darkhelm/notifications-api
1
0
Fork 0
mirror of https://github.com/GSA/notifications-api.git synced 2026-01-03 16:10:45 -05:00
Code Issues Packages Projects Releases Wiki Activity
12,855 Commits 127 Branches 60 Tags
47a3c6dc9129c4445aade5cfdbd9a70d2f3c0dfb
Commit Graph

12855 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
dependabot[bot]
47a3c6dc91 Bump phonenumbers from 9.0.5 to 9.0.6 
Bumps [phonenumbers](https://github.com/daviddrysdale/python-phonenumbers) from 9.0.5 to 9.0.6.
- [Commits](https://github.com/daviddrysdale/python-phonenumbers/compare/v9.0.5...v9.0.6)

---
updated-dependencies:
- dependency-name: phonenumbers
  dependency-version: 9.0.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-29 13:12:28 +00:00
Beverly Nguyen
500dc80557 Merge pull request #1743 from GSA/ignore-redis-false-report 
Updated pip-audit ignore-vulns
 2025-05-28 17:32:24 -07:00
Carlo Costino
55e24a611a Updated pip-audit ignore-vulns 
This changeset updates the PYSEC notices to ignore to due versions that either cannot be fixed or are false positives.  Specifically, this changeset removes previously ignored vulnerability reports and adds PYSEC-2023-312 to the list because it is a false positive and refers to Redis itself, not the Python Redis client (see https://github.com/pypa/advisory-database/issues/237 for details).

Signed-off-by: Carlo Costino <carlo.costino@gsa.gov>
 2025-05-28 17:43:50 -04:00
Alex Janousek
c924cff4d2 Merge pull request #1739 from GSA/dependabot/pip/cryptography-45.0.3 
Bump cryptography from 45.0.2 to 45.0.3
 2025-05-27 18:34:19 -04:00
dependabot[bot]
cf70242482 Bump cryptography from 45.0.2 to 45.0.3 
Bumps [cryptography](https://github.com/pyca/cryptography) from 45.0.2 to 45.0.3.
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/pyca/cryptography/compare/45.0.2...45.0.3)

---
updated-dependencies:
- dependency-name: cryptography
  dependency-version: 45.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-27 22:27:19 +00:00
Alex Janousek
903587ed27 Merge pull request #1740 from GSA/dependabot/pip/setuptools-80.9.0 
Bump setuptools from 80.8.0 to 80.9.0
 2025-05-27 18:25:07 -04:00
dependabot[bot]
e98fb4913f Bump setuptools from 80.8.0 to 80.9.0 
Bumps [setuptools](https://github.com/pypa/setuptools) from 80.8.0 to 80.9.0.
- [Release notes](https://github.com/pypa/setuptools/releases)
- [Changelog](https://github.com/pypa/setuptools/blob/main/NEWS.rst)
- [Commits](https://github.com/pypa/setuptools/compare/v80.8.0...v80.9.0)

---
updated-dependencies:
- dependency-name: setuptools
  dependency-version: 80.9.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-27 22:18:27 +00:00
Alex Janousek
da629baef0 Merge pull request #1741 from GSA/dependabot/pip/freezegun-1.5.2 
Bump freezegun from 1.5.1 to 1.5.2
 2025-05-27 18:16:19 -04:00
dependabot[bot]
4e7a0893ff Bump freezegun from 1.5.1 to 1.5.2 
Bumps [freezegun](https://github.com/spulec/freezegun) from 1.5.1 to 1.5.2.
- [Release notes](https://github.com/spulec/freezegun/releases)
- [Changelog](https://github.com/spulec/freezegun/blob/master/CHANGELOG)
- [Commits](https://github.com/spulec/freezegun/compare/1.5.1...1.5.2)

---
updated-dependencies:
- dependency-name: freezegun
  dependency-version: 1.5.2
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-27 21:46:36 +00:00
ccostino
04a50c8825 Merge pull request #1732 from GSA/update-register_socket_handlers 
Socket.IO 400 errors
 2025-05-27 14:23:57 -04:00
Alex Janousek
119914a3f7 Merge pull request #1735 from GSA/dependabot/pip/pytest-xdist-3.7.0 
Bump pytest-xdist from 3.6.1 to 3.7.0
 2025-05-27 14:07:55 -04:00
dependabot[bot]
3e1a7df375 Bump pytest-xdist from 3.6.1 to 3.7.0 
Bumps [pytest-xdist](https://github.com/pytest-dev/pytest-xdist) from 3.6.1 to 3.7.0.
- [Release notes](https://github.com/pytest-dev/pytest-xdist/releases)
- [Changelog](https://github.com/pytest-dev/pytest-xdist/blob/master/CHANGELOG.rst)
- [Commits](https://github.com/pytest-dev/pytest-xdist/compare/v3.6.1...v3.7.0)

---
updated-dependencies:
- dependency-name: pytest-xdist
  dependency-version: 3.7.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-27 18:00:08 +00:00
Alex Janousek
7168d50f38 Merge pull request #1731 from GSA/dependabot/pip/cachetools-6.0.0 
Bump cachetools from 5.4.0 to 6.0.0
 2025-05-27 13:58:01 -04:00
dependabot[bot]
d5c0497767 Bump cachetools from 5.4.0 to 6.0.0 
Bumps [cachetools](https://github.com/tkem/cachetools) from 5.4.0 to 6.0.0.
- [Changelog](https://github.com/tkem/cachetools/blob/master/CHANGELOG.rst)
- [Commits](https://github.com/tkem/cachetools/compare/v5.4.0...v6.0.0)

---
updated-dependencies:
- dependency-name: cachetools
  dependency-version: 6.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-27 17:51:16 +00:00
Alex Janousek
cb8e3776a8 Merge pull request #1736 from GSA/dependabot/pip/moto-5.1.5 
Bump moto from 5.1.4 to 5.1.5
 2025-05-27 13:49:08 -04:00
dependabot[bot]
eb4c6a5ff9 Bump moto from 5.1.4 to 5.1.5 
Bumps [moto](https://github.com/getmoto/moto) from 5.1.4 to 5.1.5.
- [Release notes](https://github.com/getmoto/moto/releases)
- [Changelog](https://github.com/getmoto/moto/blob/master/CHANGELOG.md)
- [Commits](https://github.com/getmoto/moto/compare/5.1.4...5.1.5)

---
updated-dependencies:
- dependency-name: moto
  dependency-version: 5.1.5
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-27 16:47:06 +00:00
ccostino
d20dc03e77 Merge pull request #1733 from GSA/dependabot/pip/pytest-mock-3.14.1 
Bump pytest-mock from 3.14.0 to 3.14.1
 2025-05-27 12:44:50 -04:00
dependabot[bot]
7aa98ffc5b Bump pytest-mock from 3.14.0 to 3.14.1 
Bumps [pytest-mock](https://github.com/pytest-dev/pytest-mock) from 3.14.0 to 3.14.1.
- [Release notes](https://github.com/pytest-dev/pytest-mock/releases)
- [Changelog](https://github.com/pytest-dev/pytest-mock/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/pytest-dev/pytest-mock/compare/v3.14.0...v3.14.1)

---
updated-dependencies:
- dependency-name: pytest-mock
  dependency-version: 3.14.1
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-27 15:14:35 +00:00
ccostino
a118262da2 Merge pull request #1734 from GSA/dependabot/pip/jsonschema-4.24.0 
Bump jsonschema from 4.23.0 to 4.24.0
 2025-05-27 11:12:29 -04:00
dependabot[bot]
6d3c1e4bea Bump jsonschema from 4.23.0 to 4.24.0 
Bumps [jsonschema](https://github.com/python-jsonschema/jsonschema) from 4.23.0 to 4.24.0.
- [Release notes](https://github.com/python-jsonschema/jsonschema/releases)
- [Changelog](https://github.com/python-jsonschema/jsonschema/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/python-jsonschema/jsonschema/compare/v4.23.0...v4.24.0)

---
updated-dependencies:
- dependency-name: jsonschema
  dependency-version: 4.24.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-26 21:38:26 +00:00
Beverly Nguyen
590ac64cba imported but unused 2025-05-23 16:02:01 -07:00
Beverly Nguyen
fd14baa2b1 Merge branch 'main' into update-register_socket_handlers 2025-05-23 15:57:13 -07:00
Beverly Nguyen
dcae1ca914 The issue might be that without importing socketio in application.py, gunicorn can't find the Socket.IO server to handle the WebSocket upgrade. 2025-05-23 15:55:50 -07:00
Alex Janousek
d96b6658de Merge pull request #1721 from GSA/feature/scan-updates 
Added false positive fix for scan
 2025-05-23 10:50:05 -04:00
Carlo Costino
6742d45f60 Merge branch 'main' into feature/scan-updates 2025-05-23 10:42:56 -04:00
ccostino
50132bc60d Merge pull request #1730 from GSA/update-register_socket_handlers 
Added @socketio.on(connect) and @socketio.on(disconnect)
 2025-05-23 10:32:38 -04:00
ccostino
a987f93ef1 Merge pull request #1726 from GSA/blocking 
change page size
 2025-05-23 10:23:36 -04:00
Kenneth Kehl
1b7c6c2b74 Update app/aws/s3.py 
Co-authored-by: ccostino <ccostino@users.noreply.github.com>
 2025-05-23 06:58:21 -07:00
Kenneth Kehl
91f3bbaf98 Update app/aws/s3.py 
Co-authored-by: ccostino <ccostino@users.noreply.github.com>
 2025-05-23 06:58:09 -07:00
Beverly Nguyen
ec60818d8d remove comments 2025-05-22 17:09:02 -07:00
Beverly Nguyen
c5dca6b533 black . 2025-05-22 17:08:15 -07:00
Beverly Nguyen
877313509f Added @socketio.on(connect) and @socketio.on(disconnect) handlers to log and manage Socket.IO connections. The intention is to resolve connection issues by ensuring the server properly acknowledges incoming WebSocket clients. 2025-05-22 17:07:02 -07:00
Kenneth Kehl
8861cc4963 merge from main 2025-05-22 08:31:56 -07:00
Kenneth Kehl
170dc12284 fix reports 2025-05-22 08:31:33 -07:00
Alex Janousek
aa24bde454 Merge pull request #1728 from GSA/dependabot/pip/alembic-1.16.0 
Bump alembic from 1.15.2 to 1.16.0
05-22-2025 		2025-05-22 10:16:00 -04:00
dependabot[bot]
beda5a409d Bump alembic from 1.15.2 to 1.16.0 
Bumps [alembic](https://github.com/sqlalchemy/alembic) from 1.15.2 to 1.16.0.
- [Release notes](https://github.com/sqlalchemy/alembic/releases)
- [Changelog](https://github.com/sqlalchemy/alembic/blob/main/CHANGES)
- [Commits](https://github.com/sqlalchemy/alembic/commits)

---
updated-dependencies:
- dependency-name: alembic
  dependency-version: 1.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-22 11:48:28 +00:00
Alex Janousek
3ef32e6a05 Merge pull request #1727 from GSA/dependabot/pip/click-8.2.1 
Bump click from 8.2.0 to 8.2.1
 2025-05-22 07:46:09 -04:00
dependabot[bot]
bfd3342006 Bump click from 8.2.0 to 8.2.1 
Bumps [click](https://github.com/pallets/click) from 8.2.0 to 8.2.1.
- [Release notes](https://github.com/pallets/click/releases)
- [Changelog](https://github.com/pallets/click/blob/main/CHANGES.rst)
- [Commits](https://github.com/pallets/click/compare/8.2.0...8.2.1)

---
updated-dependencies:
- dependency-name: click
  dependency-version: 8.2.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-21 22:04:43 +00:00
Kenneth Kehl
45f9790b1c fix tests 2025-05-21 14:47:51 -07:00
Kenneth Kehl
6a5ff00136 change page size 2025-05-21 14:12:42 -07:00
Kenneth Kehl
2788c21420 change page size 2025-05-21 13:44:14 -07:00
ccostino
76014891ac Merge pull request #1725 from GSA/readme-update 
update readme
 2025-05-21 14:40:59 -04:00
Beverly Nguyen
2739ff644c Merge branch 'main' into readme-update 2025-05-21 10:37:04 -07:00
ccostino
f37641990b Merge pull request #1724 from GSA/blocking 
switch to fips endpoint
 2025-05-21 10:10:13 -04:00
Beverly Nguyen
bf87076d01 Merge pull request #1723 from GSA/dependabot/pip/setuptools-80.8.0 
Bump setuptools from 80.7.1 to 80.8.0
 2025-05-20 14:28:23 -07:00
Beverly Nguyen
30cb114e3c update readme 2025-05-20 14:18:51 -07:00
Kenneth Kehl
860d4c73e3 fix test 2025-05-20 14:16:57 -07:00
Kenneth Kehl
f62e3269f0 switch to fips endpoint 2025-05-20 14:02:06 -07:00
ccostino
87c7c8da1d Merge pull request #1719 from GSA/blocking 
add sleep, more error handling, better debug message
 2025-05-20 16:30:01 -04:00
dependabot[bot]
ca2a1012db Bump setuptools from 80.7.1 to 80.8.0 
Bumps [setuptools](https://github.com/pypa/setuptools) from 80.7.1 to 80.8.0.
- [Release notes](https://github.com/pypa/setuptools/releases)
- [Changelog](https://github.com/pypa/setuptools/blob/main/NEWS.rst)
- [Commits](https://github.com/pypa/setuptools/compare/v80.7.1...v80.8.0)

---
updated-dependencies:
- dependency-name: setuptools
  dependency-version: 80.8.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-20 20:23:14 +00:00