Skip to content

v0.0.65
Compare
Choose a tag to compare
@JAORMX JAORMX released this 10 Oct 08:10
· 150 commits to main since this release
v0.0.65
2622be5
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.

What's Changed

  • build(deps): bump github.com/thomaspoignant/go-feature-flag from 1.34.0 to 1.34.2 by @dependabot in #4552
  • build(deps): bump github.com/prometheus/client_golang from 1.20.3 to 1.20.4 by @dependabot in #4553
  • build(deps): bump github/codeql-action from 3.26.7 to 3.26.8 by @dependabot in #4551
  • build(deps): bump actions/setup-node from 4.0.3 to 4.0.4 by @dependabot in #4550
  • Add new watermill handlers that get or refresh entities by properties and call another handler by @jhrozek in #4545
  • Disable the NATS tests temporarily again by @jhrozek in #4555
  • Revert "build(deps): bump github.com/thomaspoignant/go-feature-flag from 1.34.0 to 1.34.2 (#4552)" by @jhrozek in #4556
  • Add template support to evaluation details. by @blkt in #4532
  • Add hint by provider class to the refreshAndDo handler by @jhrozek in #4558
  • Fix arguments passed to vulncheck template. by @blkt in #4560
  • Implement Gitlab event handling by @JAORMX in #4559
  • Update documentation for mindev, and add some handy debugging methods by @evankanderson in #4548
  • Allow customizing AckDeadline to allow for long-running sets of retries by @evankanderson in #4549
  • Fix data race in internal/entities/handlers/handler_test.go by @evankanderson in #4566
  • Use new path for trusty package URLs by @JAORMX in #4567
  • Remove backticks in vulncheck details template. by @blkt in #4562
  • Handle users deleted through the Keycloak management API, as well as through the Keycloak UI by @evankanderson in #4563
  • build(deps): bump actions/checkout from 4.1.7 to 4.2.0 by @dependabot in #4575
  • build(deps): bump github/codeql-action from 3.26.8 to 3.26.9 by @dependabot in #4574
  • build(deps): bump mobx from 6.13.2 to 6.13.3 in /docs by @dependabot in #4577
  • build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.27.35 to 1.27.38 by @dependabot in #4576
  • build(deps): bump github.com/ThreeDotsLabs/watermill-sql/v3 from 3.0.3 to 3.1.0 by @dependabot in #4580
  • build(deps): bump docker/build-push-action from 6.7.0 to 6.8.0 by @dependabot in #4581
  • build(deps): bump github.com/nats-io/nats-server/v2 from 2.10.20 to 2.10.21 by @dependabot in #4579
  • Use the new handlers when evaluating repo webhooks by @jhrozek in #4565
  • Test otel instrumentation for panics. by @blkt in #4582
  • build(deps): bump docker/build-push-action from 6.8.0 to 6.9.0 by @dependabot in #4592
  • build(deps): bump github/codeql-action from 3.26.9 to 3.26.10 by @dependabot in #4591
  • build(deps): bump github.com/zitadel/oidc/v3 from 3.29.1 to 3.30.0 by @dependabot in #4590
  • Clean up test providers and move EntityToProtoMessage as top-level interface function by @JAORMX in #4586
  • Extend selectors to include provider name and class by @jhrozek in #4583
  • Store provider's refresh token and expiry if possible by @JAORMX in #4588
  • gitlab: don't use deprecated token database column by @JAORMX in #4593
  • build(deps): bump github.com/bufbuild/buf from 1.42.0 to 1.43.0 in /tools by @dependabot in #4587
  • Group otel-related updates into single PRs. by @blkt in #4490
  • build(deps): bump google.golang.org/grpc from 1.66.2 to 1.67.1 by @dependabot in #4597
  • build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.27.38 to 1.27.39 by @dependabot in #4599
  • build(deps): bump github.com/open-policy-agent/opa from 0.68.0 to 0.69.0 by @dependabot in #4589
  • build(deps): bump github.com/openfga/go-sdk from 0.6.0 to 0.6.1 by @dependabot in #4598
  • build(deps): bump github.com/theupdateframework/go-tuf/v2 from 2.0.0 to 2.0.1 by @dependabot in #4600
  • Use one workflow for trivy by @JAORMX in #4601
  • GitHub: don't try to use OAuth token for github-app provider by @JAORMX in #4594
  • build(deps): bump github.com/docker/cli from 27.2.1+incompatible to 27.3.1+incompatible by @dependabot in #4602
  • build(deps): bump github.com/aws/aws-sdk-go-v2/service/sesv2 from 1.33.2 to 1.35.0 by @dependabot in #4603
  • build(deps): bump github.com/go-viper/mapstructure/v2 from 2.1.0 to 2.2.1 by @dependabot in #4604
  • Replace repository for entity in properties service by @JAORMX in #4607
  • Slight modification in properties fetch log by @JAORMX in #4608
  • Query Keycloak for user deletions every 5 minutes by @eleftherias in #4615
  • build(deps): bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 by @dependabot in #4622
  • gitlab: Handle token refresh by @JAORMX in #4606
  • Adjust deadline on admin identity events as well as user events by @evankanderson in #4617
  • Pass along transaction to RetrieveAllPropertiesForEntity by @jhrozek in #4633
  • mindev: Use provider to construct entity protobufs by @JAORMX in #4630
  • gitlab: Handle query parameters in REST trait by @JAORMX in #4632
  • Update changelog and roadmap by @ethomson in #4631
  • Remove RefreshRepositoryByUpstreamID from the repo reconciler by @jhrozek in #4620
  • build(deps): bump github/codeql-action from 3.26.10 to 3.26.11 by @dependabot in #4640
  • build(deps): bump github.com/bufbuild/buf from 1.43.0 to 1.44.0 in /tools by @dependabot in #4638
  • build(deps): bump docker/setup-buildx-action from 3.6.1 to 3.7.0 by @dependabot in #4639
  • build(deps): bump github.com/aws/aws-sdk-go-v2/service/sesv2 from 1.35.0 to 1.35.1 by @dependabot in #4635
  • build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.27.39 to 1.27.40 by @dependabot in #4637
  • Use generic refresh and message forwarding to evaluator for profile init by @jhrozek in #4634
  • properties service: Don't fail if multiple entries are found by @JAORMX in #4642
  • Print entity status name if available by @JAORMX in #4646
  • Add eval details template for Trusty rule by @eleftherias in #4645
  • Add feature flag for improved evaluation details. by @blkt in #4584
  • build(deps): bump docker/setup-buildx-action from 3.7.0 to 3.7.1 by @dependabot in #4652
  • build(deps): bump sigstore/cosign-installer from 3.6.0 to 3.7.0 by @dependabot in #4653
  • build(deps): bump github.com/aws/aws-sdk-go-v2 from 1.31.0 to 1.32.0 by @dependabot in #4655
  • build(deps): bump golang.org/x/tools from 0.25.0 to 0.26.0 in /tools by @dependabot in #4659
  • build(deps): bump golang.org/x/crypto from 0.27.0 to 0.28.0 by @dependabot in #4657
  • build(deps): bump github.com/xanzy/go-gitlab from 0.109.0 to 0.110.0 by @dependabot in #4656
  • build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.27.40 to 1.27.41 by @dependabot in #4658
  • Add eval details template for deny-by-default rule. by @blkt in #4647
  • Enable the originating entity handlers by @jhrozek in #4661
  • origination: First get properties from provider before trying to persist by @JAORMX in #4660
  • Add additional test coverage for common functions in GitHub provider by @gajananan in #4648
  • Pass correct logger to watermill. by @blkt in #4662
  • gitlab: Add support for pull requests by @JAORMX in #4641
  • gitlab: Fix PR origination by @JAORMX in #4665
  • Use the AddOriginatingEntity/RemoveOriginatingEntity handlers to handle PRs in the webhook provider by @jhrozek in #4663
  • build(deps): bump github/codeql-action from 3.26.11 to 3.26.12 by @dependabot in #4672
  • build(deps): bump aquasecurity/trivy-action from 0.24.0 to 0.25.0 by @dependabot in #4670
  • build(deps): bump actions/checkout from 4.2.0 to 4.2.1 by @dependabot in #4671
  • build(deps): bump github.com/zitadel/oidc/v3 from 3.30.0 to 3.30.1 by @dependabot in #4676
  • build(deps): bump github.com/aws/aws-sdk-go-v2 from 1.32.0 to 1.32.1 by @dependabot in #4678
  • build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.27.41 to 1.27.42 by @dependabot in #4677
  • Really fix PR origination by @JAORMX in #4673
  • build(deps): bump google.golang.org/protobuf from 1.34.2 to 1.35.1 by @dependabot in #4675
  • cleanup/gitlab: Move repo and PR functions to relevant files by @JAORMX in #4679
  • gitlab: Move webhook handler functions to dedicated files by @JAORMX in #4681
  • build(deps): bump google.golang.org/protobuf from 1.34.3-0.20240906163944-03df6c145d96 to 1.35.1 in /tools by @dependabot in #4669
  • Add eval details template for mixed scripts by @eleftherias in #4680
  • Add eval details template for invisible characters by @eleftherias in #4684
  • Simplify the entity_add handlers in preparation for using the NewGetEntityAndDeleteHandler" by @jhrozek in #4685
  • Remove dead code that was added speculatively by @evankanderson in #4689
  • build(deps): bump aquasecurity/trivy-action from 0.25.0 to 0.26.0 by @dependabot in #4691
  • build(deps): bump github.com/go-critic/go-critic from 0.11.4 to 0.11.5 in /tools by @dependabot in #4696
  • build(deps): bump github.com/styrainc/regal from 0.27.0 to 0.28.0 by @dependabot in #4695
  • Do not forward messages for archived and/or private repos by @jhrozek in #4687
  • Remove reconciling of artifacts during repo reconciliation by @jhrozek in #4686
  • build(deps): bump github.com/aws/aws-sdk-go-v2 from 1.32.1 to 1.32.2 by @dependabot in #4692
  • build(deps): bump github.com/bufbuild/buf from 1.44.0 to 1.45.0 in /tools by @dependabot in #4697
  • EEA: Rely on central entities table as opposed to per-entity table by @JAORMX in #4664
  • Use the originating handlers for handling package published messages in the github webhook by @jhrozek in #4668
  • Drop the use of fetchRepo and its RefreshRepositoryByUpstreamID when deleting a repository by @jhrozek in #4702
  • fix flaky installation_repositories added test from TestHandleGitHubAppWebHook by @JAORMX in #4711
  • Add CVE-2024-47534 to trivyignore file by @JAORMX in #4712
  • Use single and unique entity ID to deal with entity info wrapper by @JAORMX in #4704

Full Changelog: v0.0.64...v0.0.65

Contributors

JAORMX, blkt, and 6 other contributors
Assets 29
Loading