Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[master][Snyk] Security upgrade werkzeug from 2.2.3 to 3.0.3 #33

Closed
wants to merge 6 commits into from
Closed

[master][Snyk] Security upgrade werkzeug from 2.2.3 to 3.0.3 #33

wants to merge 6 commits into from

Commits on Apr 3, 2024

  1. Remove invalid properties from existing GH actions

    @s0undt3ch
    s0undt3ch committed Apr 3, 2024
    Configuration menu
    Copy the full SHA
    17d8419 View commit details
    Browse the repository at this point in the history

  2. Force cache invalidation by setting cache seed to 1

    @s0undt3ch
    s0undt3ch committed Apr 3, 2024
    Configuration menu
    Copy the full SHA
    7d902d6 View commit details
    Browse the repository at this point in the history

  3. Add our own GH cache action 

    This actions wraps actions/cache and forces an early exit if 'fail-on-cache-miss' is true

Based on the work from saltstack#66240
    @s0undt3ch
    s0undt3ch committed Apr 3, 2024
    Configuration menu
    Copy the full SHA
    936f422 View commit details
    Browse the repository at this point in the history

  4. Initial commit of s3 caching

    @felippeb @s0undt3ch
    felippeb authored and s0undt3ch committed Apr 3, 2024
    Configuration menu
    Copy the full SHA
    8e52ac9 View commit details
    Browse the repository at this point in the history

  5. Get AWS regions and SPB_ENVIRONMENT from metadata endpoint

    @s0undt3ch
    s0undt3ch committed Apr 3, 2024
    Configuration menu
    Copy the full SHA
    3ed69f4 View commit details
    Browse the repository at this point in the history

Commits on May 7, 2024

  1. fix: requirements/pytest.txt to reduce vulnerabilities 

    The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-6808933
    @snyk-bot
    snyk-bot committed May 7, 2024
    Configuration menu
    Copy the full SHA
    191ffe6 View commit details
    Browse the repository at this point in the history