darkhelm/notifications-api
1
0
Fork 0
mirror of https://github.com/GSA/notifications-api.git synced 2025-12-20 07:21:13 -05:00
Code Issues Packages Projects Releases Wiki Activity
13,079 Commits 126 Branches 60 Tags
4dbb79f04ff2ab24ba874a2a604c333f12fe8d2e
Commit Graph

13079 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Kenneth Kehl
5eade384c5 fix imports 2025-06-04 07:42:41 -07:00
Kenneth Kehl
9379ca0436 get rid of oscrypto 2025-06-04 07:38:53 -07:00
ccostino
acfbffa3d8 Merge pull request #1745 from GSA/pythonupgrade 
python upgrade to 3.13.2
 2025-06-03 14:53:46 -04:00
Kenneth Kehl
965bb3047c update 2025-06-03 08:57:34 -07:00
ccostino
bcd33e7af8 Merge pull request #1751 from GSA/dependabot/pip/pytest-8.4.0 
Bump pytest from 8.3.5 to 8.4.0
 2025-06-03 10:47:27 -04:00
dependabot[bot]
64535abb7c Bump pytest from 8.3.5 to 8.4.0 
Bumps [pytest](https://github.com/pytest-dev/pytest) from 8.3.5 to 8.4.0.
- [Release notes](https://github.com/pytest-dev/pytest/releases)
- [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/pytest-dev/pytest/compare/8.3.5...8.4.0)

---
updated-dependencies:
- dependency-name: pytest
  dependency-version: 8.4.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-06-03 12:56:28 +00:00
ccostino
25ee386155 Merge pull request #1750 from GSA/dependabot/pip/celery-5.5.3 
Bump celery from 5.5.2 to 5.5.3
 2025-06-03 08:54:17 -04:00
dependabot[bot]
e15a49ba18 Bump celery from 5.5.2 to 5.5.3 
Bumps [celery](https://github.com/celery/celery) from 5.5.2 to 5.5.3.
- [Release notes](https://github.com/celery/celery/releases)
- [Changelog](https://github.com/celery/celery/blob/main/Changelog.rst)
- [Commits](https://github.com/celery/celery/compare/v5.5.2...v5.5.3)

---
updated-dependencies:
- dependency-name: celery
  dependency-version: 5.5.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-06-02 21:49:47 +00:00
alexjanousekGSA
6a5c4de30f Updated a few dependencies 2025-06-02 13:46:58 -04:00
alexjanousekGSA
c8eae375f4 Fixed scan errors 2025-06-02 10:44:42 -04:00
Carlo Costino
07195ba145 Merge branch 'main' into update-marshmallow-deps 2025-06-02 10:19:17 -04:00
ccostino
6d8e2221d0 Merge pull request #1748 from GSA/fix-daily-checks 
Update daily checks to match PR checks
 2025-06-02 09:52:15 -04:00
Carlo Costino
8af59b1c55 Update daily checks to match PR checks 
This changeset adds the same additional steps needed in our PR checks to make sure the daily checks work properly with the recent Poetry update.  It also updates our PR checks to use the latest pip-audit GitHub action.

Signed-off-by: Carlo Costino <carlo.costino@gsa.gov>
 2025-06-02 09:23:02 -04:00
alexjanousekGSA
baa8cc4bfa All tests should pass now 2025-05-31 08:56:24 -04:00
Beverly Nguyen
abdaa74d0b Merge pull request #1747 from GSA/remove-python-vuln-ignore-again 
Remove extra vulnerability from our ignore list
 2025-05-30 14:21:57 -07:00
alexjanousekGSA
a431ccfb73 Fixed more unit tests 2025-05-30 16:42:52 -04:00
Kenneth Kehl
44f2c52a52 merge from main 2025-05-30 13:29:53 -07:00
Carlo Costino
cf4deb083b Remove extra vulnerability from our ignore list 
This changeset fixes an oversight where a vulnerability got added back to our ignore list.

Signed-off-by: Carlo Costino <carlo.costino@gsa.gov>
 2025-05-30 16:28:03 -04:00
alexjanousekGSA
aa445f5f40 Fixed more tests 2025-05-30 16:23:47 -04:00
Kenneth Kehl
fb3bf6d9b1 okay upgrade to 3.13.2 now to stay in sync with admin 2025-05-30 12:35:27 -07:00
Kenneth Kehl
86c7e77197 try eventlet 0.40.0 2025-05-30 11:37:43 -07:00
Kenneth Kehl
f7f92dd1f4 try python 3.13.3 2025-05-30 11:20:56 -07:00
Kenneth Kehl
ad17ddc23f try upgrading to python 3.13.1 2025-05-30 11:09:10 -07:00
Kenneth Kehl
ac9e3a49d8 try downgrading eventlet to 0.33.3 2025-05-30 11:01:31 -07:00
Kenneth Kehl
72289ace08 python upgrade 2025-05-30 10:49:42 -07:00
ccostino
cbe50a1aa7 Merge pull request #1744 from GSA/add-detect-secrets-docs 
Add detect-secrets documentation
5-30-2025 		2025-05-30 11:50:14 -04:00
Carlo Costino
0a28b33e99 Add detect-secrets documentation 
This changeset adds documentation to help our team manage our secrets detection with the detect-secrets pre-commit plugin.

Signed-off-by: Carlo Costino <carlo.costino@gsa.gov>
 2025-05-30 11:39:07 -04:00
ccostino
c301513caf Merge pull request #1738 from GSA/poetry 
upgrade poetry
 2025-05-30 10:55:47 -04:00
Kenneth Kehl
e5484f0723 Update Makefile 
Co-authored-by: ccostino <ccostino@users.noreply.github.com>
 2025-05-29 11:14:29 -07:00
Kenneth Kehl
222e258e34 Update Makefile 
Co-authored-by: ccostino <ccostino@users.noreply.github.com>
 2025-05-29 11:14:00 -07:00
Kenneth Kehl
d40ab17770 Update Makefile 
Co-authored-by: ccostino <ccostino@users.noreply.github.com>
 2025-05-29 11:13:36 -07:00
Kenneth Kehl
3b5f11932f ugh secrets 2025-05-29 10:15:58 -07:00
Kenneth Kehl
c2ed11d28e add comments about poetry upgrade 2025-05-29 08:48:00 -07:00
Kenneth Kehl
59af82b0a4 merge from main 2025-05-29 08:05:46 -07:00
Alex Janousek
062683ada6 Merge pull request #1742 from GSA/dependabot/pip/phonenumbers-9.0.6 
Bump phonenumbers from 9.0.5 to 9.0.6
 2025-05-29 09:19:29 -04:00
dependabot[bot]
47a3c6dc91 Bump phonenumbers from 9.0.5 to 9.0.6 
Bumps [phonenumbers](https://github.com/daviddrysdale/python-phonenumbers) from 9.0.5 to 9.0.6.
- [Commits](https://github.com/daviddrysdale/python-phonenumbers/compare/v9.0.5...v9.0.6)

---
updated-dependencies:
- dependency-name: phonenumbers
  dependency-version: 9.0.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-29 13:12:28 +00:00
Beverly Nguyen
500dc80557 Merge pull request #1743 from GSA/ignore-redis-false-report 
Updated pip-audit ignore-vulns
 2025-05-28 17:32:24 -07:00
Carlo Costino
55e24a611a Updated pip-audit ignore-vulns 
This changeset updates the PYSEC notices to ignore to due versions that either cannot be fixed or are false positives.  Specifically, this changeset removes previously ignored vulnerability reports and adds PYSEC-2023-312 to the list because it is a false positive and refers to Redis itself, not the Python Redis client (see https://github.com/pypa/advisory-database/issues/237 for details).

Signed-off-by: Carlo Costino <carlo.costino@gsa.gov>
 2025-05-28 17:43:50 -04:00
alexjanousekGSA
7c1f3f2c3a More fixed tests 2025-05-28 14:01:55 -04:00
alexjanousekGSA
8feced8d7f Fixed more tests, 48 left 2025-05-28 13:47:35 -04:00
Kenneth Kehl
1287be143c filter requirements text 2025-05-28 08:57:49 -07:00
Kenneth Kehl
976027d52f filter requirements text 2025-05-28 08:54:59 -07:00
Kenneth Kehl
bf9f01e526 filter requirements text 2025-05-28 08:40:17 -07:00
Kenneth Kehl
ca5b0b2230 filter requirements text 2025-05-28 08:33:55 -07:00
Kenneth Kehl
3c02ad92bb filter requirements text 2025-05-28 08:29:31 -07:00
Kenneth Kehl
87d29de41d filter requirements text 2025-05-28 08:16:38 -07:00
Kenneth Kehl
f620a886b0 oops 2025-05-28 08:10:28 -07:00
Kenneth Kehl
9c68deb337 revert to pinned oscrypto 2025-05-28 08:03:43 -07:00
Kenneth Kehl
b976b395c6 try oscrypto 1.3.0 2025-05-28 07:55:50 -07:00
Kenneth Kehl
96bb7f24d0 try oscrypto 1.3.0 2025-05-28 07:44:50 -07:00