Skip to content

Release: Merge release into master from: release/2.53.0 #13802

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
rossops merged 109 commits into from
Dec 1, 2025
Merged

Release: Merge release into master from: release/2.53.0 #13802

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
109 commits
Select commit Hold shift + click to select a range
ec606a3
Update versions in application files
Nov 3, 2025
bd689fe
Merge pull request #13605 from DefectDojo/master-into-dev/2.52.0-2.53…
rossops Nov 3, 2025
0dc5a5b
chore(deps): update dependency renovatebot/renovate from 41.168.0 to …
renovate[bot] Nov 3, 2025
22afcfc
chore(deps): update mccutchen/go-httpbin docker tag from 2.18.3 to v2…
renovate[bot] Nov 3, 2025
99b9567
chore(deps): update dependency renovatebot/renovate from 41.168.6 to …
renovate[bot] Nov 3, 2025
9007e4d
chore(deps): bump drf-spectacular from 0.28.0 to 0.29.0 (#13600)
dependabot[bot] Nov 4, 2025
87a46ae
chore(deps): bump openapitools/openapi-generator-cli (#13599)
dependabot[bot] Nov 4, 2025
503399f
chore(deps): bump nginx from 1.29.2-alpine3.22 to 1.29.3-alpine3.22 (…
dependabot[bot] Nov 4, 2025
d049730
chore(deps): bump markdown from 3.9 to 3.10 (#13609)
dependabot[bot] Nov 4, 2025
0b705d6
chore(deps): bump boto3 from 1.40.63 to 1.40.65 (#13610)
dependabot[bot] Nov 4, 2025
71ae67d
chore(deps): update dependency renovatebot/renovate from 41.169.2 to …
renovate[bot] Nov 4, 2025
b2036f0
chore(deps): update dependency kubernetes/kubernetes from v1.34.0 to …
renovate[bot] Nov 4, 2025
3c28fb5
chore(deps): update dependency vite from 7.1.11 to v7.1.12 (docs/pack…
renovate[bot] Nov 4, 2025
723d6ee
:tada: implement n0s1 scanner #13564 (#13580)
manuel-sommer Nov 4, 2025
d303fea
chore(deps): update dependency renovatebot/renovate from 41.169.4 to …
renovate[bot] Nov 4, 2025
3052ac3
:tada: Advance reimport to update fix_available field #12633 (#12922)
manuel-sommer Nov 5, 2025
f689f84
Make Finding Group Push to Jira Push Push to Duplicate Issues (#13573)
Jino-T Nov 5, 2025
789cf11
chore(deps): update helm/chart-testing-action action from v2.7.0 to v…
renovate[bot] Nov 6, 2025
10ccf52
chore(deps): bump boto3 from 1.40.65 to 1.40.66 (#13626)
dependabot[bot] Nov 6, 2025
0354619
chore(deps): update dependency vite from 7.1.12 to v7.2.1 (docs/packa…
renovate[bot] Nov 6, 2025
bc493c4
chore(deps): update dependency renovatebot/renovate from 41.170.0 to …
renovate[bot] Nov 6, 2025
0024aa2
fix(deps): update dependency @docsearch/js from 4.2.0 to v4.3.1 (docs…
renovate[bot] Nov 6, 2025
e7fed9b
fix(deps): update dependency @docsearch/css from 4.2.0 to v4.3.1 (doc…
renovate[bot] Nov 6, 2025
d1d9676
feat(renovate): track oldest maintained k8s (#13545)
kiblik Nov 6, 2025
2f9a5aa
Adding SOCIAL_AUTH_REDIRECT_IS_HTTPS, to enable use of HTTPS protocol…
marcelhorner Nov 6, 2025
60e2cb3
chore(deps): update dependency renovatebot/renovate from 41.173.0 to …
renovate[bot] Nov 7, 2025
b388a01
chore(deps): bump ruff from 0.14.3 to 0.14.4 (#13645)
dependabot[bot] Nov 9, 2025
9137d79
chore(deps): bump boto3 from 1.40.66 to 1.40.68 (#13644)
dependabot[bot] Nov 9, 2025
4104958
chore(deps): update dependency vite from 7.2.1 to v7.2.2 (docs/packag…
renovate[bot] Nov 9, 2025
37069a5
chore(deps): bump asteval from 1.0.6 to 1.0.7 (#13646)
dependabot[bot] Nov 9, 2025
717b846
chore(deps): bump django-dbbackup from 5.0.0 to 5.0.1 (#13643)
dependabot[bot] Nov 9, 2025
b1ff550
chore(deps): bump django-crispy-forms from 2.4 to 2.5 (#13642)
dependabot[bot] Nov 9, 2025
8daba95
Update versions in application files
Nov 10, 2025
5bf54c2
Merge branch 'dev' into master-into-dev/2.52.1-2.53.0-dev
Maffooch Nov 10, 2025
f6cac49
Restore n0s1 Scanner documentation in supported tools
Maffooch Nov 10, 2025
ac9c159
Merge pull request #13667 from DefectDojo/master-into-dev/2.52.1-2.53…
rossops Nov 10, 2025
bcb9488
chore(deps): bump boto3 from 1.40.68 to 1.40.69 (#13661)
dependabot[bot] Nov 10, 2025
a78cbeb
chore(deps): update softprops/action-gh-release action from v2.4.1 to…
renovate[bot] Nov 10, 2025
0f3040d
Update dependency renovatebot/renovate from 42.0.3 to v42.5.0 (.githu…
renovate[bot] Nov 10, 2025
d56960d
fix(deps): update dependency @docsearch/css from 4.3.1 to v4.3.2 (doc…
renovate[bot] Nov 10, 2025
f44d5a4
Update dependency node from 24.11.0 to v24.11.1 (.github/workflows/va…
renovate[bot] Nov 12, 2025
fc6aba9
Update dependency kubernetes/kubernetes from v1.34.1 to v1.34.2 (.git…
renovate[bot] Nov 13, 2025
0e46041
chore(deps): bump boto3 from 1.40.69 to 1.40.71 (#13692)
dependabot[bot] Nov 13, 2025
b345e64
chore(deps): bump vulners from 3.1.1 to 3.1.2 (#13691)
dependabot[bot] Nov 13, 2025
2a8eaed
fix(deps): update dependency @docsearch/js from 4.3.1 to v4.3.2 (docs…
renovate[bot] Nov 13, 2025
139741d
Update dependency gohugoio/hugo from v0.152.1 to v0.152.2 (.github/wo…
renovate[bot] Nov 13, 2025
bea1002
chore(deps): bump boto3 from 1.40.71 to 1.40.72 (#13697)
dependabot[bot] Nov 13, 2025
19dc283
log a line when custom hash method is used (#13679)
valentijnscholten Nov 14, 2025
68f6639
Deduplicate findings in batches (#13491)
valentijnscholten Nov 14, 2025
6e55879
docs: update SonarQube API pull details (#13689)
sNiXx Nov 14, 2025
348a345
chore(deps): bump boto3 from 1.40.72 to 1.40.73 (#13706)
dependabot[bot] Nov 15, 2025
5e9f1ae
fix(helm): merge extraAnnotations with init job annotations (#13677)
qlimenoque Nov 15, 2025
67801cf
chore(deps): update postgres docker tag from 18.0 to v18.1 (docker-co…
renovate[bot] Nov 15, 2025
9a319ce
:arrow_up: Bump ruff from 0.14.4 to 0.14.5 (#13708)
manuel-sommer Nov 17, 2025
82cbdb7
Update postgres:18.1-alpine Docker digest from 18.1 to 18.1-alpine (d…
renovate[bot] Nov 17, 2025
461a885
Update dependency renovatebot/renovate from 42.5.0 to v42.5.4 (.githu…
renovate[bot] Nov 17, 2025
ed37199
Update versions in application files
Nov 17, 2025
6f0897a
Merge branch 'dev' into master-into-dev/2.52.2-2.53.0-dev
Maffooch Nov 17, 2025
8a7ff18
Merge pull request #13721 from DefectDojo/master-into-dev/2.52.2-2.53…
rossops Nov 17, 2025
f6e2657
Update dependency kubernetes from v1.31.13 to v1.32.10 (.github/workf…
renovate[bot] Nov 17, 2025
1d7dcb8
chore(deps): update dependency renovatebot/renovate from 42.5.4 to v4…
renovate[bot] Nov 18, 2025
36af07a
chore(deps): bump boto3 from 1.40.73 to 1.40.74 (#13715)
dependabot[bot] Nov 18, 2025
e931c60
chore(deps): bump datatables.net from 2.3.4 to 2.3.5 in /components (…
dependabot[bot] Nov 18, 2025
374553e
chore(deps): update actions/checkout action from v5.0.0 to v5.0.1 (.g…
renovate[bot] Nov 18, 2025
b6a87cc
chore(deps): bump boto3 from 1.40.74 to 1.40.75 (#13731)
dependabot[bot] Nov 18, 2025
820f74c
:bug: fix create questionnaire with empty survey (#13728)
manuel-sommer Nov 19, 2025
50450e1
Add notification when finding is created via the API (#13732)
Juu Nov 19, 2025
21bf1a7
Feat: Add HPA & PDB Helm Chart Support #13391 (#13512)
carlosmt86 Nov 20, 2025
e7f9026
chore(deps): bump redis from 7.0.1 to 7.1.0 (#13742)
dependabot[bot] Nov 20, 2025
cb57c63
chore(deps): bump boto3 from 1.40.75 to 1.41.0 (#13743)
dependabot[bot] Nov 20, 2025
56acdae
Update dependency vite from 7.2.2 to v7.2.4 (docs/package.json) (#13741)
renovate[bot] Nov 20, 2025
bd0fa81
Update dependency yamale from 6.0.0 to v6.1.0 (.github/workflows/test…
renovate[bot] Nov 20, 2025
5a97ed6
Update actions/checkout action from v5.0.1 to v6 (.github/workflows/v…
renovate[bot] Nov 20, 2025
7e7ecd3
:tada: implement zora vulnerabilty parser (#13744)
manuel-sommer Nov 21, 2025
ffc03a9
Add OpenReports import support (#13562)
mfyll Nov 21, 2025
e037f89
chore(deps): bump boto3 from 1.41.0 to 1.41.1 (#13753)
dependabot[bot] Nov 22, 2025
9eb305f
fix: enable uwsgi EXTRA_ARGS passthrough
Bump-Action Nov 22, 2025
f506013
Merge branch 'dev' into uwsgi-extra-args
Bump-Action Nov 22, 2025
4aa8010
Update versions in application files
Nov 24, 2025
303c254
Update versions in application files
Nov 24, 2025
c7b813f
Merge branch 'dev' into master-into-dev/2.52.3-2.53.0-dev
Maffooch Nov 24, 2025
9fd9073
Merge pull request #13771 from DefectDojo/master-into-bugfix/2.52.3-2…
rossops Nov 24, 2025
b994e48
Merge pull request #13770 from DefectDojo/master-into-dev/2.52.3-2.53…
rossops Nov 24, 2025
0952a2e
docs: Update number of concurrent connections for uWSGI (#13752)
NoaFayn Nov 25, 2025
7781201
Update dependency renovatebot/renovate from 42.13.3 to v42.21.0 (.git…
renovate[bot] Nov 25, 2025
e274d29
Unit Testing: Do no run in debug mode in order to reduce logging (#13…
Maffooch Nov 26, 2025
678bc65
Update peter-evans/create-pull-request action from v7.0.8 to v7.0.9 (…
renovate[bot] Nov 26, 2025
8917680
:tada: Add 'fix_available' field to zora parser (#13760)
manuel-sommer Nov 26, 2025
75423ff
Update gcr.io/cloudsql-docker/gce-proxy Docker tag from 1.37.9 to v1.…
renovate[bot] Nov 26, 2025
feff19f
chore(deps): bump ruff from 0.14.5 to 0.14.6 (#13763)
dependabot[bot] Nov 26, 2025
ec9ebb3
chore(deps): bump psycopg[c] from 3.2.12 to 3.2.13 (#13764)
dependabot[bot] Nov 26, 2025
11f8310
chore(deps): bump packageurl-python from 0.17.5 to 0.17.6 (#13773)
dependabot[bot] Nov 26, 2025
6fc83be
Update actions/setup-python action from v6.0.0 to v6.1.0 (.github/wor…
renovate[bot] Nov 26, 2025
a0d2ec6
chore(deps): bump boto3 from 1.41.1 to 1.41.4 (#13778)
dependabot[bot] Nov 26, 2025
a5dc944
Update nginx/nginx-prometheus-exporter Docker tag from 1.4.2 to v1.5.…
renovate[bot] Nov 26, 2025
c4e1e02
feat(helm): Use Valkey (#13408)
kiblik Nov 27, 2025
840edf5
fix: rename EXTRA_ARGS to DD_UWSGI_EXTRA_ARGS
Bump-Action Nov 28, 2025
13ab477
Update dependency prettier from 3.6.2 to v3.7.2 (docs/package.json) (…
renovate[bot] Nov 29, 2025
b5eaa75
chore(deps): bump boto3 from 1.41.4 to 1.41.5 (#13782)
dependabot[bot] Nov 29, 2025
c69eb0e
fix(helm): Avoid forbidden chars in annotation (#13772)
kiblik Nov 29, 2025
02a69ef
Remove left over log statement
valentijnscholten Nov 29, 2025
ef3e19d
JIRA: add retries/rate limit support
valentijnscholten Nov 29, 2025
78eb819
Update dependency renovatebot/renovate from 42.21.0 to v42.27.0 (.git…
renovate[bot] Dec 1, 2025
59c6692
Merge pull request #13786 from valentijnscholten/jira-rate-limiting
rossops Dec 1, 2025
9f3d23b
Merge pull request #13756 from Bump-Action/uwsgi-extra-args
rossops Dec 1, 2025
76daa0a
Merge pull request #13784 from DefectDojo/valentijnscholten-patch-3
rossops Dec 1, 2025
83c54b1
Merge branch 'dev' into bugfix
Maffooch Dec 1, 2025
0fa482c
Merge pull request #13801 from DefectDojo/bugfix
rossops Dec 1, 2025
d3d64db
Update versions in application files
Dec 1, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion .github/workflows/build-docker-images-for-testing.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -40,7 +40,7 @@ jobs:
echo $GITHUB_ENV

- name: Checkout
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
with:
persist-credentials: false

Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/fetch-oas.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -22,7 +22,7 @@ jobs:
file-type: [yaml, json]
steps:
- name: Checkout
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
with:
ref: release/${{ env.release_version }}

Expand Down
6 changes: 3 additions & 3 deletions .github/workflows/gh-pages.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -18,13 +18,13 @@ jobs:
- name: Setup Hugo
uses: peaceiris/actions-hugo@75d2e84710de30f6ff7268e08f310b60ef14033f # v3.0.0
with:
hugo-version: '0.152.1' # renovate: datasource=github-releases depName=gohugoio/hugo
hugo-version: '0.152.2' # renovate: datasource=github-releases depName=gohugoio/hugo
extended: true

- name: Setup Node
uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 # v6.0.0
with:
node-version: '24.11.0' # TODO: Renovate helper might not be needed here - needs to be fully tested
node-version: '24.11.1' # TODO: Renovate helper might not be needed here - needs to be fully tested

- name: Cache dependencies
uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4.3.0
Expand All @@ -35,7 +35,7 @@ jobs:
${{ runner.os }}-node-

- name: Checkout
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
with:
submodules: recursive
fetch-depth: 0
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/integration-tests.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -54,7 +54,7 @@ jobs:

steps:
- name: Checkout
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0

# load docker images from build jobs
- name: Load images from artifacts
Expand Down
10 changes: 5 additions & 5 deletions .github/workflows/k8s-tests.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -16,13 +16,13 @@ jobs:
# databases, broker and k8s are independent, so we don't need to test each combination
# lastest k8s version (https://kubernetes.io/releases/) and the oldest officially supported version
# are tested (https://kubernetes.io/releases/)
- k8s: 'v1.34.0' # renovate: datasource=github-releases depName=kubernetes/kubernetes versioning=loose
- k8s: 'v1.34.2' # renovate: datasource=github-releases depName=kubernetes/kubernetes versioning=loose
os: debian
- k8s: 'v1.31.13' # renovate: datasource=custom.endoflife-oldest-maintained depName=kubernetes
- k8s: '1.32.10' # renovate: datasource=custom.endoflife-oldest-maintained depName=kubernetes
os: debian
steps:
- name: Checkout
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0

- name: Setup Minikube
uses: manusa/actions-setup-minikube@b589f2d61bf96695c546929c72b38563e856059d # v2.14.0
Expand Down Expand Up @@ -73,8 +73,8 @@ jobs:
--set images.nginx.image.tag=latest \
--set imagePullPolicy=Never \
--set initializer.keepSeconds="-1" \
--set redis.enabled=true \
--set createRedisSecret=true \
--set valkey.enabled=true \
--set createValkeySecret=true \
--set postgresql.enabled=true \
--set createPostgresqlSecret=true \
--set createSecret=true
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/release-1-create-pr.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -40,7 +40,7 @@ jobs:
run: echo "GITHUB_ORG=${GITHUB_REPOSITORY%%/*}" >> $GITHUB_ENV

- name: Checkout from_branch branch
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
with:
ref: ${{ inputs.from_branch }}

Expand All @@ -58,7 +58,7 @@ jobs:
run: git push origin HEAD:${NEW_BRANCH}

- name: Checkout release branch
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
with:
ref: ${{ env.NEW_BRANCH }}

Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/release-2-tag-docker-push.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -19,7 +19,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
with:
ref: master

Expand Down
8 changes: 4 additions & 4 deletions .github/workflows/release-3-master-into-dev.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -23,7 +23,7 @@ jobs:
run: echo "GITHUB_ORG=${GITHUB_REPOSITORY%%/*}" >> $GITHUB_ENV

- name: Checkout master
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
with:
ref: master

Expand All @@ -40,7 +40,7 @@ jobs:
run: git push origin HEAD:${NEW_BRANCH}

- name: Checkout new branch
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
with:
ref: ${{ env.NEW_BRANCH }}

Expand Down Expand Up @@ -115,7 +115,7 @@ jobs:
run: echo "GITHUB_ORG=${GITHUB_REPOSITORY%%/*}" >> $GITHUB_ENV

- name: Checkout master
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
with:
ref: master

Expand All @@ -132,7 +132,7 @@ jobs:
run: git push origin HEAD:${NEW_BRANCH}

- name: Checkout new branch
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
with:
ref: ${{ env.NEW_BRANCH }}

Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/release-x-manual-docker-containers.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -58,7 +58,7 @@ jobs:
password: ${{ secrets.DOCKERHUB_TOKEN }}

- name: Checkout tag
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
with:
ref: ${{ inputs.release_number }}

Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/release-x-manual-helm-chart.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -43,7 +43,7 @@ jobs:
steps:

- name: Checkout
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
with:
ref: ${{ inputs.release_number }}
fetch-depth: 0
Expand Down Expand Up @@ -77,7 +77,7 @@ jobs:
echo "chart_version=$(ls build | cut -d '-' -f 2,3 | sed 's|\.tgz||')" >> $GITHUB_ENV

- name: Create release ${{ inputs.release_number }}
uses: softprops/action-gh-release@6da8fa9354ddfdc4aeace5fc48d7f679b5214090 # v2.4.1
uses: softprops/action-gh-release@5be0e66d93ac7ed76da52eca8bb058f665c3a5fe # v2.4.2
with:
name: '${{ inputs.release_number }} 🌈'
tag_name: ${{ inputs.release_number }}
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/release-x-nightly.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -39,7 +39,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
with:
ref: ${{ inputs.branch-to-build }}

Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/renovate.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -13,12 +13,12 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
with:
persist-credentials: false

- name: validate
uses: suzuki-shunsuke/github-action-renovate-config-validator@c22827f47f4f4a5364bdba19e1fe36907ef1318e # v1.1.1
with:
strict: "true"
validator_version: 41.168.0 # renovate: datasource=github-releases depName=renovatebot/renovate
validator_version: 42.27.0 # renovate: datasource=github-releases depName=renovatebot/renovate
2 changes: 1 addition & 1 deletion .github/workflows/rest-framework-tests.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -30,7 +30,7 @@ jobs:
echo $GITHUB_ENV

- name: Checkout
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
with:
persist-credentials: false

Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/ruff.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -9,7 +9,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0

- name: Install Ruff Linter
run: pip install -r requirements-lint.txt
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/shellcheck.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0

- name: Run ShellCheck
uses: ludeeus/action-shellcheck@00cae500b08a931fb5698e11e79bfbd38e612a38 # 2.0.0
Expand Down
23 changes: 14 additions & 9 deletions .github/workflows/test-helm-chart.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -14,15 +14,15 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
with:
persist-credentials: false
fetch-depth: 0

- name: Set up Helm
uses: azure/setup-helm@1a275c3b69536ee54be43f2070a358922e12c8d4 # v4.3.1

- uses: actions/setup-python@e797f83bcb11b83ae66e0230d6156d7c80228e7c # v6.0.0
- uses: actions/setup-python@83679a892e2d95755f2dac6acb0bfd1e9ac5d548 # v6.1.0
with:
python-version: 3.14 # Renovate helper is not needed here

Expand All @@ -32,9 +32,9 @@ jobs:
helm dependency update ./helm/defectdojo

- name: Set up chart-testing
uses: helm/chart-testing-action@0d28d3144d3a25ea2cc349d6e59901c4ff469b3b # v2.7.0
uses: helm/chart-testing-action@6ec842c01de15ebb84c8627d2744a0c2f2755c9f # v2.8.0
with:
yamale_version: 6.0.0 # renovate: datasource=pypi depName=yamale versioning=semver
yamale_version: 6.1.0 # renovate: datasource=pypi depName=yamale versioning=semver
yamllint_version: 1.37.1 # renovate: datasource=pypi depName=yamllint versioning=semver

- name: Determine target branch
Expand Down Expand Up @@ -106,15 +106,20 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
with:
repository: ${{ github.event.pull_request.head.repo.full_name }}
ref: ${{ github.event.pull_request.head.ref }}

- name: Update values in HELM chart
if: startsWith(github.head_ref, 'renovate/') || startsWith(github.head_ref, 'dependabot/')
run: |
yq -i '.annotations."artifacthub.io/changes" += "- kind: changed\n description: ${{ github.event.pull_request.title }}\n"' helm/defectdojo/Chart.yaml
title=${{ github.event.pull_request.title }}
chars='{}:[],&*#?|-<>=!%@'
for c in $(echo "$chars" | grep -o .); do
title="${title//"$c"/_}"
done
yq -i '.annotations."artifacthub.io/changes" += "- kind: changed\n description: $title\n"' helm/defectdojo/Chart.yaml
git add helm/defectdojo/Chart.yaml
git commit -m "ci: update Chart annotations from PR #${{ github.event.pull_request.number }}" || echo "No changes to commit"

Expand Down Expand Up @@ -142,7 +147,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0

- name: Generate values schema json
uses: losisin/helm-values-schema-json-action@660c441a4a507436a294fc55227e1df54aca5407 # v2.3.1
Expand All @@ -162,7 +167,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
with:
persist-credentials: false
fetch-depth: 0
Expand All @@ -184,7 +189,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout code
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
- name: Run ah lint
working-directory: ./helm/defectdojo
run: |-
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/update-sample-data.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -16,7 +16,7 @@ jobs:
steps:
# Checkout the repository
- name: Checkout code
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
with:
ref: ${{ github.ref_name || 'dev'}}

Expand All @@ -43,7 +43,7 @@ jobs:
git push --set-upstream origin $(git rev-parse --abbrev-ref HEAD)

- name: Create Pull Request
uses: peter-evans/create-pull-request@271a8d0340265f705b14b6d32b9829c1cb33d45e # v7.0.8
uses: peter-evans/create-pull-request@84ae59a2cdc2258d6fa0732dd66352dddae2a412 # v7.0.9
with:
token: ${{ secrets.GITHUB_TOKEN }}
commit-message: "Update sample data"
Expand Down
6 changes: 3 additions & 3 deletions .github/workflows/validate_docs_build.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -12,13 +12,13 @@ jobs:
- name: Setup Hugo
uses: peaceiris/actions-hugo@75d2e84710de30f6ff7268e08f310b60ef14033f # v3.0.0
with:
hugo-version: '0.152.1' # renovate: datasource=github-releases depName=gohugoio/hugo
hugo-version: '0.152.2' # renovate: datasource=github-releases depName=gohugoio/hugo
extended: true

- name: Setup Node
uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 # v6.0.0
with:
node-version: '24.11.0' # TODO: Renovate helper might not be needed here - needs to be fully tested
node-version: '24.11.1' # TODO: Renovate helper might not be needed here - needs to be fully tested

- name: Cache dependencies
uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4.3.0
Expand All @@ -29,7 +29,7 @@ jobs:
${{ runner.os }}-node-

- name: Checkout
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0
with:
submodules: recursive
fetch-depth: 0
Expand Down
2 changes: 1 addition & 1 deletion Dockerfile.integration-tests-debian
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,7 +1,7 @@

# code: language=Dockerfile

FROM openapitools/openapi-generator-cli:v7.16.0@sha256:e56372add5e038753fb91aa1bbb470724ef58382fdfc35082bf1b3e079ce353c AS openapitools
FROM openapitools/openapi-generator-cli:v7.17.0@sha256:868b97eb4e5080d2cdfd5b3eeaa4d52e4bbb7c56f14e234b08b0b0bc4f38a78f AS openapitools
# currently only supports x64, no arm yet due to chrome and selenium dependencies
FROM python:3.13.7-slim-trixie@sha256:5f55cdf0c5d9dc1a415637a5ccc4a9e18663ad203673173b8cda8f8dcacef689 AS build
WORKDIR /app
Expand Down
2 changes: 1 addition & 1 deletion Dockerfile.nginx-alpine
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -63,7 +63,7 @@ COPY dojo/ ./dojo/
# always collect static for debug toolbar as we can't make it dependant on env variables or build arguments without breaking docker layer caching
RUN env DD_SECRET_KEY='.' DD_DJANGO_DEBUG_TOOLBAR_ENABLED=True python3 manage.py collectstatic --noinput --verbosity=2 && true

FROM nginx:1.29.2-alpine3.22@sha256:61e01287e546aac28a3f56839c136b31f590273f3b41187a36f46f6a03bbfe22
FROM nginx:1.29.3-alpine3.22@sha256:b3c656d55d7ad751196f21b7fd2e8d4da9cb430e32f646adcf92441b72f82b14
ARG uid=1001
ARG appuser=defectdojo
COPY --from=collectstatic /app/static/ /usr/share/nginx/html/static/
Expand Down
4 changes: 2 additions & 2 deletions components/package.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
{
"name": "defectdojo",
"version": "2.52.3",
"version": "2.53.0",
"license" : "BSD-3-Clause",
"private": true,
"dependencies": {
Expand All @@ -12,7 +12,7 @@
"chosen-bootstrap": "https://github.com/dbtek/chosen-bootstrap",
"chosen-js": "^1.8.7",
"clipboard": "^2.0.11",
"datatables.net": "^2.3.4",
"datatables.net": "^2.3.5",
"datatables.net-buttons-bs": "^3.2.5",
"datatables.net-colreorder": "^2.1.2",
"drmonty-datatables-plugins": "^1.0.0",
Expand Down
8 changes: 4 additions & 4 deletions components/yarn.lock
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -219,10 +219,10 @@ datatables.net@2.3.2:
dependencies:
jquery ">=1.7"

datatables.net@^2, datatables.net@^2.3.4:
version "2.3.4"
resolved "https://registry.yarnpkg.com/datatables.net/-/datatables.net-2.3.4.tgz#8cf69f2e6cb8d271be3d5c4f75a479684d20f253"
integrity sha512-fKuRlrBIdpAl2uIFgl9enKecHB41QmFd/2nN9LBbOvItV/JalAxLcyqdZXex7wX4ZXjnJQEnv6xeS9veOpKzSw==
datatables.net@^2, datatables.net@^2.3.5:
version "2.3.5"
resolved "https://registry.yarnpkg.com/datatables.net/-/datatables.net-2.3.5.tgz#a35cc1209edb7525ea68ebc3e7d3af6e3f30a758"
integrity sha512-Qrwc+vuw8GHo42u1usWTuriNAMW0VvLPSW3j8g3GxvatiD8wS/ZGW32VAYLLfmF4Hz0C/fo2KB3xZBfcpqqVTQ==
dependencies:
jquery ">=1.7"

Expand Down
2 changes: 1 addition & 1 deletion docker-compose.override.dev.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -60,4 +60,4 @@ services:
protocol: tcp
mode: host
"webhook.endpoint":
image: mccutchen/go-httpbin:2.18.3@sha256:3992f3763e9ce5a4307eae0a869a78b4df3931dc8feba74ab823dd2444af6a6b
image: mccutchen/go-httpbin:2.19.0@sha256:be41c6c3772393c097e15f9f8ac381de4ce9e9841c545556af98fbe2e707c619
Loading