Merge branch 'main' into dashboard/metrics-details-frontend

Author: ahmedxgouda

.pre-commit-config.yaml

@@ -10,7 +10,7 @@ repos:
         exclude: (.github|pnpm-lock.yaml)
 
   - repo: https://github.com/astral-sh/ruff-pre-commit
-    rev: v0.12.3
+    rev: v0.12.4
     hooks:
       - id: ruff
         args:

LEARN.md

@@ -0,0 +1,73 @@
+<div align="center">
+
+<picture>
+  <source srcset="https://nest.owasp.org/img/owasp_icon_white_sm.png" media="(prefers-color-scheme: dark)">
+  <img src="https://nest.owasp.org/img/owasp_icon_black_sm.png" alt="OWASP Logo" width="200">
+</picture>
+
+# [OWASP Nest](https://nest.owasp.org/)
+
+[![OWASP](https://img.shields.io/badge/OWASP-Incubator-blue?style=for-the-badge)](https://owasp.org/www-project-nest/) ![OWASP](https://img.shields.io/badge/OWASP-Code-blue?style=for-the-badge) [![Project-Nest](https://img.shields.io/badge/OWASP-%23project--nest-blue?logo=slack&logoColor=white&style=for-the-badge)](https://owasp.slack.com/messages/project-nest)
+
+![License](https://img.shields.io/github/license/owasp/nest?color=41BE4A&label=License&style=for-the-badge) ![Last Commit](https://img.shields.io/github/last-commit/owasp/nest/main?style=for-the-badge&label=Last%20commit) ![Contributors](https://img.shields.io/github/contributors/owasp/nest?style=for-the-badge&label=Contributors)
+
+[![CI/CD](https://img.shields.io/github/actions/workflow/status/owasp/nest/run-ci-cd.yaml?branch=main&label=Build&style=for-the-badge)](https://github.com/owasp/nest/actions/workflows/run-ci-cd.yaml?query=branch%3Amain) [![CodeQL](https://img.shields.io/github/actions/workflow/status/owasp/nest/run-code-ql.yaml?branch=main&label=CodeQL&style=for-the-badge)](https://github.com/owasp/nest/actions/workflows/run-code-ql.yaml?query=branch%3Amain) [![Sonarqube](https://img.shields.io/sonar/quality_gate/OWASP_Nest?server=https://sonarcloud.io&style=for-the-badge&label=Sonarqube)](https://sonarcloud.io/project/information?id=OWASP_Nest)
+
+![Issues](https://img.shields.io/github/issues/owasp/nest?color=blue&style=for-the-badge&label=Issues) ![Pull Requests](https://img.shields.io/github/issues-pr/owasp/nest?color=blue&style=for-the-badge&label=Pull%20Requests)
+
+[![OpenSSF](https://img.shields.io/badge/OpenSSF-84%25-blue?style=for-the-badge)](https://www.bestpractices.dev/projects/10174) [![Snyk Security](https://img.shields.io/badge/Snyk-Scanned-blue?style=for-the-badge)](https://snyk.io)
+
+![Forks](https://img.shields.io/github/forks/owasp/nest?style=for-the-badge&label=Forks) ![Stars](https://img.shields.io/github/stars/owasp/nest?style=for-the-badge&label=Stars)
+
+[![CREATED](https://img.shields.io/badge/created-aug,%202024-blue?style=for-the-badge)](https://github.com/OWASP/Nest/commit/2a213c2efcfc2f8889c2f1d330da0d2e6f649fc1)
+
+</div>
+
+**OWASP Nest** is a comprehensive platform designed to enhance collaboration and contribution within the OWASP community. The application serves as a central hub for exploring OWASP projects and ways to contribute to them, empowering contributors to find opportunities that align with their interests and expertise.
+
+Key features of the platform include:
+
+- **Advanced Search Capabilities:** Enables efficient navigation and filtering of projects and issues based on keywords, tags, and contributor preferences.
+- **Slack Integration:** Supports seamless communication through a [Slack bot](https://owasp.slack.com/team/U07M1C4JASK) that facilitates direct and channel messaging for updates and discussions.
+- **OWASP Chapters Proximity Page:** Offers localized information about nearby OWASP chapters to foster community engagement.
+- **AI-Generated Insights:** Provides summarized descriptions and actionable steps for tackling project issues.
+
+OWASP Nest promotes collaboration, making it easier for both new and experienced contributors to engage meaningfully with OWASP's mission to improve software security worldwide.
+
+## Leaders
+
+OWASP Nest is led by a dedicated team committed to fostering collaboration and supporting contributors. The leadership team ensures the platform aligns with OWASP's mission, continually improving its features to serve the community better.
+Current Leaders:
+
+- [Arkadii Yakovets](https://github.com/arkid15r/)  -- CCSP, CISSP, CSSLP
+- [Kate Golovanova](https://github.com/kasya/) -- CC
+- [Starr Brown](https://github.com/mamicidal/) -- CISSP
+
+All OWASP Nest leaders are certified ISC2 professionals and adhere to the OWASP Code of Conduct.
+For questions or discussions with the leadership team and other contributors, please use the [#project-nest](https://owasp.slack.com/archives/project-nest) channel on OWASP Slack.
+
+## Contributing
+
+OWASP Nest thrives on community contributions. Whether you are a developer, designer, writer, or enthusiast, there are various ways to get involved:
+
+- Code Contributions: Help improve the platform by fixing issues or adding new features.
+- Code Review: Review and provide feedback on pull requests to ensure code quality and maintainability.
+- Documentation: Enhance user guides or create tutorials to help others navigate the platform.
+- Issue Reporting: Identify and report bugs or suggest improvements.
+- Engagement: Share feedback, participate in discussions, or promote the project in your network.
+
+To get started, visit the [OWASP Nest Repository](https://github.com/OWASP/Nest), explore the [Contributing Guidelines](https://github.com/OWASP/Nest/blob/main/CONTRIBUTING.md), and [Code of Conduct](https://github.com/OWASP/Nest/blob/main/CODE_OF_CONDUCT.md).
+
+## About
+
+OWASP Nest was **originally created by Arkadii Yakovets** (Ark) to address challenges in navigating OWASP projects. The project was **built from scratch based on Ark's ideas and discussions with Starr Brown** (Starr), ensuring a well-structured system design aligned with OWASP's ecosystem. Ark, an experienced software development professional with over 10 years of expertise in Python, Django, Django REST Framework (DRF), and related backend technologies, led the development of the backend using widely adopted Python **open-source frameworks and libraries**, including DRF, django-filter, OpenAI, Algolia Search, slack-bolt, PyGitHub, pre-commit, pytest, and more. The initial frontend, based on Vue.js, was introduced by **Kateryna Golovanova** (Kate), who later became the project co-leader due to her invaluable frontend and project management skills. The **code is licensed under the MIT License**, encouraging contributions while protecting the authors from legal claims. All OWASP Nest leaders are OWASP members and adhere to the OWASP Code of Conduct.
+
+Over time, OWASP Nest has expanded to address broader OWASP community needs, such as Google Summer of Code (GSoC) student guidance and contribution opportunities discovery. The platform, along with NestBot, has become a popular entry point for various OWASP aspects, including projects, chapters, users, and aggregated contribution opportunities -- with even more features planned. OWASP Nest's success is also the result of many valuable [contributions](https://github.com/OWASP/Nest/graphs/contributors) from the broader [OWASP Nest community](https://owasp.slack.com/archives/project-nest), whose efforts have helped shape and improve the project in countless ways.
+
+**No other OWASP projects' code was used in OWASP Nest's development.** While explicit attribution (other than per MIT license) is not required, contributors and other OWASP project leaders are welcome to provide it at their discretion.
+
+### Community and Social Media
+
+- [BlueSky account](https://bsky.app/profile/nest.owasp.org)
+- [LinkedIn group](https://www.linkedin.com/groups/14656108/)
+- [Slack channel](https://owasp.slack.com/archives/project-nest) (join [here](https://owasp.org/slack/invite))

backend/Makefile

@@ -6,6 +6,8 @@ include backend/apps/slack/Makefile
 clean-backend-dependencies:
 	@rm -rf backend/.cache
 	@rm -rf backend/.local
+	@rm -rf backend/.pytest_cache
+	@rm -rf backend/.ruff_cache
 	@rm -rf backend/.venv
 
 clean-backend-docker:

backend/apps/common/constants.py

@@ -4,5 +4,5 @@
 OWASP_BLOG_URL = "https://owasp.org/blog"
 OWASP_NEST_URL = "https://nest.owasp.org"
 OWASP_NEWS_URL = "https://owasp.org/news"
-OWASP_WEBSITE_URL = "https://owasp.org"
+OWASP_URL = "https://owasp.org"
 TAB = "\t"

backend/apps/github/migrations/0032_user_github_user_created_at_desc_and_more.py

@@ -0,0 +1,20 @@
+# Generated by Django 5.2.4 on 2025-07-18 01:04
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+    dependencies = [
+        ("github", "0031_alter_repository_organization"),
+    ]
+
+    operations = [
+        migrations.AddIndex(
+            model_name="user",
+            index=models.Index(fields=["-created_at"], name="github_user_created_at_desc"),
+        ),
+        migrations.AddIndex(
+            model_name="user",
+            index=models.Index(fields=["-updated_at"], name="github_user_updated_at_desc"),
+        ),
+    ]

backend/apps/github/models/user.py

@@ -21,6 +21,10 @@ class User(NodeModel, GenericUserModel, TimestampedModel, UserIndexMixin):
 
     class Meta:
         db_table = "github_users"
+        indexes = [
+            models.Index(fields=["-created_at"], name="github_user_created_at_desc"),
+            models.Index(fields=["-updated_at"], name="github_user_updated_at_desc"),
+        ]
         verbose_name_plural = "Users"
 
     bio = models.TextField(verbose_name="Bio", max_length=1000, default="")

backend/apps/owasp/graphql/queries/chapter.py

@@ -21,4 +21,4 @@ def chapter(self, key: str) -> ChapterNode | None:
     @strawberry.field
     def recent_chapters(self, limit: int = 8) -> list[ChapterNode]:
         """Resolve recent chapters."""
-        return Chapter.objects.filter(is_active=True).order_by("-created_at")[:limit]
+        return Chapter.active_chapters.order_by("-created_at")[:limit]

backend/apps/owasp/management/commands/owasp_sync_posts.py

@@ -7,7 +7,7 @@
 import yaml.scanner
 from django.core.management.base import BaseCommand
 
-from apps.common.constants import OWASP_BLOG_URL, OWASP_WEBSITE_URL
+from apps.common.constants import OWASP_BLOG_URL, OWASP_URL
 from apps.github.utils import get_repository_file_content
 from apps.owasp.models.post import Post
 
@@ -23,7 +23,7 @@ def get_author_image_url(self, author_image_url: str) -> str:
             str: The full URL of the author's image.
 
         """
-        return f"{OWASP_WEBSITE_URL}{author_image_url}" if author_image_url else ""
+        return f"{OWASP_URL}{author_image_url}" if author_image_url else ""
 
     def get_blog_url(self, path: str) -> str:
         """Return OWASP blog URL for a given path.

backend/apps/owasp/migrations/0044_chapter_chapter_updated_at_desc_idx_and_more.py

@@ -0,0 +1,21 @@
+# Generated by Django 5.2.4 on 2025-07-18 01:04
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+    dependencies = [
+        ("github", "0032_user_github_user_created_at_desc_and_more"),
+        ("owasp", "0043_projecthealthmetrics_unique_daily_project_health_metrics"),
+    ]
+
+    operations = [
+        migrations.AddIndex(
+            model_name="chapter",
+            index=models.Index(fields=["-updated_at"], name="chapter_updated_at_desc_idx"),
+        ),
+        migrations.AddIndex(
+            model_name="project",
+            index=models.Index(fields=["-updated_at"], name="project_updated_at_desc_idx"),
+        ),
+    ]

backend/apps/owasp/models/chapter.py

@@ -32,6 +32,7 @@ class Meta:
         db_table = "owasp_chapters"
         indexes = [
             models.Index(fields=["-created_at"], name="chapter_created_at_desc_idx"),
+            models.Index(fields=["-updated_at"], name="chapter_updated_at_desc_idx"),
         ]
         verbose_name_plural = "Chapters"