darkhelm/notifications-api
1
0
Fork 0
mirror of https://github.com/GSA/notifications-api.git synced 2025-12-24 09:21:39 -05:00
Code Issues Packages Projects Releases Wiki Activity
9,939 Commits 128 Branches 60 Tags
d5d432dfd18de8a84d33136ec4d572c6cbd4dba7
Commit Graph

108 Commits

Author SHA1 Message Date
stvnrlly
6500d388fe Merge branch 'main' into stvnrlly/one-with 2023-09-26 16:11:30 -04:00
Carlo Costino
5e0ba6a672 Trying ZAP weekly release instead of stable 
I noticed that a previous scan yesterday had referenced the weekly releases under the hood despite being configured for stable.

Signed-off-by: Carlo Costino <carlo.costino@gsa.gov>
 2023-09-26 15:47:37 -04:00
Carlo Costino
455b6071ba Updated ZAP Action config to match recent changes 
Signed-off-by: Carlo Costino <carlo.costino@gsa.gov>
 2023-09-26 12:09:03 -04:00
Carlo Costino
7887eed891 Fix the dynamic-scan job 
This PR fixes the dynamic-scan job, which is now failing in our PR checks due to missing environment variables.

Signed-off-by: Carlo Costino <carlo.costino@gsa.gov>
 2023-09-26 11:35:19 -04:00
stvnrlly
b4bf0f8084 only need one with 2023-09-26 09:37:10 -04:00
stvnrlly
6070c97ad0 have valid yaml instead of invalid yaml 2023-09-22 22:15:53 -04:00
stvnrlly
b61ca002c3 add workflow permission 2023-09-22 17:03:04 -04:00
stvnrlly
308dbf16a8 use our own adr action to try things out 2023-09-22 12:49:22 -04:00
Carlo Costino
5790f52388 Add missing environment variables from cf push 
This changeset actually adds the missing E2E test environment variables to the cf push command.

Signed-off-by: Carlo Costino <carlo.costino@gsa.gov>
 2023-09-18 13:09:46 -04:00
Carlo Costino
3f1c5ab8ad Add E2E test environment variables to deployments 
This changeset adds the E2E test environment variables to our deployment scripts so that they are accessible to the application and database migrations.

Signed-off-by: Carlo Costino <carlo.costino@gsa.gov>
 2023-09-18 12:20:47 -04:00
Kenneth Kehl
16defbe30d try again 2023-09-12 11:29:21 -07:00
Kenneth Kehl
75b7c6cf05 add secrets to github workflow 2023-09-12 11:13:09 -07:00
Steven Reilly
08b040cbe2 switch branch of adr action 2023-09-11 11:57:10 -04:00
Kenneth Kehl
c92b8e0933 try without hashes everywhere 2023-08-31 11:54:26 -07:00
Kenneth Kehl
722b67e93a try without hashes 2023-08-31 11:43:33 -07:00
Kenneth Kehl
bc956c3dac remove --dev for now from poetry install 2023-08-31 11:12:16 -07:00
Kenneth Kehl
062675ad9b poetry 2023-08-31 11:00:55 -07:00
stvnrlly
2117f31690 add new adr workflow 2023-08-28 21:04:26 -04:00
Carlo Costino
bc650f21fe Update cloud.gov org references 
This changeset adjusts our references to the cloud.gov org we are using from gsa-tts-benefits-studio-prototyping to gsa-tts-benefits-studio.

Signed-off-by: Carlo Costino <carlo.costino@gsa.gov>
 2023-08-25 12:16:57 -04:00
Carlo Costino
574e0b92fc Merge pull request #404 from GSA/notify-api-391 
notify-api-391 increase code coverage to 95%
 2023-08-16 16:40:33 -04:00
Kenneth Kehl
dc80e7e00a remove the multiple workers from the tests 2023-08-11 14:07:32 -07:00
Kenneth Kehl
3cf5ea8802 add change to workflow 2023-08-08 11:13:44 -07:00
stvnrlly
9bda30394d try updating docker action version? 2023-08-02 16:07:15 -04:00
stvnrlly
a99c01eb14 move checks to daily run only 2023-07-11 21:35:15 -04:00
stvnrlly
2f74d35e48 fix spelling error 2023-07-11 21:32:35 -04:00
stvnrlly
6e3b6901be try bandit artifact 2023-07-11 21:31:14 -04:00
stvnrlly
f75b720a27 add step to pr check to test it 2023-07-11 17:29:13 -04:00
stvnrlly
f8d23f8c45 try to create pip-audit artifact in daily test 2023-07-11 17:19:07 -04:00
Ryan Ahearn
0d685df51c Enable prod terraform drift check 2023-05-08 15:29:12 -04:00
Ryan Ahearn
58ad32b560 Enable production deploy 2023-05-08 10:47:01 -04:00
Steven Reilly
6515c44ca8 bump pip-audit action to 1.0.6 (#261) 2023-05-05 14:11:18 -04:00
Andrew Shumway
b623caa366 Test actions with 50% threshold 2023-04-19 09:20:22 -06:00
Andrew Shumway
7e4043f85a Test github actions coverage PR fail 2023-04-19 08:56:34 -06:00
Andrew Shumway
cbcb955f1f Moved env: flag under test run 2023-04-18 15:48:10 -06:00
Andrew Shumway
17c6083f6d Check coverage in actions without omit 2023-04-18 14:27:56 -06:00
Andrew Shumway
1047b70792 Added fail coverage threshold under 50% 2023-04-18 13:51:48 -06:00
Ryan Ahearn
6118394f02 Remove ignore-vulnerability for remediated redis vuln 2023-03-29 17:04:43 -04:00
Ryan Ahearn
8e64fb12ba Ignore known issue with redis 4.5.3 2023-03-28 09:06:21 -04:00
Ryan Ahearn
d341a8f4c4 Run terraform on deploy when shared modules change 2023-03-27 08:43:49 -04:00
Ryan Ahearn
46f59bfd14 Run restage workflow by hand 2023-03-21 17:51:06 -04:00
Ryan Ahearn
07f3e66171 Add infrastructure drift detector 2023-03-20 14:11:01 -04:00
Ryan Ahearn
84e7e9b5cf Use credentials output by terraform/development 2023-03-13 13:44:10 -04:00
Ryan Ahearn
cb4ab8fb16 Remove obsolete references to AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY 2023-03-03 15:45:04 -05:00
Ryan Ahearn
36975dda07 Ensure CI runs have proper phone number format 2023-03-03 14:13:58 -05:00
Ryan Ahearn
28f8649444 Use sns credentials from VCAP_SERVICES 2023-02-28 16:50:00 -05:00
Ryan Ahearn
cdf2810b14 Update flask & cryptography versions 2023-02-09 17:26:36 -05:00
Ryan Ahearn
c3faf3df4d Install newrelic before attempting to validate config 2023-01-19 09:38:18 -05:00
Ryan Ahearn
b9a53b7b54 Validate new relic config in github actions 2023-01-19 09:33:33 -05:00
Ryan Ahearn
0652b21521 Set new relic license key via env var 2023-01-18 10:49:39 -05:00
Ryan Ahearn
bec3c53128 Setup newrelic for cloud.gov environments 2023-01-18 09:20:22 -05:00