v0.0.42

What's Changed

• Use fallback token for listing artifacts with GH App by @eleftherias in #2992
• build(deps): bump google.golang.org/grpc from 1.63.0 to 1.63.2 by @dependabot in #2999
• build(deps): bump go.opentelemetry.io/otel/exporters/prometheus from 0.46.0 to 0.47.0 by @dependabot in #2998
• build(deps): bump go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp from 0.49.0 to 0.50.0 by @dependabot in #2996
• build(deps): bump github.com/styrainc/regal from 0.19.0 to 0.20.0 by @dependabot in #2997
• build(deps): bump docker/setup-buildx-action from 3.2.0 to 3.3.0 by @dependabot in #3000
• build(deps): bump peaceiris/actions-gh-pages from 3.9.3 to 4.0.0 by @dependabot in #3001
• Handle when the user declines T&C in minder auth login by @jhrozek in #2995
• Use TEXT as type of license instead of VARCHAR(255) by @dmjb in #2994
• Remove duplicate clause in profile status query by @dmjb in #2993
• Upgrade go-github to go-github/v61 by @JAORMX in #3003
• Validate query parameters in GitHub App callback by @eleftherias in #3007
• Return a nicer error message when a ruletype can't be found by @jhrozek in #3005

Full Changelog: v0.0.41...v0.0.42

v0.0.41

What's Changed

• Track whether GitHub App is installed on org by @eleftherias in #2947
• Auto-generated DB schema update - 2024-04-05 11:33:16 by @github-actions in #2960
• Bump google.golang.org/grpc to v1.63.0 by @jhrozek in #2961
• Add label flag to profile list command by @dmjb in #2964
• Modify GRPCClientWrapRunE to pass positional arguments by @dmjb in #2967
• Allow profile/ruletype URLs to accept slashes by @dmjb in #2970
• Actions: Complete version tags in workflow comments by @puerco in #2974
• Add a unit test for switch of a profile state to pending by @jhrozek in #2977
• build(deps): bump github/codeql-action from 3.24.9 to 3.24.10 by @dependabot in #2989
• build(deps): bump github.com/go-critic/go-critic from 0.11.2 to 0.11.3 in /tools by @dependabot in #2984
• build(deps): bump go.opentelemetry.io/otel/exporters/stdout/stdouttrace from 1.24.0 to 1.25.0 by @dependabot in #2987
• build(deps): bump golang.org/x/crypto from 0.21.0 to 0.22.0 by @dependabot in #2988
• build(deps): bump go.opentelemetry.io/otel/sdk/metric from 1.24.0 to 1.25.0 by @dependabot in #2985

Full Changelog: v0.0.40...v0.0.41

v0.0.40

What's Changed

• docs: expand on how to add users to projects by @ethomson in #2901
• Add delete provider command by @eleftherias in #2922
• Fix order of instructions in running a server by @lukehinds in #2935
• Support empty profiles by utilizing views by @jhrozek in #2936
• Refactor: Move SetViperStructDefaults to utils by @Vyom-Yadav in #2920
• Fix repository delete by name by @eleftherias in #2941
• Fix mindev ruletype test by @jhrozek in #2939
• Set security_invoker=true to use permissions on the underlying tables when creating new view by @evankanderson in #2942
• Change validation error message to describe max length by @dmjb in #2945
• build(deps): bump golang.org/x/sync from 0.6.0 to 0.7.0 by @dependabot in #2949
• build(deps-dev): bump @docusaurus/module-type-aliases from 3.2.0 to 3.2.1 in /docs by @dependabot in #2953
• build(deps): bump golang.org/x/tools from 0.19.0 to 0.20.0 in /tools by @dependabot in #2952
• build(deps): bump golang.org/x/oauth2 from 0.18.0 to 0.19.0 by @dependabot in #2951
• Claim GitHub App installations on first login if they exist by @evankanderson in #2937
• Bump docusaurus packages to 3.2.1 by @jhrozek in #2957
• build(deps): bump golang.org/x/term from 0.18.0 to 0.19.0 by @dependabot in #2950
• Fix flaky DB list repos test by @eleftherias in #2959

Full Changelog: v0.0.39...v0.0.40

v0.0.39

What's Changed

• Remove provider from ruletypes by @eleftherias in #2843
• Auto-generated DB schema update - 2024-03-28 15:11:39 by @github-actions in #2847
• Add bundle build command to mindev by @dmjb in #2851
• Add tests and remove empty-struct defaults that were previous ignored. by @evankanderson in #2836
• build(deps): bump github.com/openfga/cli from 0.2.7 to 0.3.0 in /tools by @dependabot in #2858
• build(deps): bump github.com/golangci/golangci-lint from 1.57.1 to 1.57.2 in /tools by @dependabot in #2857
• build(deps): bump github.com/open-policy-agent/opa from 0.62.1 to 0.63.0 by @dependabot in #2853
• build(deps): bump github.com/daixiang0/gci from 0.13.2 to 0.13.3 in /tools by @dependabot in #2855
• build(deps): bump mobx from 6.12.1 to 6.12.3 in /docs by @dependabot in #2854
• Add a pending remediation status and support tracking opened PRs by @rdimitrov in #2833
• Auto-generated DB schema update - 2024-03-29 09:59:33 by @github-actions in #2861
• Revert "Add a pending remediation status and support tracking opened PRs" by @rdimitrov in #2862
• Re-applies the pending status change and uses a transaction for 000041 migration by @rdimitrov in #2865
• Auto-generated DB schema update - 2024-03-29 11:22:46 by @github-actions in #2864
• Add initContainers option to the deployment settings in Helm by @JAORMX in #2852
• Upgrade sqlc and regerate sqlc files with the new version by @jhrozek in #2859
• Do not skip action processing decision if evaluation did not changed by @rdimitrov in #2868
• Remediation types other than pull_request don't have a turn-off behaviour, so skip instead by @rdimitrov in #2869
• Fix flagged problems in internal/engine by @evankanderson in #2867
• build(deps): bump github.com/ThreeDotsLabs/watermill-sql/v3 from 3.0.0 to 3.0.1 by @dependabot in #2877
• build(deps): bump github.com/go-git/go-git/v5 from 5.11.0 to 5.12.0 by @dependabot in #2878
• Bump docusaurus from 3.1.1 to 3.2.0 by @eleftherias in #2881
• Disable ingest caching for artifact entities and add a wait period by @rdimitrov in #2883
• Add rpc that checks if enrollment is successful based on state by @eleftherias in #2882
• Auto-generated DB schema update - 2024-04-01 21:51:32 by @github-actions in #2889
• Clean up calls to Keycloak behind config by @evankanderson in #2886
• Make provider an optional filter by @eleftherias in #2871
• Make existing minder CLI work for VerifyProviderToken by @evankanderson in #2884
• Auto-generated cli documentation update - 2024-04-01 15:28:12 by @github-actions in #2890
• Fix documentation format by @eleftherias in #2894
• Add remediation_url to RuleEvaluationStatus by @puerco in #2892
• build(deps): bump github.com/itchyny/gojq from 0.12.14 to 0.12.15 by @dependabot in #2893
• Create ProviderStore interface, migrate controlplane to use it by @dmjb in #2900
• Handle GitHub App installation deleted event by @jhrozek in #2870
• Remove provider from profile by @eleftherias in #2850
• Auto-generated DB schema update - 2024-04-02 13:26:45 by @github-actions in #2903
• Fix auth delete when GitHub App installed by @eleftherias in #2904
• Prevent CLI users from using both github providers by @eleftherias in #2906
• Log the profile list parameters, i.e. labels by @rdimitrov in #2905
• Add unit tests for providers/service.go by @jhrozek in #2885
• Add body for rpc additional_bindings by @eleftherias in #2909
• Use a separate webhook secret for the GH App by @jhrozek in #2910
• helm: Allow for configuring the termination grace period for the main deployment by @JAORMX in #2913
• helm: Allow for configuring the Minder Deployment strategy by @JAORMX in #2912
• Create a new top-level project for users who add a provider via the GitHub App install process by @evankanderson in #2895
• Migrate GH App installations to int64 from string by @jhrozek in #2887
• Nicer error message when creating profile with non-unique rule types missing names by @jhrozek in #2916
• Allow overriding config struct defaults by @evankanderson in #2839
• Don't mark a PR remediation as error if no previous result exists by @jhrozek in #2917
• Refactor engine code to use ProviderStore by @dmjb in #2914
• Add display name to rule eval status by @puerco in #2915
• build(deps): bump github.com/daixiang0/gci from 0.13.3 to 0.13.4 in /tools by @dependabot in #2919
• build(deps): bump github.com/sigstore/protobuf-specs from 0.3.0 to 0.3.1 by @dependabot in #2918
• Move more provider access methods to store by @dmjb in #2911
• Add advisory URL to rule eval status by @puerco in #2891
• Use GitHub app webhook secret from secret store by @eleftherias in #2924
• Fixes a typo in the CLI - s/profile/project by @rdimitrov in #2921
• Skip erroring providers when listing repos by @eleftherias in #2928
• build(deps): bump github.com/bufbuild/buf from 1.30.0 to 1.30.1 in /tools by @dependabot in #2932
• build(deps): bump bufbuild/buf-setup-action from 1.30.0 to 1.30.1 by @dependabot in #2933

Full Changelog: v0.0.38...v0.0.39

v0.0.38

What's Changed

• Add Marketplace interface by @dmjb in #2748
• Return a user-visible error if the project already exists by @JAORMX in #2749
• Add validation for rule type entities by @JAORMX in #2758
• Add Provider Class to data model by @evankanderson in #2681
• Auto-generated DB schema update - 2024-03-22 13:02:25 by @github-actions in #2760
• Remove isOrg from function calls to GitHub Provider by @jhrozek in #2763
• Add provider classes to API by @JAORMX in #2762
• Move stub eventer outside of tests and into dedicated package by @JAORMX in #2761
• build(deps): bump github.com/mikefarah/yq/v4 from 4.42.1 to 4.43.1 in /tools by @dependabot in #2766
• build(deps): bump github/codeql-action from 3.24.8 to 3.24.9 by @dependabot in #2767
• build(deps): bump mobx from 6.12.0 to 6.12.1 in /docs by @dependabot in #2768
• Update setViperStructDefaults to respect '{}' default tag for struct fields by @Vyom-Yadav in #2633
• Show user facing error when credential is invalid by @eleftherias in #2772
• Store labels for profiles in the database by @jhrozek in #2770
• Auto-generated DB schema update - 2024-03-25 20:19:27 by @github-actions in #2775
• build(deps): bump bufbuild/buf-lint-action from 1.1.0 to 1.1.1 by @dependabot in #2777
• build(deps): bump slsa-framework/slsa-verifier from 2.4.1 to 2.5.1 by @dependabot in #2778
• build(deps): bump bufbuild/buf-breaking-action from 1.1.3 to 1.1.4 by @dependabot in #2779
• build(deps): bump github.com/cenkalti/backoff/v4 from 4.2.1 to 4.3.0 by @dependabot in #2780
• build(deps): bump express from 4.18.3 to 4.19.2 in /docs by @dependabot in #2781
• Refactor enrolment to be more flexible with provider class by @eleftherias in #2774
• Auto-generated DB schema update - 2024-03-26 08:08:42 by @github-actions in #2783
• Remove unused server fields by @eleftherias in #2784
• Make repo-lister interface more general by @JAORMX in #2776
• Remove provider requirement when fetching rule type by @JAORMX in #2773
• Remove StubGitHub in favor of our existing mock by @JAORMX in #2785
• Fix error message when instantiating alerter by @JAORMX in #2786
• Move rule type engine code to more descriptive files by @JAORMX in #2787
• Simplify logging evaluation parameters by @JAORMX in #2788
• Modify operations used by marketplace to accept transactions by @dmjb in #2771
• Fix pagination in provider list by @JAORMX in #2791
• Tx changes for marketplace by @dmjb in #2793
• Allow for skipping opening the browser on login by @JAORMX in #2795
• Explicitly coalesce labels on create and update to {} by @jhrozek in #2794
• Allow reading pointer config values from env by @eleftherias in #2799
• Update go-github library to v60 by @JAORMX in #2796
• Make marketplace support multiple sources by @dmjb in #2801
• build(deps): bump github.com/daixiang0/gci from 0.13.1 to 0.13.2 in /tools by @dependabot in #2803
• build(deps): bump anchore/sbom-action from 0.15.9 to 0.15.10 by @dependabot in #2804
• Remove github auth flows from migration by @JAORMX in #2805
• Fix logic for skipping browser on login by @eleftherias in #2806
• Refactor: Move setViperStructDefaults to utils by @Vyom-Yadav in #2807
• Allow ListRemoteRepositoriesFromProvider to gather from multiple providers by @JAORMX in #2802
• Auto-generated cli documentation update - 2024-03-27 10:17:54 by @github-actions in #2810
• Create healthcheck as part of project creation by @dmjb in #2792
• Add label support for ListProfilesByProjectID by @jhrozek in #2789
• Expose and actually fix skip browser by @JAORMX in #2809
• Add comment on inferProvider call by @JAORMX in #2812
• Simplify error return in getProviderFromRequestOrDefault by @JAORMX in #2814
• Read GitHub App secrets from config by @eleftherias in #2811
• Revert "Auto-generated cli documentation update - 2024-03-27 10:17:54… by @eleftherias in #2817
• Auto-generated helm documentation update - 2024-03-27 09:38:17 by @github-actions in #2816
• Fix secret declaration in github app secret by @JAORMX in #2820
• Simplify getNameFilterParam in provider common functions by @JAORMX in #2813
• Add additional info logs by @eleftherias in #2821
• Revert default config by @eleftherias in #2822
• Add display names to rule types by @JAORMX in #2824
• Use conn.PingContext() instead of Ping() to avoid trying to connect with context.Background() by @jhrozek in #2823
• Add helm documentation about GitHub App secrets by @eleftherias in #2828
• Auto-generated DB schema update - 2024-03-27 14:27:54 by @github-actions in #2826
• Auto-generated helm documentation update - 2024-03-27 14:49:50 by @github-actions in #2829
• Ensure repo context is retained in registration by @eleftherias in #2830
• Add enrolment for GitHub App provider by @eleftherias in #2827
• Auto-generated cli documentation update - 2024-03-27 18:06:31 by @github-actions in #2832
• Don't dereference result on error from RegisterRepository by @jhrozek in #2834
• npm vuln check not working by @teodor-yanev in #2818
• build(deps): bump aquasecurity/trivy-action from 0.18.0 to 0.19.0 by @dependabot in #2840

Full Changelog: v0.0.37...v0.0.38

v0.0.37

What's Changed

• Prevent modification/deletion of rules belonging to a subscription by @dmjb in #2680
• Use watermill-sql v3 not v2 by @JAORMX in #2712
• Add rule evaluation ID as a unique reference to RuleEvaluationStatus by @jhrozek in #2716
• build(deps): bump github.com/golangci/golangci-lint from 1.56.2 to 1.57.0 in /tools by @dependabot in #2717
• Fill in GitHub App provider by @eleftherias in #2713
• Add the ruletype severity when returning the list of evaluations by @jhrozek in #2710
• Create interface for reading from mindpak bundles by @dmjb in #2714
• Don't parse the alert metadata if there's no alert opened by @rdimitrov in #2719
• Add GitHub App installations table by @eleftherias in #2720
• Auto-generated DB schema update - 2024-03-20 13:14:37 by @github-actions in #2721
• Add display name for profiles by @JAORMX in #2724
• Auto-generated DB schema update - 2024-03-20 16:57:16 by @github-actions in #2726
• build(deps): bump github.com/docker/docker from 25.0.3+incompatible to 25.0.5+incompatible by @dependabot in #2732
• build(deps): bump github.com/docker/docker from 25.0.4+incompatible to 25.0.5+incompatible in /tools by @dependabot in #2733
• build(deps): bump github.com/golangci/golangci-lint from 1.57.0 to 1.57.1 in /tools by @dependabot in #2738
• Also show display name in GetProfile API by @JAORMX in #2736
• build(deps): bump slsa-framework/slsa-github-generator from 1.9.0 to 1.9.1 by @dependabot in #2737
• build(deps): bump github.com/openfga/openfga from 1.5.0 to 1.5.1 by @dependabot in #2739
• Add credential state to providers proto by @JAORMX in #2728
• Add display name to profile status output by @JAORMX in #2740
• Separate the eventer into interfaces by @JAORMX in #2718
• Add GitHub App data to configuration by @eleftherias in #2730
• Create Subscription service interface by @dmjb in #2729
• Define BundleSource interface by @dmjb in #2731
• Eval Status: Return repository UUID, populate entity info by @puerco in #2741
• Introduce GitHub App installation access token by @eleftherias in #2725
• Add more logging to user/project deletion by @JAORMX in #2744
• fix: homoglyphs status profile by @teodor-yanev in #2743
• Add log message for transaction commit when deleting account by @JAORMX in #2745
• Add bundle ID structure by @dmjb in #2747
• Only run transaction rollback for deleting user when there's an error by @JAORMX in #2746
• Detect project deletion while ListProjects gathers projects by @JAORMX in #2752
• Skip deleted projects while getting user by @JAORMX in #2754
• Add a CLI for rotating webhook secrets by @jhrozek in #2735
• build(deps): bump slsa-framework/slsa-github-generator from 1.9.1 to 1.10.0 by @dependabot in #2753
• build(deps): bump webpack-dev-middleware from 5.3.3 to 5.3.4 in /docs by @dependabot in #2755
• Provide an array of fallback secrets to allow secret migration by @jhrozek in #2734

Full Changelog: v0.0.36...v0.0.37

v0.0.36

What's Changed

• Add project service definition to minder ingress by @JAORMX in #2629
• Move repo deletion into a separate interface by @dmjb in #2608
• Project delete: Check feature flag on parent by @JAORMX in #2631
• Use project ID from entity context for ruletypes by @JAORMX in #2634
• Use project ID from entity context in rule creation by @dmjb in #2636
• Upgrade keycloak to 24.0 by @jhrozek in #2637
• Introduce provider Credential interface by @eleftherias in #2604
• Fix docs formatting to make build pass by @eleftherias in #2641
• Set go version to 1.22, tweak coverage by @dmjb in #2630
• Move repository create to RepositoryService by @dmjb in #2632
• Remove unused ListAllPackages on GitHub provider by @eleftherias in #2642
• Explicitly specify owner when listing packages by @eleftherias in #2643
• Add EvalResultsService to ingress.yaml by @rdimitrov in #2644
• Revert "Move repository create to RepositoryService (#2632)" by @JAORMX in #2645
• Add repo reconcile command to minder CLI by @Vyom-Yadav in #2505
• Explicitly specify owner in all package operations by @eleftherias in #2652
• Auto-generated cli documentation update - 2024-03-14 06:45:00 by @github-actions in #2649
• Small tweaks to repo registration in the CLI by @dmjb in #2647
• Make the parameter of GetRepositoryByName and DeleteRepositoryByName greedy by @jhrozek in #2655
• TEMPORARY: Dump tokeninfo by @jhrozek in #2651
• build(deps): bump docker/build-push-action from 5.2.0 to 5.3.0 by @dependabot in #2666
• build(deps): bump github.com/jackc/pgx/v5 from 5.5.1 to 5.5.4 in /tools by @dependabot in #2660
• build(deps): bump github.com/google/go-containerregistry from 0.19.0 to 0.19.1 by @dependabot in #2664
• Sort the list of profiles before returning to clients by @jhrozek in #2659
• build(deps): bump follow-redirects from 1.15.5 to 1.15.6 in /docs by @dependabot in #2667
• build(deps): bump github.com/openfga/cli from 0.2.6 to 0.2.7 in /tools by @dependabot in #2663
• build(deps): bump github.com/jackc/pgx/v5 from 5.5.3 to 5.5.4 by @dependabot in #2661
• build(deps): bump docker/setup-buildx-action from 3.1.0 to 3.2.0 by @dependabot in #2665
• Allow using empty credential if no token by @eleftherias in #2650
• Move profile create/update to a separate interface by @dmjb in #2653
• use correct project ID when creating profile by @dmjb in #2668
• Update Keycloak to match staging and prod by @eleftherias in #2669
• Allow using an environment variable to override the token from the CLI by @JAORMX in #2671
• Overlay PatchProfile body with the current profile to avoid reverting to default values by @jhrozek in #2673
• Add alert info to RuleEvaluationStatuses by @rdimitrov in #2675
• Define DB schema for bundles and subscriptions by @dmjb in #2670
• Auto-generated DB schema update - 2024-03-15 14:24:23 by @github-actions in #2676
• Add Create/Delete/GetUnclaimedProvider RPCs by @evankanderson in #2640
• Put subscription foreign key on correct table by @dmjb in #2677
• Auto-generated DB schema update - 2024-03-15 17:07:45 by @github-actions in #2679
• Mindpak modules by @puerco in #2639
• Make several more name parameters greedy in the HTTP bindings by @jhrozek in #2689
• build(deps): bump k8s.io/client-go from 0.29.2 to 0.29.3 by @dependabot in #2690
• Minder resource names should be case-insensitive by @evankanderson in #2684
• Auto-generated DB schema update - 2024-03-18 09:41:30 by @github-actions in #2692
• Default explicitly to remediate:off and alert:on by @jhrozek in #2688
• Add debug information for credentials instantiation by @jhrozek in #2695
• Add command line flag to skip browser spawning in provider enroll command by @JAORMX in #2696
• Add "display name" to project's API definition by @JAORMX in #2698
• Use the Login field as the user name, not Username by @jhrozek in #2699
• Revert "TEMPORARY: Dump tokeninfo (#2651)" by @jhrozek in #2700
• Rename GetUsername to GetName, use GetLogin as fallback when opening a PR by @jhrozek in #2701
• Add "public" metadata section in project's metadata and use it for display name by @JAORMX in #2702
• build(deps): bump github/codeql-action from 3.24.7 to 3.24.8 by @dependabot in #2703
• build(deps): bump github.com/styrainc/regal from 0.18.0 to 0.19.0 by @dependabot in #2704
• Implement EvalResultsService/ListEvaluationResults() by @puerco in #2687
• ListEvaluationResults: Retrieve project ID from entity context by @JAORMX in #2706
• Implement API to update projects by @JAORMX in #2705
• Introduce GitHub App provider by @eleftherias in #2678
• Reapply "Move repository create to RepositoryService (#2632)" (#2645) by @dmjb in #2648
• Use correct delegate for GitHub email by @eleftherias in #2711

Full Changelog: v0.0.35...v0.0.36

v0.0.35

What's Changed

• Add buf lint to our lint target by @JAORMX in #2504
• Refactor: Move logging level method to utils by @Vyom-Yadav in #2487
• build(deps): bump golang from 1.22.0 to 1.22.1 by @dependabot in #2508
• build(deps): bump anchore/sbom-action from 0.15.8 to 0.15.9 by @dependabot in #2507
• build(deps): bump github.com/charmbracelet/lipgloss from 0.9.1 to 0.10.0 by @dependabot in #2511
• build(deps): bump google.golang.org/protobuf from 1.32.0 to 1.33.0 by @dependabot in #2510
• build(deps): bump google.golang.org/grpc from 1.62.0 to 1.62.1 by @dependabot in #2509
• Remove helper function duplication in EEA tests by @JAORMX in #2513
• Make GitHub provider interface more generic by @eleftherias in #2514
• Add new endpoint for fetching rule evaluations by @evankanderson in #2470
• Auto-generated cli documentation update - 2024-03-06 06:04:57 by @github-actions in #2523
• Update gitignore to ignore local sigstore artifacts by @rdimitrov in #2527
• Wrap controlplane metrics with interface by @JAORMX in #2516
• Create single status comment and correctly dismiss reviews by @gregfurman in #2171
• Refactor: Move Dockerfile to a separate docker directory by @Vyom-Yadav in #2488
• Move projects to be self-contained trees by @JAORMX in #2275
• build(deps): bump github.com/lestrrat-go/jwx/v2 from 2.0.20 to 2.0.21 by @dependabot in #2532
• Add license information to repositories by @JAORMX in #2515
• Revert "Auto-generated cli documentation update - 2024-03-06 06:04:57" by @JAORMX in #2533
• Revert "Refactor: Move Dockerfile to a separate docker directory" by @JAORMX in #2534
• Add provider authorization flow types to database by @JAORMX in #2535
• Auto-generated DB schema update - 2024-03-07 10:45:02 by @github-actions in #2537
• build(deps): bump github.com/open-policy-agent/opa from 0.62.0 to 0.62.1 by @dependabot in #2531
• Add Project List RPC by @JAORMX in #2536
• Cast sql limit to bigint to force sqlc to generate NullInt64 by @Vyom-Yadav in #2490
• Remove unused 'port' from session state queries by @evankanderson in #2547
• Remove token from builtin rules by @eleftherias in #2550
• Add crypto engine mock by @eleftherias in #2548
• build(deps): bump gopkg.in/go-jose/go-jose.v2 from 2.6.1 to 2.6.3 by @dependabot in #2552
• build(deps): bump github.com/bufbuild/buf from 1.29.0 to 1.30.0 in /tools by @dependabot in #2553
• build(deps): bump redocusaurus from 2.0.1 to 2.0.2 in /docs by @dependabot in #2554
• build(deps): bump bufbuild/buf-setup-action from 1.29.0 to 1.30.0 by @dependabot in #2555
• Move default project creation and add tests by @JAORMX in #2557
• Implement project list CLI subcommand by @JAORMX in #2558
• Hook severity into GHSA generation by @JAORMX in #2560
• Remove unused Git client in pull request remediator by @eleftherias in #2561
• Change name and triggers for documentation test deployment CI by @JAORMX in #2562
• OpenFGA: change playground port to 8085 by @ethomson in #2551
• build(deps): bump docker/build-push-action from 5.1.0 to 5.2.0 by @dependabot in #2569
• Return alert status in profile get by @jhrozek in #2568
• Remove project tree migration code by @JAORMX in #2570
• Make GitHub provider implement Git provider by @eleftherias in #2564
• Reuse token from GitHub client in container verifier by @eleftherias in #2571
• Use basic auth for container verifier by @eleftherias in #2572
• Allow setting project ID via environment variable by @JAORMX in #2574
• Revert "Allow setting project ID via environment variable (#2574)" by @JAORMX in #2577
• Ensure we actually set the default auth flows for the github provider by @JAORMX in #2575
• Implement a mock response for ListEvaluationResults by @rdimitrov in #2549
• Use static token source for GitHub provider by @eleftherias in #2580
• Add test server mindev command by @JAORMX in #2579
• Project providers through the hierarchy by @JAORMX in #2573
• Auto-generated DB schema update - 2024-03-12 05:27:22 by @github-actions in #2583
• Clean up provider enroll, provide error message on failure by @evankanderson in #2567
• Move from docker-compose to docker compose by @Vyom-Yadav in #2538
• build(deps): bump github.com/daixiang0/gci from 0.13.0 to 0.13.1 in /tools by @dependabot in #2588
• Add subproject creation/deletion operations by @JAORMX in #2556
• Wait for OpenFGA to be healthy in tests by @JAORMX in #2586
• Auto-generated cli documentation update - 2024-03-12 05:56:50 by @github-actions in #2584
• Fix docs build by @JAORMX in #2592
• Add authorization flows to the providers API by @JAORMX in #2593
• Use project ID when querying by repo UUID by @dmjb in #2590
• Implement provider get API and CLI by @JAORMX in #2595
• Read database migrations from embedded filesystem and not dynamically by @JAORMX in #2587
• Enforce project boundaries in profile API by @JAORMX in #2597
• Implement a HTTP PATCH method for updating profiles by @jhrozek in #2565
• Disable ingestcache for artifacts by @JAORMX in #2603
• Revert "Disable ingestcache for artifacts (#2603)" by @rdimitrov in #2606
• Assorted refactoring changes by @dmjb in #2596
• Remove unused mock by @dmjb in #2607
• This makes sure that the github providers have the expected auth flows set up by @JAORMX in #2602
• Refactor: Move Dockerfile to a separate docker directory by @Vyom-Yadav in #2589
• build(deps): bump actions/checkout from 4.1.1 to 4.1.2 by @dependabot in #2610
• build(deps): bump github/codeql-action from 3.24.6 to 3.24.7 by @dependabot in #2611
• build(deps): bump peter-evans/create-pull-request from 6.0.1 to 6.0.2 by @dependabot in #2612
• build(deps): bump github.com/grpc-ecosystem/go-grpc-middleware/v2 from 2.0.1 to 2.1.0 by @dependabot in #2614
• Add extra fields to our logging so it's easier to track where issues happen by @JAORMX in #2615
• Actually check for auth flows in provider enrollment by @JAORMX in #2601
• Store expected GitHub userid in database during enroll by @evankanderson in #2566
• Auto-generated DB schema update - 2024-03-13 11:55:22 by @github-actions in #2618
• Remove hardcoded provider check by @JAORMX in #2617
• Suppress the default googlerpc.Status reply from swagger.json by @jhrozek in #2620
• Auto-generated cli documentation update - 2024-03-13 13:10:38 by @github-actions in #2621
• Fix severity handling, default to low for GitHub by @rdimitrov in #2623
• Move rule creation and update into a separate interface by @dmjb in #2622
• Remove the default googlerpcStatus from the PatchProfile rpc method as well by @jhrozek in #2624

Full Changelog: v0.0.34...v0.0.35

v0.0.34

What's Changed

• git ingester: Allow using default branch by @JAORMX in #2496
• minder ruletype lint: Also verify that rule type name matches file name by @JAORMX in #2495
• update doc yarn dependencies by @dmjb in #2498
• add lint-fix command to makefile by @dmjb in #2500
• Allow rule type linting to skip rego and read many rule types by @JAORMX in #2499
• Ensure viper binds to env vars in mindev by @JAORMX in #2501
• Remove replace statement from go.mod by @JAORMX in #2503

Full Changelog: v0.0.33...v0.0.34

v0.0.33

What's Changed

• clean up unused DB queries for repositories by @dmjb in #2483
• Support for offline tokens by @JAORMX in #2468
• Auto-generated cli documentation update - 2024-03-04 19:52:24 by @github-actions in #2485
• Bump OpenFGA in docker-compose to v1.5.0 by @JAORMX in #2484
• Include 'openfga' in the 'depends_on' section of the 'minder' server container by @Vyom-Yadav in #2489
• Upsert provider access tokens instead of Create and Delete by @jhrozek in #2486
• build(deps): bump golang.org/x/crypto from 0.20.0 to 0.21.0 by @dependabot in #2492
• build(deps): bump golang.org/x/oauth2 from 0.17.0 to 0.18.0 by @dependabot in #2491
• build(deps): bump golang.org/x/tools from 0.18.0 to 0.19.0 in /tools by @dependabot in #2494

Full Changelog: v0.0.32...v0.0.33