Skip to content

deps(backend): bump allauth #11030

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
SchrodingersGat merged 4 commits into from
Dec 16, 2025
Merged

deps(backend): bump allauth #11030

SchrodingersGat merged 4 commits into from
Dec 16, 2025

Conversation

@matmair
Copy link
Member

@matmair matmair commented Dec 16, 2025
edited
Loading

Bumps allauth to address some provider specific shortcomings.

https://github.com/inventree/InvenTree/security/dependabot/277

@matmair matmair added this to the 1.1.8 milestone Dec 16, 2025
@matmair matmair self-assigned this Dec 16, 2025
@matmair matmair added security Relates to a security issue dependencies Pull requests that update a dependency file labels Dec 16, 2025
@netlify
Copy link

netlify bot commented Dec 16, 2025
edited
Loading

Deploy Preview for inventree-web-pui-preview canceled.

Name Link
🔨 Latest commit a712e93
🔍 Latest deploy log https://app.netlify.com/projects/inventree-web-pui-preview/deploys/6941dba0cee07b000868fe07

@matmair matmair added backport Apply this label to a PR to enable auto-backport action backport-to-1.1.x labels Dec 16, 2025
@codecov
Copy link

codecov bot commented Dec 16, 2025
edited
Loading

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 88.18%. Comparing base (140c65b) to head (a712e93).
⚠️ Report is 1 commits behind head on master.

Additional details and impacted files 
@@            Coverage Diff             @@
##           master   #11030      +/-   ##
==========================================
- Coverage   88.18%   88.18%   -0.01%     
==========================================
  Files        1290     1290              
  Lines       58063    58063              
  Branches     1969     1969              
==========================================
- Hits        51203    51202       -1     
- Misses       6369     6370       +1     
  Partials      491      491
Flag Coverage Δ
backend 89.48% <100.00%> (-0.01%) ⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

Components Coverage Δ
Backend Apps 92.04% <ø> (ø)
Backend General 93.48% <ø> (ø)
Frontend 70.86% <ø> (ø)
🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

@matmair matmair marked this pull request as ready for review December 16, 2025 22:22
@matmair matmair removed backport Apply this label to a PR to enable auto-backport action backport-to-1.1.x labels Dec 16, 2025
@SchrodingersGat
Copy link
Member

SchrodingersGat commented Dec 16, 2025

Should we add a unit test to ensure that a token associated with an inactive user is rejected?

@matmair
Copy link
Member Author

matmair commented Dec 16, 2025

We already have tests for that, this only effected allauth APIs in our software as we have a custom auth middleware that checks these things for the core api.

@matmair matmair modified the milestones: 1.1.8, 1.2.0 Dec 16, 2025
@SchrodingersGat SchrodingersGat merged commit 8a614f4 into inventree:master Dec 16, 2025
35 checks passed
@SchrodingersGat SchrodingersGat deleted the bump-allauth branch December 16, 2025 23:21
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@SchrodingersGat SchrodingersGat SchrodingersGat approved these changes

Assignees

@matmair matmair

Labels

dependencies Pull requests that update a dependency file security Relates to a security issue

Projects

None yet

Milestone

1.2.0

Development

Successfully merging this pull request may close these issues.

2 participants

@matmair @SchrodingersGat