Skip to content

Updating Prod to v2.1.2-sd #1025

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 108 commits into from
Feb 13, 2023
Merged

Updating Prod to v2.1.2-sd #1025

merged 108 commits into from
Feb 13, 2023

Conversation

jdaigneau5
Copy link
Collaborator

Summary

Updating Prod to version v2.1.2-sd. See release notes:

dependabot bot and others added 30 commits December 1, 2022 15:26
@dependabot
Bump minimatch and mocha
13cf673 
Bumps [minimatch](https://github.com/isaacs/minimatch) to 3.1.2 and updates ancestor dependency [mocha](https://github.com/mochajs/mocha). These dependencies need to be updated together.


Updates `minimatch` from 3.0.4 to 3.1.2
- [Release notes](https://github.com/isaacs/minimatch/releases)
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](isaacs/minimatch@v3.0.4...v3.1.2)

Updates `mocha` from 6.2.3 to 10.1.0
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/master/CHANGELOG.md)
- [Commits](mochajs/mocha@v6.2.3...v10.1.0)

---
updated-dependencies:
- dependency-name: minimatch
  dependency-type: indirect
- dependency-name: mocha
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@slubar
Merge branch 'dev' into dependabot/npm_and_yarn/minimatch-and-mocha-3…
b8f8011 
….1.2
@jdaigneau5
#714 updated the submitCna() function to handle case when org isn't f…
bf9950a 
…ound. Also, refactored rejectCVE() to use optional chaining. Updated eslint to v8.20.0 to support ecmaScript 2020
@slubar
#802 Update boolean query parameters to accept 0,1,true,false,yes,no …
e5741c7 
…in any casing
@slubar
#802 fix http test
9ba1d1f
@slubar
#802 fix typo
572b6a0
@slubar
Merge branch 'dev' into dependabot/npm_and_yarn/minimatch-and-mocha-3…
2295c07 
….1.2
@slubar
#802 improvement to booleanIsTrue
24a17ac
@brettp
Merge pull request #952 from CVEProject/srl-802
c9f6ce5 
#802 Update boolean query parameters to accept 0,1,true,false,yes,no …
@slubar
#936 fix broken call in action:coverage
fd69195
@slubar
Merge branch 'dependabot/npm_and_yarn/minimatch-and-mocha-3.1.2' of h…
e6f55d9 
…ttps://github.com/CVEProject/cve-services into dependabot/npm_and_yarn/minimatch-and-mocha-3.1.2
@slubar
Merge branch 'dev' into dependabot/npm_and_yarn/minimatch-and-mocha-3…
ed2b4c9 
….1.2
@slubar
Merge pull request #936 from CVEProject/dependabot/npm_and_yarn/minim…
11e75ef 
…atch-and-mocha-3.1.2

Bump minimatch and mocha
@jdaigneau5
Merge branch 'dev' of https://github.com/CVEProject/cve-services into…
d2fe526 
… jd-714
@jdaigneau5
#714 updated workflow linting files to use node 16
f3650cb
@brettp
Merge pull request #954 from CVEProject/jd-714
a05a3d4 
Resolves #714 Updated POST /cve/{id}/cna to handle missing org names consistently with POST /cve/{id}/reject
@slubar
#959 fixes HTML error in Swagger docs
d80bd99
@slubar
Merge branch 'dev' into srl-961
0de336c
@jdaigneau5
Merge pull request #969 from CVEProject/srl-961
a249b5e 
#961 Bump CVE Services version number, plus doc update
@jdaigneau5
Merge branch 'dev' into srl-959
8880d2d
@jdaigneau5
Merge pull request #968 from CVEProject/srl-959
bb524f0 
#959 fixes HTML error in Swagger docs
@slubar
#960 remove uuid-apikey package due to CWE-1104
ca4461b
@slubar
#965 fix typo in error message about timestamp format
6bb6aeb
@jdaigneau5
Merge pull request #971 from CVEProject/srl-965
85d40b9 
#965 fix typo in error message about timestamp format
@slubar
Merged #443 from snyk-upgrade-2c23be7b81951f52e6527ef7d53d11e0 to upg…
4f9e2a3 
…rade argon2 to 0.27.2
@dependabot
Bump qs and express
062d8d5 
Bumps [qs](https://github.com/ljharb/qs) to 6.11.0 and updates ancestor dependency [express](https://github.com/expressjs/express). These dependencies need to be updated together.


Updates `qs` from 6.7.0 to 6.11.0
- [Release notes](https://github.com/ljharb/qs/releases)
- [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md)
- [Commits](ljharb/qs@v6.7.0...v6.11.0)

Updates `express` from 4.17.1 to 4.18.2
- [Release notes](https://github.com/expressjs/express/releases)
- [Changelog](https://github.com/expressjs/express/blob/master/History.md)
- [Commits](expressjs/express@4.17.1...4.18.2)

---
updated-dependencies:
- dependency-name: qs
  dependency-type: indirect
- dependency-name: express
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@brettp
Merge pull request #939 from CVEProject/dependabot/npm_and_yarn/qs-an…
e5686b3 
…d-express-6.11.0

Bump qs and express
@brettp
#885 fix: Output JSON for 429 errors. Add errors to API docs.
cbc156c
@jdaigneau5
Merge branch 'dev' into srl-960
da032e1
@jdaigneau5
Merge pull request #973 from CVEProject/bep-885-rate-limit-docs
d73256e 
Output JSON for 429 errors
jdaigneau5 and others added 27 commits February 1, 2023 10:26
@jdaigneau5
#608 Updated error message to include warning about $s
9aa0de9
@jdaigneau5
Merge branch 'dev' of https://github.com/CVEProject/cve-services into…
0af6645 
… jd-608
@slubar
#951 implement bulk download org role; add tests for the role
629db5e
@slubar
Merge branch 'dev' into srl-951
f1b9913
@slubar
#951 fix unit tests
2e55931
@slubar
Merge branch 'srl-951' of https://github.com/CVEProject/cve-services
006fb88 
…into srl-951
@slubar
#951 fix lint errors
553f218
@slubar
Merge pull request #1003 from CVEProject/jd-608
2862404 
Resolves #608 Improved error message for creating CVE records with $ in X_ values
@jdaigneau5
#749 Updated error messages
87ca944
@jdaigneau5
Merge branch 'dev' into jd-749
e650cd8
@jdaigneau5
#749 Fixed tests
a87a272
@jdaigneau5
Merge branch 'jd-749' of https://github.com/CVEProject/cve-services i…
b7a6da6 
…nto jd-749
@jdaigneau5
#749 more test fixes
c007365
@jdaigneau5
#749 updated updateUser error message
27f34f3
@brettp
Merge branch 'dev' into srl-951
169998c
@brettp
Merge pull request #1004 from CVEProject/srl-951
4fc6191 
Resolves #951 implements bulk download org role
@brettp
Merge branch 'dev' into jd-749
d273c92
@brettp
Merge pull request #1005 from CVEProject/jd-749
1c23e82 
Resolves #749 Updated error messages for creating and updating users and creating CVE records
@brettp
Fixes #887. Do not create orgs if UUID is passed. Correct error messa…
58d210d 
…ges.
@jdaigneau5
Merge pull request #1007 from CVEProject/bep-887-uuid-err-msg
d24c2ba 
Resolves issue #887. Do not create orgs if UUID is passed. Correct error messages.
@slubar
Merge branch 'int' into dev
301322d
@jdaigneau5
Merge pull request #1008 from CVEProject/dev
5c21ad5 
Udate INT from DEV
@jdaigneau5
Updated Cve-services version numbers to 2.1.2
5b9fa79
@jdaigneau5
Updated openapi.json with new cve-services version number
3e5d32b
@slubar
Merge pull request #1023 from CVEProject/jd-int-2.1.2
8294189 
Updated Cve-services version numbers
@slubar
Merge pull request #1024 from CVEProject/int
5d3bcac 
Updating Prod-staging to v2.1.2
@jdaigneau5
Merge branch 'master' into prod-staging
400f853
@slubar slubar merged commit b810e60 into master Feb 13, 2023
@ekmixon ekmixon mentioned this pull request Dec 1, 2023
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
1 more reviewer

@slubar slubar slubar approved these changes

Reviewers whose approvals may not affect merge requirements
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@jdaigneau5 @slubar @brettp