Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix case-sensitivity for automated snyk update script #906

Merged
merged 11 commits into from
Apr 4, 2023
Merged

Fix case-sensitivity for automated snyk update script #906

merged 11 commits into from
Apr 4, 2023

Conversation

nickumia-reisys
Copy link
Contributor

@nickumia-reisys nickumia-reisys commented Apr 3, 2023
edited
Loading

Related to

Changes:

  • ckanext-qa doesn't build unless setuptools is pinned to 67.1.0
  • Update snyk-update.py to accommodate case sensitivity for package names (i.e. Flask and flask will both match if it needs to be updated; also flask-??? won't match and cause unintended repercussions)
  • Successful run of make update-dependencies

nickumia-reisys and others added 6 commits April 3, 2023 13:45
@nickumia-reisys
new: fix case-sensitivity for snyk updates
4470b67 
- Attempt to check if package was previously being specified before automatically adding it because  of the scan
@nickumia-reisys
fix: reset update to False for the next package
3a48337 
Otherwise, the first package will set update for every package
@nickumia-reisys
fix: ckanext-qa doesn't like newer setuptools in virtualenv?
d9936b7
@nickumia-reisys
new: add special docker-compose service for requirements
373f241 
This should help cut down on build+install time with the snyk scan
@datagov-bot
Update Pip Requirements
fa213ec
@nickumia-reisys
Merge pull request #907 from GSA/requirement-patches
ad00d4f 
[Snyk + GH Actions] Update requirements
@nickumia-reisys nickumia-reisys marked this pull request as ready for review April 3, 2023 18:45
@nickumia-reisys nickumia-reisys requested a review from a team April 3, 2023 18:57
@nickumia-reisys nickumia-reisys mentioned this pull request Apr 3, 2023
Closed
Jin-Sun-tts
Jin-Sun-tts previously approved these changes Apr 3, 2023
View reviewed changes
nickumia-reisys
nickumia-reisys commented Apr 3, 2023
View reviewed changes
ckan/requirements.txt Outdated Show resolved Hide resolved
btylerburton
btylerburton previously approved these changes Apr 3, 2023
View reviewed changes
@nickumia-reisys nickumia-reisys requested a review from a team April 3, 2023 21:12
Jin-Sun-tts
Jin-Sun-tts previously approved these changes Apr 3, 2023
View reviewed changes
nickumia-reisys
nickumia-reisys commented Apr 4, 2023
View reviewed changes
ckan/requirements.txt Outdated Show resolved Hide resolved
@nickumia-reisys nickumia-reisys merged commit 5f2b323 into main Apr 4, 2023
@nickumia-reisys nickumia-reisys deleted the fix-snyk-update-script branch April 4, 2023 15:01
@nickumia-reisys
Copy link
Contributor Author

There are currently two open issues for upstream ckan changes that are preventing us from upgrading

@Jin-Sun-tts Jin-Sun-tts mentioned this pull request Apr 4, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Jin-Sun-tts Jin-Sun-tts Jin-Sun-tts approved these changes

@btylerburton btylerburton Awaiting requested review from btylerburton

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@nickumia-reisys @btylerburton @Jin-Sun-tts @datagov-bot