google-api-python-client/blob/main/CHANGELOG.md) - [Commits](googleapis/google-api-python-client@v2.35.0...v2.36.0) --- updated-dependencies: - dependency-name: google-api-python-client dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [numpy](https://github.com/numpy/numpy) from 1.22.0 to 1.22.1. - [Release notes](https://github.com/numpy/numpy/releases) - [Changelog](https://github.com/numpy/numpy/blob/main/doc/HOWTO_RELEASE.rst.txt) - [Commits](numpy/numpy@v1.22.0...v1.22.1) --- updated-dependencies: - dependency-name: numpy dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [asteval](https://github.com/newville/asteval) from 0.9.25 to 0.9.26. - [Release notes](https://github.com/newville/asteval/releases) - [Commits](newville/asteval@0.9.25...0.9.26) --- updated-dependencies: - dependency-name: asteval dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* Fix typo (#5575) * Add Edgescan parser * Add Edgescan API Importer * Add tests and test data * Add documentation * Update Tool_Type initializer to handle null values * Update parser to extract correct data * Update unit tests and data * Update Edgescan API and Parser * Update Edgescan API client and parser * Fix unit tests * Fix failing unit test * Clean json loading * Removed unnecessary scan type Co-authored-by: Fabian Affolter <mail@fabian-affolter.ch>
* CycloneDX support 1.4 * flake8 * Implement more features with Jake 1.4.1 reports * fix data * Fix XML 1.4 data * Make CVE destection more robust * Make title more consitent * changes after code review * Implement references * Update version of Jake * Remove duplicated code Co-authored-by: Stefan Fleckenstein <stefan.fleckenstein@maibornwolff.de>
* feat: Rework sslyze parser for version 5 * feat: Rework sslyze parser for ven 5 * Added Test data for new version, updated parser to handle both old and new versions. * Lint fix * Reverted defect_dojo_sample_data * rename test type and update settings for deduplication * revert formatting of sample data * rename db migration after rebase * add upgrade notes * rename db migration after rebase * work on unit tests tbc. * more work on unit tests Co-authored-by: Stefan Fleckenstein <stefan.fleckenstein@maibornwolff.de>
Bumps [redis](https://github.com/redis/redis-py) from 4.1.1 to 4.1.2. - [Release notes](https://github.com/redis/redis-py/releases) - [Changelog](https://github.com/redis/redis-py/blob/master/CHANGES) - [Commits](redis/redis-py@v4.1.1...v4.1.2) --- updated-dependencies: - dependency-name: redis dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [clipboard](https://github.com/zenorocha/clipboard.js) from 2.0.8 to 2.0.9. - [Release notes](https://github.com/zenorocha/clipboard.js/releases) - [Commits](zenorocha/clipboard.js@v2.0.8...v2.0.9) --- updated-dependencies: - dependency-name: clipboard dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…ose.yml) (#5831) Co-authored-by: Renovate Bot <bot@renovateapp.com>
Bumps [google-auth](https://github.com/googleapis/google-auth-library-python) from 2.4.1 to 2.5.0. - [Release notes](https://github.com/googleapis/google-auth-library-python/releases) - [Changelog](https://github.com/googleapis/google-auth-library-python/blob/main/CHANGELOG.md) - [Commits](googleapis/google-auth-library-python@v2.4.1...v2.5.0) --- updated-dependencies: - dependency-name: google-auth dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [coverage](https://github.com/nedbat/coveragepy) from 6.2 to 6.3. - [Release notes](https://github.com/nedbat/coveragepy/releases) - [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst) - [Commits](nedbat/coveragepy@6.2...6.3) --- updated-dependencies: - dependency-name: coverage dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…mpose.yml) (#5825) Co-authored-by: Renovate Bot <bot@renovateapp.com>
* First shot * Improve severity value handling * Add date for findings * Switch empty test file to real one * Cosmetic changes * Add more check for critical severity * changes after code review Co-authored-by: Stefan Fleckenstein <stefan.fleckenstein@maibornwolff.de>
* Async Import: Fix group_by flag * Integrate async kwarg into decorator * Update other async functions with the `**kwargs` var to remove syntax errors * Pass false positive unit tests
* Allow empty reports to be uploaded * Add data * Add more unit tests * Add empty file upload for the UI * Fix form for re-upload
* Option not to create user automatically * Fix: flake * Update: usage of native function * Fix: flake
Bumps [humanize](https://github.com/jmoiron/humanize) from 3.13.1 to 3.14.0. - [Release notes](https://github.com/jmoiron/humanize/releases) - [Commits](jmoiron/humanize@3.13.1...3.14.0) --- updated-dependencies: - dependency-name: humanize dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [django-watson](https://github.com/etianen/django-watson) from 1.6.0 to 1.6.1. - [Release notes](https://github.com/etianen/django-watson/releases) - [Changelog](https://github.com/etianen/django-watson/blob/master/CHANGELOG.markdown) - [Commits](etianen/django-watson@release-1.6.0...release-1.6.1) --- updated-dependencies: - dependency-name: django-watson dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps nginx from 1.21.5-alpine to 1.21.6-alpine. --- updated-dependencies: - dependency-name: nginx dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [google-auth](https://github.com/googleapis/google-auth-library-python) from 2.5.0 to 2.6.0. - [Release notes](https://github.com/googleapis/google-auth-library-python/releases) - [Changelog](https://github.com/googleapis/google-auth-library-python/blob/main/CHANGELOG.md) - [Commits](googleapis/google-auth-library-python@v2.5.0...v2.6.0) --- updated-dependencies: - dependency-name: google-auth dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [drf-spectacular](https://github.com/tfranzel/drf-spectacular) from 0.21.1 to 0.21.2. - [Release notes](https://github.com/tfranzel/drf-spectacular/releases) - [Changelog](https://github.com/tfranzel/drf-spectacular/blob/master/CHANGELOG.rst) - [Commits](tfranzel/drf-spectacular@0.21.1...0.21.2) --- updated-dependencies: - dependency-name: drf-spectacular dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [python-gitlab](https://github.com/python-gitlab/python-gitlab) from 2.10.1 to 3.1.1. - [Release notes](https://github.com/python-gitlab/python-gitlab/releases) - [Changelog](https://github.com/python-gitlab/python-gitlab/blob/main/CHANGELOG.md) - [Commits](python-gitlab/python-gitlab@v2.10.1...v3.1.1) --- updated-dependencies: - dependency-name: python-gitlab dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* copy python files from extra_settings * fix init of celery beat and worker by reading local_settings before executing manage.py Co-authored-by: Tiago Posse <tiago.posse@hi.health>
3 tasks
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Release triggered by
valentijnscholten