Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Release: Merge back 2.22.0 into dev from: master-into-bugfix/2.22.0-2.23.0-dev #8040

Merged
merged 63 commits into from
May 1, 2023
Merged

Release: Merge back 2.22.0 into dev from: master-into-bugfix/2.22.0-2.23.0-dev #8040

merged 63 commits into from
May 1, 2023

Conversation

github-actions[bot]
Copy link
Contributor

@github-actions github-actions bot commented May 1, 2023

Release triggered by Maffooch

dependabot bot and others added 30 commits April 3, 2023 10:14
@dependabot
Bump psycopg2-binary from 2.9.5 to 2.9.6 (#7926)
3d5fe67 
Bumps [psycopg2-binary](https://github.com/psycopg/psycopg2) from 2.9.5 to 2.9.6.
- [Release notes](https://github.com/psycopg/psycopg2/releases)
- [Changelog](https://github.com/psycopg/psycopg2/blob/master/NEWS)
- [Commits](https://github.com/psycopg/psycopg2/commits/2.9.6)

---
updated-dependencies:
- dependency-name: psycopg2-binary
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
Bump boto3 from 1.26.103 to 1.26.104 (#7923)
8bc5272 
Bumps [boto3](https://github.com/boto/boto3) from 1.26.103 to 1.26.104.
- [Release notes](https://github.com/boto/boto3/releases)
- [Changelog](https://github.com/boto/boto3/blob/develop/CHANGELOG.rst)
- [Commits](boto/boto3@1.26.103...1.26.104)

---
updated-dependencies:
- dependency-name: boto3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Update versions in application files
f053341
@Maffooch
Merge pull request #7929 from DefectDojo/master-into-dev/2.21.0-2.22.…
6c56c20 
…0-dev

Release: Merge back 2.21.0 into dev from: master-into-dev/2.21.0-2.22.0-dev
@dependabot
Bump pillow from 9.4.0 to 9.5.0 (#7925)
06af64b 
Bumps [pillow](https://github.com/python-pillow/Pillow) from 9.4.0 to 9.5.0.
- [Release notes](https://github.com/python-pillow/Pillow/releases)
- [Changelog](https://github.com/python-pillow/Pillow/blob/main/CHANGES.rst)
- [Commits](python-pillow/Pillow@9.4.0...9.5.0)

---
updated-dependencies:
- dependency-name: pillow
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
Bump nginx from 1.23.3-alpine to 1.23.4-alpine (#7922)
73e2de5 
Bumps nginx from 1.23.3-alpine to 1.23.4-alpine.

---
updated-dependencies:
- dependency-name: nginx
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@kiblik
Azure-groups: raise error on request (#7896)
c3f8d8d
@kokhanevych-macpaw
feat: fix jira errors handling (#7895)
48d3acc
@kiblik
UnitTest: Are all models defined in AdminSite? (#7731)
0343c9a 
* UnitTest: Are all models defined in AdminSite?

* Fix typos

* Fix some missings, add tagulous, flake8

* Flake8

* Fix condition
@Maffooch
Update models.py
87e6781
@dependabot
Bump boto3 from 1.26.104 to 1.26.105 (#7937)
8b22511 
Bumps [boto3](https://github.com/boto/boto3) from 1.26.104 to 1.26.105.
- [Release notes](https://github.com/boto/boto3/releases)
- [Changelog](https://github.com/boto/boto3/blob/develop/CHANGELOG.rst)
- [Commits](boto/boto3@1.26.104...1.26.105)

---
updated-dependencies:
- dependency-name: boto3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@renovate
Update rabbitmq Docker tag from 3.11.11 to v3.11.13 (docker-compose.y…
2c2dbfc 
…ml) (#7935)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
@dependabot
Bump boto3 from 1.26.105 to 1.26.106 (#7939)
9fd57ab 
Bumps [boto3](https://github.com/boto/boto3) from 1.26.105 to 1.26.106.
- [Release notes](https://github.com/boto/boto3/releases)
- [Changelog](https://github.com/boto/boto3/blob/develop/CHANGELOG.rst)
- [Commits](boto/boto3@1.26.105...1.26.106)

---
updated-dependencies:
- dependency-name: boto3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@coheigea
Add the ability to disable SLA notifications on a product basis (#7882)
76a3fb5
@dependabot
Bump coverage from 7.2.2 to 7.2.3 (#7947)
cff5768 
Bumps [coverage](https://github.com/nedbat/coveragepy) from 7.2.2 to 7.2.3.
- [Release notes](https://github.com/nedbat/coveragepy/releases)
- [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst)
- [Commits](nedbat/coveragepy@7.2.2...7.2.3)

---
updated-dependencies:
- dependency-name: coverage
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@renovate
Update redis:7.0.10-alpine Docker digest from 7.0.10 to 7.0.10-alpine…
1c42f99 
… (docker-compose.yml) (#7949)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
@renovate
Update postgres:15.2-alpine Docker digest from 15.2 to 15.2-alpine (d…
a8fdb98 
…ocker-compose.yml) (#7948)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
@renovate
Update rabbitmq:3.11.13-alpine Docker digest from 3.11.13 to 3.11.13-…
1f54cf5 
…alpine (docker-compose.yml) (#7945)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
@dependabot
Bump debugpy from 1.6.6 to 1.6.7 (#7944)
363eeb6 
Bumps [debugpy](https://github.com/microsoft/debugpy) from 1.6.6 to 1.6.7.
- [Release notes](https://github.com/microsoft/debugpy/releases)
- [Commits](microsoft/debugpy@v1.6.6...v1.6.7)

---
updated-dependencies:
- dependency-name: debugpy
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
Bump djangosaml2 from 1.5.5 to 1.5.6 (#7943)
08c2b5b 
Bumps [djangosaml2](https://github.com/IdentityPython/djangosaml2) from 1.5.5 to 1.5.6.
- [Release notes](https://github.com/IdentityPython/djangosaml2/releases)
- [Changelog](https://github.com/IdentityPython/djangosaml2/blob/master/CHANGES)
- [Commits](IdentityPython/djangosaml2@v1.5.5...v1.5.6)

---
updated-dependencies:
- dependency-name: djangosaml2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
Bump django-debug-toolbar from 3.8.1 to 4.0.0 (#7938)
399f0d6 
Bumps [django-debug-toolbar](https://github.com/jazzband/django-debug-toolbar) from 3.8.1 to 4.0.0.
- [Release notes](https://github.com/jazzband/django-debug-toolbar/releases)
- [Changelog](https://github.com/jazzband/django-debug-toolbar/blob/main/docs/changes.rst)
- [Commits](jazzband/django-debug-toolbar@3.8.1...4.0.0)

---
updated-dependencies:
- dependency-name: django-debug-toolbar
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@adrianasantex
Update detect_secrets parser and include FP findings in importer (#7915)
c4f562f
@dependabot
Bump nginx from c94a22b to dd2a917 (#7952)
c872128 
Bumps nginx from `c94a22b` to `dd2a917`.

---
updated-dependencies:
- dependency-name: nginx
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@iamnihal
Add talisman parser (#7933)
b627270
@dependabot
Bump python from 3.11.1-alpine3.16 to 3.11.3-alpine3.16 (#7953)
6ef031f 
Bumps python from 3.11.1-alpine3.16 to 3.11.3-alpine3.16.

---
updated-dependencies:
- dependency-name: python
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
Bump boto3 from 1.26.106 to 1.26.110 (#7957)
bafdbd8 
Bumps [boto3](https://github.com/boto/boto3) from 1.26.106 to 1.26.110.
- [Release notes](https://github.com/boto/boto3/releases)
- [Changelog](https://github.com/boto/boto3/blob/develop/CHANGELOG.rst)
- [Commits](boto/boto3@1.26.106...1.26.110)

---
updated-dependencies:
- dependency-name: boto3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
Bump python-gitlab from 3.13.0 to 3.14.0 (#7956)
7bb3294 
Bumps [python-gitlab](https://github.com/python-gitlab/python-gitlab) from 3.13.0 to 3.14.0.
- [Release notes](https://github.com/python-gitlab/python-gitlab/releases)
- [Changelog](https://github.com/python-gitlab/python-gitlab/blob/main/CHANGELOG.md)
- [Commits](python-gitlab/python-gitlab@v3.13.0...v3.14.0)

---
updated-dependencies:
- dependency-name: python-gitlab
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
Bump boto3 from 1.26.110 to 1.26.111 (#7963)
68d5ee0 
Bumps [boto3](https://github.com/boto/boto3) from 1.26.110 to 1.26.111.
- [Release notes](https://github.com/boto/boto3/releases)
- [Changelog](https://github.com/boto/boto3/blob/develop/CHANGELOG.rst)
- [Commits](boto/boto3@1.26.110...1.26.111)

---
updated-dependencies:
- dependency-name: boto3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@abheeshtan @Maffooch
add license parser to trivy scan (#7624)
df02ef3 
* add license parser to trivy scan

* add license parser to trivy scan

* add license parser to trivy scan

* add license parser to trivy scan

* add license parser to trivy scan

* Update test_trivy_parser.py

---------

Co-authored-by: Cody Maffucci <46459665+Maffooch@users.noreply.github.com>
@kiblik
Fix processing of test/eng fields during re-import (#7955)
7aa937c 
* Fix processing of test/eng fields during re-import

* Dump editing eng
dependabot bot and others added 21 commits April 20, 2023 16:27
@dependabot
Bump boto3 from 1.26.115 to 1.26.116 (#7993)
063cd43 
Bumps [boto3](https://github.com/boto/boto3) from 1.26.115 to 1.26.116.
- [Release notes](https://github.com/boto/boto3/releases)
- [Changelog](https://github.com/boto/boto3/blob/develop/CHANGELOG.rst)
- [Commits](boto/boto3@1.26.115...1.26.116)

---
updated-dependencies:
- dependency-name: boto3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@renovate
Update dependency postcss from 8.4.22 to v8.4.23 (docs/package.json) (#…
e514d88 
…7990)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
@shipko
Fix wide grants for gitlab auth (#7960)
61023da 
* Fix wide grants for gitlab auth

* Add doc

---------

Co-authored-by: Дмитрий Муковкин <d.mukovkin@cft.ru>
@dependabot
Bump boto3 from 1.26.116 to 1.26.117 (#8000)
d04473b 
Bumps [boto3](https://github.com/boto/boto3) from 1.26.116 to 1.26.117.
- [Release notes](https://github.com/boto/boto3/releases)
- [Changelog](https://github.com/boto/boto3/blob/develop/CHANGELOG.rst)
- [Commits](boto/boto3@1.26.116...1.26.117)

---
updated-dependencies:
- dependency-name: boto3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Update versions in application files
a36ea8c
@Maffooch
Merge pull request #8009 from DefectDojo/master-into-dev/2.21.2-2.22.…
29ba61c 
…0-dev

Release: Merge back 2.21.2 into dev from: master-into-dev/2.21.2-2.22.0-dev
@dependabot
Bump social-auth-core from 4.4.1 to 4.4.2 (#8005)
73be110 
Bumps [social-auth-core](https://github.com/python-social-auth/social-core) from 4.4.1 to 4.4.2.
- [Release notes](https://github.com/python-social-auth/social-core/releases)
- [Changelog](https://github.com/python-social-auth/social-core/blob/master/CHANGELOG.md)
- [Commits](python-social-auth/social-core@4.4.1...4.4.2)

---
updated-dependencies:
- dependency-name: social-auth-core
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
Bump boto3 from 1.26.117 to 1.26.118 (#8003)
ecc518f 
Bumps [boto3](https://github.com/boto/boto3) from 1.26.117 to 1.26.118.
- [Release notes](https://github.com/boto/boto3/releases)
- [Changelog](https://github.com/boto/boto3/blob/develop/CHANGELOG.rst)
- [Commits](boto/boto3@1.26.117...1.26.118)

---
updated-dependencies:
- dependency-name: boto3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
Bump yaml from 2.1.1 to 2.2.2 in /docs (#8007)
0ff293f 
Bumps [yaml](https://github.com/eemeli/yaml) from 2.1.1 to 2.2.2.
- [Release notes](https://github.com/eemeli/yaml/releases)
- [Commits](eemeli/yaml@v2.1.1...v2.2.2)

---
updated-dependencies:
- dependency-name: yaml
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
Bump requests from 2.28.2 to 2.29.0 (#8018)
18c62d4 
Bumps [requests](https://github.com/psf/requests) from 2.28.2 to 2.29.0.
- [Release notes](https://github.com/psf/requests/releases)
- [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md)
- [Commits](psf/requests@v2.28.2...v2.29.0)

---
updated-dependencies:
- dependency-name: requests
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
Bump boto3 from 1.26.118 to 1.26.121 (#8019)
4b2c725 
Bumps [boto3](https://github.com/boto/boto3) from 1.26.118 to 1.26.121.
- [Release notes](https://github.com/boto/boto3/releases)
- [Changelog](https://github.com/boto/boto3/blob/develop/CHANGELOG.rst)
- [Commits](boto/boto3@1.26.118...1.26.121)

---
updated-dependencies:
- dependency-name: boto3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@Ma1tobiose
Update sarif parser.py fit for android lint (#8017)
2e1bef1 
* Update parser.py

Exception handling, when uploading Android Lint scan results, there may be no StartLine case

* Update parser.py unit test bug fix
@dependabot
Bump boto3 from 1.26.121 to 1.26.122 (#8027)
38e8ee4 
Bumps [boto3](https://github.com/boto/boto3) from 1.26.121 to 1.26.122.
- [Release notes](https://github.com/boto/boto3/releases)
- [Changelog](https://github.com/boto/boto3/blob/develop/CHANGELOG.rst)
- [Commits](boto/boto3@1.26.121...1.26.122)

---
updated-dependencies:
- dependency-name: boto3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
Bump coverage from 7.2.3 to 7.2.4 (#8026)
7fa1d12 
Bumps [coverage](https://github.com/nedbat/coveragepy) from 7.2.3 to 7.2.4.
- [Release notes](https://github.com/nedbat/coveragepy/releases)
- [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst)
- [Commits](nedbat/coveragepy@7.2.3...7.2.4)

---
updated-dependencies:
- dependency-name: coverage
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@renovate
Update rabbitmq Docker tag from 3.11.13 to v3.11.14 (docker-compose.y…
7fd952c 
…ml) (#8024)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
@manuel-sommer
🎉 New parser: Wazuh #7683 (#7684)
0a08170 
* 🎉 first shot, unittests are missing #7683

* flake8

* add unittests

* update according to comments

* flake8

* fix according to code review

* fix according to comment

* flake8

* fix

* fix unittest

---------

Co-authored-by: Manuel Sommer <manuel.sommer@tradebyte.com>
@Maffooch @coheigea
Merge Bugfix into Dev (#8037)
f7a2d92 
* Update versions in application files

* Don't send the response headers to slack in a JIRA alert (#8011)

---------

Co-authored-by: DefectDojo release bot <dojo-release-bot@users.noreply.github.com>
Co-authored-by: Colm O hEigeartaigh <coheigea@users.noreply.github.com>
Update versions in application files
3e68a43
@Maffooch
Merge pull request #8038 from DefectDojo/release/2.22.0
e5268c1 
Release: Merge release into master from: release/2.22.0
Update versions in application files
2e3b8e2
@Maffooch
Merge branch 'bugfix' into master-into-bugfix/2.22.0-2.23.0-dev
b2982dc
@github-actions github-actions bot added docker docs helm New Migration Adding a new migration file. Take care when merging. parser settings_changes Needs changes to settings.py based on changes in settings.dist.py included in this PR unittests labels May 1, 2023
@Maffooch Maffooch merged commit 0b4f564 into bugfix May 1, 2023
114 checks passed
@Maffooch Maffooch deleted the master-into-bugfix/2.22.0-2.23.0-dev branch May 1, 2023 17:15
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
docker docs helm New Migration Adding a new migration file. Take care when merging. parser settings_changes Needs changes to settings.py based on changes in settings.dist.py included in this PR unittests
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet