Skip to content

Merge Develop for release #388

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
waTeim merged 67 commits into from
Aug 18, 2025
Merged

Merge Develop for release #388

waTeim merged 67 commits into from
Aug 18, 2025

Conversation

@waTeim
Copy link
Contributor

@waTeim waTeim commented Aug 7, 2025
edited
Loading

There is a lot to review accumulated over many months. Leaving it here to be fixed in pieces.

Describe your changes

General Best Practice

  • I have performed a self-review of my code
  • If it is a core feature, I have added thorough tests
  • I have updated the documentation and README where necessary

frostyfan109 and others added 30 commits October 28, 2024 15:04
@frostyfan109
remove aid info from app identity token
a25cb55
@frostyfan109
Fix log level bug in makefile
f4e9211
@frostyfan109
change tycho info logging to debug level
3e39569
@frostyfan109
add select info logs back to tycho
f94156b
@frostyfan109
add info log for app termination
aca28b9
@frostyfan109
add further logging changes and authentication signal logging
06529c8
@frostyfan109
add default helx favicon for api logging purposes
2197af1
@frostyfan109
downgrade 403 list users endpoint to debug log, fix signal kwarg bug,…
885bb27 
… upgrade debug_toolbar and fix associated bug
@frostyfan109
downgrade debug-toolbar back to original version due to version confl…
04f3299 
…ict out of scope of pr
@frostyfan109
Merge branch 'remove-aid-apptoken' of https://github.com/helxplatform…
2619a0b 
…/appstore into audit-logging
@frostyfan109
Restore tycho logging. Set tycho log level to warning+. Move app star…
3d1cf61 
…t/delete to appstore internals
@frostyfan109
move log order in app launch order, hide delete prints in tycho
0af823a
@frostyfan109
update dockerfile
3295ab4
@frostyfan109
revert to python3.9 to avoid pyyaml/cython conflict
4dcd98b
@frostyfan109
upgrade from python 3.9 patch 18 to 21
6f61803
@frostyfan109
remove pvc collectiondelete that lacked permission
59209ff
@frostyfan109
Merge pull request #377 from helxplatform/audit-logging
13ba2ed 
Audit logging
@waTeim
Set the enableServiceLins to false without exception
3e9aec3
@frostyfan109
Upgrade Django to latest 4.2 patch, remove superfluous flask requirem…
13fdf5c 
…ents
@frostyfan109
update gitpython patch
5db139b
@frostyfan109
delete superfluous sqlparse req
ef725bf
@frostyfan109
Upgrade to python 3.9.23
6cf27b7
@frostyfan109
upgrade gunicorn to 23.0.0
bed836a
@frostyfan109
upgrade requests, jinja
8e3f274
@frostyfan109
upgrade drf
68247f8
@frostyfan109
test bookworm image
0cf60f0
@frostyfan109
test remove build
5f3ffd2
@frostyfan109
also remove installs
592b83d
@frostyfan109
test removing libpq5 and gcc
61df939
@frostyfan109
test removing build-essential
b379d34
frostyfan109 and others added 21 commits June 18, 2025 15:53
@frostyfan109
remove netifaces
c67c1f9
@frostyfan109
remove netifaces import
ef404ff
@frostyfan109
add debug
c732082
@frostyfan109
add openssl
071cf34
@frostyfan109
upgrade urllib3
a6f48fd
@frostyfan109
dockerfile alpine permission fixes
e99170c
@frostyfan109
upgrade requests-cache to resolve urllib3 conflict
ef1f992
@frostyfan109
try to force cache invalidate
462f107
@frostyfan109
remove permission change
7a73a63
@frostyfan109
fix chown and remove debian install step
8f106a8
@frostyfan109
run on non-root user
7b12f49
@frostyfan109
fix typo
8d4939c
@frostyfan109
more user perm tweaking.
c4e60af
@frostyfan109
install as root
feee5af
@frostyfan109
create symlink to /shared under /home/user/shared for ordrd deployments
a3835ff
@frostyfan109
Merge pull request #384 from helxplatform/shared-symlink
07016d1 
create symlink to /shared under /home/user/shared for ordrd deployments
@waTeim
Feature; add ldap check for whitelist inclusion
0c62425
@waTeim
Merge pull request #378 from helxplatform/security-upgrades
3f216e8 
Security upgrades
@waTeim
resolve requests_cache conflict
bb00354
@waTeim
Merge branch 'develop' into hlxk_396
e12f41d
@waTeim
Merge pull request #385 from helxplatform/hlxk_396
baaf36c 
Feature; add ldap check for whitelist inclusion
@joshua-seals
Copy link
Collaborator

joshua-seals commented Aug 11, 2025
edited
Loading

The Trivy issue we are seeing appears to point to a Django vulnerability which would cause significant risk/effort to change due to the age of Django itself. However given the defense in depth strategy and the fact that we do not use this particular library for sql-lite, it's existence in the codebase poses very little risk based on the evidence that has been provided to me. I approve the PR for Jeff to merge.

@joshua-seals joshua-seals self-requested a review August 11, 2025 15:09
waTeim added 2 commits August 13, 2025 13:40
@waTeim
README++
d8b83e5
@waTeim
Merge pull request #389 from helxplatform/hlxk_386
c3a85d1 
Set the enableServiceLins to false without exception
@waTeim waTeim merged commit 7832f9d into master Aug 18, 2025
9 of 10 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@pj-linebaugh pj-linebaugh pj-linebaugh approved these changes

@joshua-seals joshua-seals joshua-seals approved these changes

@cnbennett3 cnbennett3 Awaiting requested review from cnbennett3

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@waTeim @joshua-seals @pj-linebaugh @frostyfan109