darkhelm/notifications-api
1
0
Fork 0
mirror of https://github.com/GSA/notifications-api.git synced 2025-12-26 10:21:33 -05:00
Code Issues Packages Projects Releases Wiki Activity
12,745 Commits 128 Branches 60 Tags
dde6c2f5747b7a552fecfb02b186be3cbcc90122
Commit Graph

12745 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Alex Janousek
dde6c2f574 Merge pull request #1688 from GSA/dependabot/pip/certifi-2025.4.26 
Bump certifi from 2025.1.31 to 2025.4.26
 2025-05-04 16:13:56 -04:00
Alex Janousek
f8b29fb461 Merge pull request #1689 from GSA/dependabot/pip/cryptography-44.0.3 
Bump cryptography from 44.0.2 to 44.0.3
 2025-05-04 16:13:40 -04:00
Alex Janousek
3c608b4538 Merge pull request #1690 from GSA/dependabot/pip/newrelic-10.11.0 
Bump newrelic from 10.9.0 to 10.11.0
 2025-05-04 16:13:27 -04:00
dependabot[bot]
92b35ed6be Bump newrelic from 10.9.0 to 10.11.0 
Bumps [newrelic](https://github.com/newrelic/newrelic-python-agent) from 10.9.0 to 10.11.0.
- [Release notes](https://github.com/newrelic/newrelic-python-agent/releases)
- [Commits](https://github.com/newrelic/newrelic-python-agent/compare/v10.9.0...v10.11.0)

---
updated-dependencies:
- dependency-name: newrelic
  dependency-version: 10.11.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-02 21:30:17 +00:00
dependabot[bot]
bfcf81d91d Bump cryptography from 44.0.2 to 44.0.3 
Bumps [cryptography](https://github.com/pyca/cryptography) from 44.0.2 to 44.0.3.
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/pyca/cryptography/compare/44.0.2...44.0.3)

---
updated-dependencies:
- dependency-name: cryptography
  dependency-version: 44.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-02 21:29:55 +00:00
dependabot[bot]
029e40766c Bump certifi from 2025.1.31 to 2025.4.26 
Bumps [certifi](https://github.com/certifi/python-certifi) from 2025.1.31 to 2025.4.26.
- [Commits](https://github.com/certifi/python-certifi/compare/2025.01.31...2025.04.26)

---
updated-dependencies:
- dependency-name: certifi
  dependency-version: 2025.4.26
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-02 21:29:28 +00:00
Alex Janousek
cacaedac0c Merge pull request #1682 from GSA/dependabot/pip/sqlalchemy-2.0.40 
Bump sqlalchemy from 2.0.31 to 2.0.40
 2025-05-02 11:23:44 -04:00
dependabot[bot]
106d938d4f Bump sqlalchemy from 2.0.31 to 2.0.40 
Bumps [sqlalchemy](https://github.com/sqlalchemy/sqlalchemy) from 2.0.31 to 2.0.40.
- [Release notes](https://github.com/sqlalchemy/sqlalchemy/releases)
- [Changelog](https://github.com/sqlalchemy/sqlalchemy/blob/main/CHANGES.rst)
- [Commits](https://github.com/sqlalchemy/sqlalchemy/commits)

---
updated-dependencies:
- dependency-name: sqlalchemy
  dependency-version: 2.0.40
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-02 15:16:57 +00:00
Alex Janousek
812ffd7b53 Merge pull request #1685 from GSA/dependabot/pip/isort-6.0.1 
Bump isort from 5.13.2 to 6.0.1
 2025-05-02 11:14:47 -04:00
dependabot[bot]
4bdcf2c53e Bump isort from 5.13.2 to 6.0.1 
Bumps [isort](https://github.com/PyCQA/isort) from 5.13.2 to 6.0.1.
- [Release notes](https://github.com/PyCQA/isort/releases)
- [Changelog](https://github.com/PyCQA/isort/blob/main/CHANGELOG.md)
- [Commits](https://github.com/PyCQA/isort/compare/5.13.2...6.0.1)

---
updated-dependencies:
- dependency-name: isort
  dependency-version: 6.0.1
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-02 15:08:03 +00:00
Alex Janousek
96fb2dead9 Merge pull request #1681 from GSA/dependabot/pip/markupsafe-3.0.2 
Bump markupsafe from 2.1.5 to 3.0.2
 2025-05-02 11:06:00 -04:00
dependabot[bot]
333631aee2 Bump markupsafe from 2.1.5 to 3.0.2 
Bumps [markupsafe](https://github.com/pallets/markupsafe) from 2.1.5 to 3.0.2.
- [Release notes](https://github.com/pallets/markupsafe/releases)
- [Changelog](https://github.com/pallets/markupsafe/blob/main/CHANGES.rst)
- [Commits](https://github.com/pallets/markupsafe/compare/2.1.5...3.0.2)

---
updated-dependencies:
- dependency-name: markupsafe
  dependency-version: 3.0.2
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-02 14:59:07 +00:00
Alex Janousek
be2e3252b1 Merge pull request #1683 from GSA/dependabot/pip/beautifulsoup4-4.13.4 
Bump beautifulsoup4 from 4.12.3 to 4.13.4
 2025-05-02 10:57:03 -04:00
dependabot[bot]
2d42f26839 Bump beautifulsoup4 from 4.12.3 to 4.13.4 
Bumps [beautifulsoup4](https://www.crummy.com/software/BeautifulSoup/bs4/) from 4.12.3 to 4.13.4.

---
updated-dependencies:
- dependency-name: beautifulsoup4
  dependency-version: 4.13.4
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-02 14:50:16 +00:00
Alex Janousek
b4a82785c3 Merge pull request #1684 from GSA/dependabot/pip/notifications-python-client-10.0.1 
Bump notifications-python-client from 10.0.0 to 10.0.1
 2025-05-02 10:48:09 -04:00
dependabot[bot]
00451bb56c Bump notifications-python-client from 10.0.0 to 10.0.1 
Bumps [notifications-python-client](https://github.com/alphagov/notifications-python-client) from 10.0.0 to 10.0.1.
- [Changelog](https://github.com/alphagov/notifications-python-client/blob/main/CHANGELOG.md)
- [Commits](https://github.com/alphagov/notifications-python-client/compare/10.0.0...10.0.1)

---
updated-dependencies:
- dependency-name: notifications-python-client
  dependency-version: 10.0.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-01 21:53:46 +00:00
Alex Janousek
26a7f541a5 Merge pull request #1671 from GSA/dependabot/pip/faker-37.1.0 
Bump faker from 26.3.0 to 37.1.0
 2025-05-01 10:20:00 -04:00
dependabot[bot]
2bcf90584c Bump faker from 26.3.0 to 37.1.0 
Bumps [faker](https://github.com/joke2k/faker) from 26.3.0 to 37.1.0.
- [Release notes](https://github.com/joke2k/faker/releases)
- [Changelog](https://github.com/joke2k/faker/blob/master/CHANGELOG.md)
- [Commits](https://github.com/joke2k/faker/compare/v26.3.0...v37.1.0)

---
updated-dependencies:
- dependency-name: faker
  dependency-version: 37.1.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-01 14:13:12 +00:00
Alex Janousek
d1c105447a Merge pull request #1679 from GSA/dependabot/pip/alembic-1.15.2 
Bump alembic from 1.13.2 to 1.15.2
 2025-05-01 10:11:05 -04:00
dependabot[bot]
cba7a712db Bump alembic from 1.13.2 to 1.15.2 
Bumps [alembic](https://github.com/sqlalchemy/alembic) from 1.13.2 to 1.15.2.
- [Release notes](https://github.com/sqlalchemy/alembic/releases)
- [Changelog](https://github.com/sqlalchemy/alembic/blob/main/CHANGES)
- [Commits](https://github.com/sqlalchemy/alembic/commits)

---
updated-dependencies:
- dependency-name: alembic
  dependency-version: 1.15.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-01 14:03:09 +00:00
Alex Janousek
739a08e203 Merge pull request #1680 from GSA/dependabot/pip/setuptools-80.1.0 
Bump setuptools from 75.9.1 to 80.1.0
 2025-05-01 10:01:05 -04:00
dependabot[bot]
eb76f2cee8 Bump setuptools from 75.9.1 to 80.1.0 
Bumps [setuptools](https://github.com/pypa/setuptools) from 75.9.1 to 80.1.0.
- [Release notes](https://github.com/pypa/setuptools/releases)
- [Changelog](https://github.com/pypa/setuptools/blob/main/NEWS.rst)
- [Commits](https://github.com/pypa/setuptools/compare/v75.9.1...v80.1.0)

---
updated-dependencies:
- dependency-name: setuptools
  dependency-version: 80.1.0
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-04-30 21:15:51 +00:00
Andrew Shumway
9113062d98 Merge pull request #1674 from GSA/dependabot/pip/celery-5.5.2 
Bump celery from 5.4.0 to 5.5.2
 2025-04-30 10:51:46 -06:00
dependabot[bot]
6ef23b70a6 Bump celery from 5.4.0 to 5.5.2 
Bumps [celery](https://github.com/celery/celery) from 5.4.0 to 5.5.2.
- [Release notes](https://github.com/celery/celery/releases)
- [Changelog](https://github.com/celery/celery/blob/main/Changelog.rst)
- [Commits](https://github.com/celery/celery/compare/v5.4.0...v5.5.2)

---
updated-dependencies:
- dependency-name: celery
  dependency-version: 5.5.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-04-30 16:40:49 +00:00
Andrew Shumway
0ce6c6b263 Merge pull request #1675 from GSA/dependabot/pip/phonenumbers-9.0.4 
Bump phonenumbers from 8.13.55 to 9.0.4
 2025-04-30 10:38:29 -06:00
Cliff Hill
f1df78b4ba Merge pull request #1677 from GSA/update-rotate-creds-runbook 
Expand the credential/secret rotation runbook
 2025-04-29 12:39:29 -04:00
Carlo Costino
debb14d216 Updated Login.gov section 
Signed-off-by: Carlo Costino <carlo.costino@gsa.gov>
 2025-04-28 17:15:08 -04:00
Carlo Costino
01b9ea451a Expand the credential/secret rotation runbook 
This changeset adds a bunch of new information on how to manage environment variables and credentials in our application.

Signed-off-by: Carlo Costino <carlo.costino@gsa.gov>
 2025-04-28 17:01:59 -04:00
Beverly Nguyen
1242c524a5 Merge pull request #1676 from GSA/add-daily-scan-runbook 
Add runbook for reviewing daily scans
 2025-04-28 11:31:03 -07:00
Carlo Costino
4c91629ee8 Add runbook for reviewing daily scans 
This changeset adds a new runbook to our documentation that explains how to review our daily scans for new findings.

Signed-off-by: Carlo Costino <carlo.costino@gsa.gov>
 2025-04-28 11:36:44 -04:00
dependabot[bot]
a74e5d15a4 Bump phonenumbers from 8.13.55 to 9.0.4 
Bumps [phonenumbers](https://github.com/daviddrysdale/python-phonenumbers) from 8.13.55 to 9.0.4.
- [Commits](https://github.com/daviddrysdale/python-phonenumbers/compare/v8.13.55...v9.0.4)

---
updated-dependencies:
- dependency-name: phonenumbers
  dependency-version: 9.0.4
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-04-25 21:06:06 +00:00
ccostino
6689214317 Merge pull request #1673 from GSA/update-dns-runbook 
Update instructions for managing DNS and domain configuration
 2025-04-25 15:25:54 -04:00
Carlo Costino
6824c45909 Fix typos and clarify a couple more things 
Signed-off-by: Carlo Costino <carlo.costino@gsa.gov>
 2025-04-25 15:17:42 -04:00
Carlo Costino
e8214e4a01 Update instructions for managing DNS and domain configuration 
This changeset updates our runbook for the DNS and domain management:

* Add instructions and steps for how to perform the necessary actions to add and/or remove domains
* Update links to existing resources
* Add links to additional documentation

Signed-off-by: Carlo Costino <carlo.costino@gsa.gov>
 2025-04-25 13:39:17 -04:00
Beverly Nguyen
1302c15275 Merge pull request #1669 from GSA/dependabot/pip/h11-0.16.0 
Bump h11 from 0.14.0 to 0.16.0
 2025-04-24 12:33:54 -07:00
dependabot[bot]
71bbd6a375 Bump h11 from 0.14.0 to 0.16.0 
Bumps [h11](https://github.com/python-hyper/h11) from 0.14.0 to 0.16.0.
- [Commits](https://github.com/python-hyper/h11/compare/v0.14.0...v0.16.0)

---
updated-dependencies:
- dependency-name: h11
  dependency-version: 0.16.0
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-04-24 19:10:43 +00:00
Cliff Hill
2fb1e96ba2 Merge pull request #1656 from GSA/login_gov_cert 
refreshing login.gov cert instructions
4-24-2025 		2025-04-24 11:53:41 -04:00
Andrew Shumway
9f0b6b0ca1 Merge pull request #1664 from GSA/dependabot/pip/packaging-25.0 
Bump packaging from 24.2 to 25.0
 2025-04-24 09:46:03 -06:00
dependabot[bot]
7dd1751556 Bump packaging from 24.2 to 25.0 
Bumps [packaging](https://github.com/pypa/packaging) from 24.2 to 25.0.
- [Release notes](https://github.com/pypa/packaging/releases)
- [Changelog](https://github.com/pypa/packaging/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/pypa/packaging/compare/24.2...25.0)

---
updated-dependencies:
- dependency-name: packaging
  dependency-version: '25.0'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-04-24 15:25:37 +00:00
Andrew Shumway
3ae7749d0b Merge pull request #1663 from GSA/dependabot/pip/python-json-logger-3.3.0 
Bump python-json-logger from 2.0.7 to 3.3.0
 2025-04-24 09:23:24 -06:00
dependabot[bot]
f6cc4afab7 Bump python-json-logger from 2.0.7 to 3.3.0 
Bumps [python-json-logger](https://github.com/nhairs/python-json-logger) from 2.0.7 to 3.3.0.
- [Release notes](https://github.com/nhairs/python-json-logger/releases)
- [Changelog](https://github.com/nhairs/python-json-logger/blob/main/docs/changelog.md)
- [Commits](https://github.com/nhairs/python-json-logger/compare/v2.0.7...v3.3.0)

---
updated-dependencies:
- dependency-name: python-json-logger
  dependency-version: 3.3.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-04-24 15:11:34 +00:00
Andrew Shumway
6325849855 Merge pull request #1662 from GSA/dependabot/pip/flask-migrate-4.1.0 
Bump flask-migrate from 4.0.7 to 4.1.0
 2025-04-24 09:09:24 -06:00
dependabot[bot]
b564a8800e Bump flask-migrate from 4.0.7 to 4.1.0 
Bumps [flask-migrate](https://github.com/miguelgrinberg/flask-migrate) from 4.0.7 to 4.1.0.
- [Release notes](https://github.com/miguelgrinberg/flask-migrate/releases)
- [Changelog](https://github.com/miguelgrinberg/Flask-Migrate/blob/main/CHANGES.md)
- [Commits](https://github.com/miguelgrinberg/flask-migrate/compare/v4.0.7...v4.1.0)

---
updated-dependencies:
- dependency-name: flask-migrate
  dependency-version: 4.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-04-23 22:08:21 +00:00
Andrew Shumway
43247e81bb Merge pull request #1657 from GSA/dependabot/pip/click-8.1.8 
Bump click from 8.1.7 to 8.1.8
 2025-04-23 16:06:10 -06:00
dependabot[bot]
7f2325ea5e Bump click from 8.1.7 to 8.1.8 
Bumps [click](https://github.com/pallets/click) from 8.1.7 to 8.1.8.
- [Release notes](https://github.com/pallets/click/releases)
- [Changelog](https://github.com/pallets/click/blob/main/CHANGES.rst)
- [Commits](https://github.com/pallets/click/compare/8.1.7...8.1.8)

---
updated-dependencies:
- dependency-name: click
  dependency-version: 8.1.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-04-23 21:55:43 +00:00
Andrew Shumway
bcd18ac936 Merge pull request #1658 from GSA/dependabot/pip/moto-5.1.4 
Bump moto from 5.1.0 to 5.1.4
 2025-04-23 15:53:36 -06:00
dependabot[bot]
7fc65dd4f5 Bump moto from 5.1.0 to 5.1.4 
Bumps [moto](https://github.com/getmoto/moto) from 5.1.0 to 5.1.4.
- [Release notes](https://github.com/getmoto/moto/releases)
- [Changelog](https://github.com/getmoto/moto/blob/master/CHANGELOG.md)
- [Commits](https://github.com/getmoto/moto/compare/5.1.0...5.1.4)

---
updated-dependencies:
- dependency-name: moto
  dependency-version: 5.1.4
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-04-23 21:39:23 +00:00
Andrew Shumway
276446c57e Merge pull request #1659 from GSA/dependabot/pip/numpy-2.2.5 
Bump numpy from 2.2.4 to 2.2.5
 2025-04-23 15:37:08 -06:00
dependabot[bot]
bc26231164 Bump numpy from 2.2.4 to 2.2.5 
Bumps [numpy](https://github.com/numpy/numpy) from 2.2.4 to 2.2.5.
- [Release notes](https://github.com/numpy/numpy/releases)
- [Changelog](https://github.com/numpy/numpy/blob/main/doc/RELEASE_WALKTHROUGH.rst)
- [Commits](https://github.com/numpy/numpy/compare/v2.2.4...v2.2.5)

---
updated-dependencies:
- dependency-name: numpy
  dependency-version: 2.2.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-04-23 21:29:37 +00:00
Andrew Shumway
8c80f2a462 Merge pull request #1660 from GSA/dependabot/pip/eventlet-0.39.1 
Bump eventlet from 0.36.1 to 0.39.1
 2025-04-23 15:27:25 -06:00