Skip to content

Release: Merge release into master from: release/2.54.1#14076

Merged
rossops merged 22 commits intomasterfrom
release/2.54.1
Jan 12, 2026
Merged

Release: Merge release into master from: release/2.54.1#14076
rossops merged 22 commits intomasterfrom
release/2.54.1

Conversation

@github-actions
Copy link
Copy Markdown
Contributor

@github-actions github-actions Bot commented Jan 12, 2026

Release triggered by rossops

DefectDojo release bot and others added 22 commits January 5, 2026 19:52
Update versions in application files
29bc9a8
@rossops
Merge pull request #14035 from DefectDojo/master-into-bugfix/2.54.0-2…
69d5379 
….55.0-dev

Release: Merge back 2.54.0 into bugfix from: master-into-bugfix/2.54.0-2.55.0-dev
@valentijnscholten
announcements: catch exceptions
d9bf1f8
@valentijnscholten
Update migration notes for django-pghistory (#14043)
35c2f63 
Clarify the migration process for django-pghistory tables.
@paulOsinski
fix front matter in PingCastle docs (#14036)
b7a7d23
@manuel-sommer
💄 Add output description reference to google cloud artifactory scan (#…
bc95464 
…14038)
@Maffooch
Update .gitignore
1c7d743
@dependabot
chore(deps): bump urllib3 from 2.6.2 to 2.6.3 (#14059)
ef8af4f 
Bumps [urllib3](https://github.com/urllib3/urllib3) from 2.6.2 to 2.6.3.
- [Release notes](https://github.com/urllib3/urllib3/releases)
- [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst)
- [Commits](urllib3/urllib3@2.6.2...2.6.3)

---
updated-dependencies:
- dependency-name: urllib3
  dependency-version: 2.6.3
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@manuel-sommer
🐛 Fix multiple google cloud artifact scan bugs (#14052)
533f30d 
* 🐛 Fix multiple google cloud artifact scan bugs

* udpate
@manuel-sommer
💄 Refactor multiple scan results (#14046)
046211a
@Jino-T
reordered-jira-alert-description (#14058)
fa8d669
@paulOsinski
[docs] pro release notes 2.54.0 (#14047)
c90f2ab 
* update changelog headings

* update changelog

---------

Co-authored-by: Paul Osinski <paul.m.osinski@gmail.com>
@manuel-sommer
🎉 Advance Google Cloud Artifact Scan to parse vulnid
ab8d3d1
@manuel-sommer
🎉 Implement Cloudflare insights parser
ba6ab38
@manuel-sommer
.
43715ab
@manuel-sommer @valentijnscholten
Update dojo/tools/cloudflare_insights/parser.py
bc3d13b 
Co-authored-by: valentijnscholten <valentijnscholten@gmail.com>
@anthonwellsjo @valentijnscholten
fix: update redis/valkey comment (#13858)
53b341e 
* fix: update redis/valkey comment

* feat(ci): additional comment updates

---------

Co-authored-by: valentijnscholten <valentijnscholten@gmail.com>
@rossops
Merge pull request #14045 from valentijnscholten/announcements-catch-…
e1161ed 
…errors

announcements: catch exceptions
@rossops
Merge pull request #14064 from manuel-sommer/implement_cloudflareInsi…
fe90460 
…ghts

🎉 Implement Cloudflare insights parser
@rossops
Merge pull request #14063 from manuel-sommer/google_artifactory_vulnid
bd29cf2 
🎉 Advance Google Cloud Artifact Scan to parse vulnid
@Maffooch
Product Grade: Configuration Removal (#14075)
1e79866 
* Remove product grade configuration and related management command

* Remove product_grade field from system_settings model

* Update expected query counts in performance tests for importer
Update versions in application files
f3fc3c5
@rossops rossops closed this Jan 12, 2026
@rossops rossops reopened this Jan 12, 2026
@github-actions github-actions Bot added New Migration Adding a new migration file. Take care when merging. docs unittests parser labels Jan 12, 2026
@github-actions github-actions Bot added the helm label Jan 12, 2026
@dryrunsecurity
Copy link
Copy Markdown

dryrunsecurity Bot commented Jan 12, 2026

DryRun Security

🔴 Risk threshold exceeded.

This pull request includes a sensitive edit to dojo/jira_link/helper.py, and the scanner flagged it as a configured codepath change (check .dryrunsecurity.yaml for sensitive file paths and allowed authors). The finding is marked failing at the configured risk threshold but is non-blocking.

🔴 Configured Codepaths Edit in dojo/jira_link/helper.py
Vulnerability Configured Codepaths Edit
Description Sensitive edits detected for this file. Sensitive file paths and allowed authors can be configured in .dryrunsecurity.yaml.

We've notified @mtesauro.

All finding details can be found in the DryRun Security Dashboard.

@rossops rossops merged commit 40b5eee into master Jan 12, 2026
89 checks passed
Maffooch pushed a commit to valentijnscholten/django-DefectDojo that referenced this pull request Feb 16, 2026
@rossops
Merge pull request DefectDojo#14076 from DefectDojo/release/2.54.1
9c25f54 
Release: Merge release into master from: release/2.54.1
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Maffooch Maffooch Awaiting requested review from Maffooch Maffooch is a code owner

@mtesauro mtesauro Awaiting requested review from mtesauro mtesauro is a code owner

Assignees

No one assigned

Labels

docs helm New Migration Adding a new migration file. Take care when merging. parser unittests

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

7 participants

@rossops @valentijnscholten @paulOsinski @manuel-sommer @Maffooch @Jino-T @anthonwellsjo