dependabot[bot]
3f2e47497c
Bump the dependencies group with 4 updates ( #7860 )
...
Bumps the dependencies group with 4 updates: [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer ), [docker/build-push-action](https://github.com/docker/build-push-action ), [actions/upload-artifact](https://github.com/actions/upload-artifact ) and [github/codeql-action](https://github.com/github/codeql-action ).
Updates `sigstore/cosign-installer` from 3.5.0 to 3.6.0
- [Release notes](https://github.com/sigstore/cosign-installer/releases )
- [Commits](59acb6260d...4959ce089chttps://github.com/docker/build-push-action/releases )
- [Commits](5176d81f87...16ebe778dfhttps://github.com/actions/upload-artifact/releases )
- [Commits](89ef406dd8...834a144ee9https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](afb54ba388...eb055d739a
2024-08-13 09:43:07 +10:00
dependabot[bot]
3733e8a417
Bump the dependencies group across 1 directory with 5 updates ( #7811 )
...
Bumps the dependencies group with 5 updates in the / directory:
| Package | From | To |
| --- | --- | --- |
| [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) | `3.5.0` | `3.6.1` |
| [actions/upload-artifact](https://github.com/actions/upload-artifact ) | `4.3.4` | `4.3.5` |
| [oasdiff/oasdiff-action](https://github.com/oasdiff/oasdiff-action ) | `205ce7e2c5ae1511e720cbd307cae79fd7d4a909` | `a2ff6682b27d175162a74c09ace8771bd3d512f8` |
| [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) | `2.3.3` | `2.4.0` |
| [github/codeql-action](https://github.com/github/codeql-action ) | `3.25.13` | `3.25.15` |
Updates `docker/setup-buildx-action` from 3.5.0 to 3.6.1
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](aa33708b10...988b5a0280https://github.com/actions/upload-artifact/releases )
- [Commits](0b2256b8c0...89ef406dd8https://github.com/oasdiff/oasdiff-action/releases )
- [Commits](205ce7e2c5...a2ff6682b2https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](dc50aa9510...62b2cac7edhttps://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](2d790406f5...afb54ba388
2024-08-10 08:13:43 +10:00
Matthias Mair
c8870c4ade
Pin OAS action ( #7767 )
2024-07-31 00:33:39 +10:00
Matthias Mair
77693c18a1
bump node to 20 ( #7698 )
2024-07-22 07:44:42 +10:00
Matthias Mair
105dd7152e
Optimize PUI package delivery for package installs ( #7655 )
...
* Package frontend in deb
* Add artifact download
* remove 0.8.0 check
* remove array casting
* fix format once more
* another try
* add brackets again
* add version
* and bash
* and shell
* more debuging
* various style fixes
* small fixes
* and ls for prosperity
* debug
* maybe git as source?
* fix download cmd?
* debug a bit
* debug a bit more
* remove sha download - is not working with GHA restrictions
* write version number
* check if a new frontend must be dowloaded
* write versions into frontend packages
* Matmair/issue7338 (#205 )
* Package frontend in deb
* Add artifact download
* remove 0.8.0 check
* remove array casting
* fix format once more
* another try
* add brackets again
* add version
* and bash
* and shell
* more debuging
* various style fixes
* small fixes
* and ls for prosperity
* debug
* maybe git as source?
* fix download cmd?
* debug a bit
* debug a bit more
* remove sha download - is not working with GHA restrictions
* write version number
* check if a new frontend must be dowloaded
* write versions into frontend packages
* change ref dir for tests
* add better build logging
* extend task to get ref from package
* fix downloading syntax
* fix name ref
* make more robust
* more logging
* move import
* turn down unzipping noise
* strip content (spaces, newlines)
* add info what happens now
* fix quite flag
* adjust publisher
2024-07-18 15:35:09 +10:00
Matthias Mair
44a5f76213
[CI] Add nicer OpenAPI diffs ( #7002 )
...
* add diff action
* Update api_version.py
* always diff schemas
* move model lookup to subpath
* Add diff to step summary
* fix arg name
* use echo step instead
* split action and fail curl
* fail if download not possible
* capture code
* remove wrong syntax
* decrease download number
* revert qc
* extend version_check
* fix exit cond
* fix link
* add dummy change
* Update api_version.py
* use html for format
2024-07-17 23:45:26 +10:00
dependabot[bot]
0d2424a3d9
Bump the dependencies group with 3 updates ( #7661 )
...
Bumps the dependencies group with 3 updates: [actions/setup-python](https://github.com/actions/setup-python ), [docker/build-push-action](https://github.com/docker/build-push-action ) and [github/codeql-action](https://github.com/github/codeql-action ).
Updates `actions/setup-python` from 5.1.0 to 5.1.1
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](82c7e631bb...39cd14951bhttps://github.com/docker/build-push-action/releases )
- [Commits](1a162644f9...a254f8ca60https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](b611370bb5...4fa2a79536
2024-07-16 09:44:07 +10:00
dependabot[bot]
c05cf86c8e
Bump the dependencies group with 5 updates ( #7590 )
...
Bumps the dependencies group with 5 updates:
| Package | From | To |
| --- | --- | --- |
| [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action ) | `3.0.0` | `3.1.0` |
| [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) | `3.3.0` | `3.4.0` |
| [docker/build-push-action](https://github.com/docker/build-push-action ) | `6.2.0` | `6.3.0` |
| [actions/upload-artifact](https://github.com/actions/upload-artifact ) | `4.3.3` | `4.3.4` |
| [actions/download-artifact](https://github.com/actions/download-artifact ) | `4.1.7` | `4.1.8` |
Updates `docker/setup-qemu-action` from 3.0.0 to 3.1.0
- [Release notes](https://github.com/docker/setup-qemu-action/releases )
- [Commits](68827325e0...5927c834f5https://github.com/docker/setup-buildx-action/releases )
- [Commits](d70bba72b1...4fd812986ehttps://github.com/docker/build-push-action/releases )
- [Commits](15560696de...1a162644f9https://github.com/actions/upload-artifact/releases )
- [Commits](65462800fd...0b2256b8c0https://github.com/actions/download-artifact/releases )
- [Commits](65a9edc588...fa0a91b85d
2024-07-09 13:35:17 +10:00
Matthias Mair
0a9e63c8f1
Fix schema version commit text ( #7576 )
...
* add "pretty" step names
* fix commit name formatting
2024-07-07 19:54:30 +10:00
Matthias Mair
18c7162e53
disable 3.12 testing for now ( #7577 )
2024-07-07 19:53:45 +10:00
Matthias Mair
c9e9ef1754
Bump pre commit versions ( #7255 )
...
* bump pre-commit tools
* move uv config to pyproject
* style fix
* bump pre-commit deps again
* add config for code spell
* spelling fixes
* bump regex
* bump pre-commit
* bump versions again
* roll back regex version
* reverse uv bump
* compile for 3.12
* use 3.12 for ci
* remove unused env vars
* only cache main version
* set caching dep path
* remove caching distinction
* pip installl regex
* switch back to 3.9 default
* remove install test
* reset versions
* remove tomli
* Update playwright.config.ts
---------
Co-authored-by: Oliver <oliver.henry.walters@gmail.com>
2024-06-25 20:52:34 +10:00
dependabot[bot]
2c50620acc
Bump the dependencies group with 4 updates ( #7462 )
...
Bumps the dependencies group with 4 updates: [actions/checkout](https://github.com/actions/checkout ), [docker/build-push-action](https://github.com/docker/build-push-action ), [codecov/codecov-action](https://github.com/codecov/codecov-action ) and [github/codeql-action](https://github.com/github/codeql-action ).
Updates `actions/checkout` from 4.1.6 to 4.1.7
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](a5ac7e51b4...692973e3d9https://github.com/docker/build-push-action/releases )
- [Commits](ca052bb54a...c382f710d3https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](125fc84a9a...e28ff129e5https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](2e230e8fe0...23acc5c183
2024-06-18 23:42:05 +10:00
Matthias Mair
bdebf878c3
Fixes for installer ( #7344 )
...
* - move reqs file to contrib
- detect previously used python version
- safe extra requirements to INSTALLER_EXTRA
* add missing fi
* move site setting
2024-05-27 17:49:05 +10:00
dependabot[bot]
1c6e81eae5
--- ( #7276 )
...
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: dependencies
- dependency-name: codecov/codecov-action
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: dependencies
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: dependencies
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-05-21 15:10:06 +10:00
dependabot[bot]
770dbb9c35
Bump the dependencies group with 2 updates ( #7169 )
...
Bumps the dependencies group with 2 updates: [actions/checkout](https://github.com/actions/checkout ) and [codecov/codecov-action](https://github.com/codecov/codecov-action ).
Updates `actions/checkout` from 4.1.4 to 4.1.5
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](0ad4b8fada...44c2b7a8a4https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](84508663e9...5ecb98a3c6
2024-05-09 07:04:38 +10:00
dependabot[bot]
6837b0e753
Bump the dependencies group across 1 directory with 5 updates ( #7134 )
...
Bumps the dependencies group with 5 updates in the / directory:
| Package | From | To |
| --- | --- | --- |
| [actions/checkout](https://github.com/actions/checkout ) | `3.1.0` | `4.1.4` |
| [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) | `3.2.0` | `3.3.0` |
| [actions/upload-artifact](https://github.com/actions/upload-artifact ) | `4.3.1` | `4.3.3` |
| [actions/download-artifact](https://github.com/actions/download-artifact ) | `4.1.4` | `4.1.7` |
| [github/codeql-action](https://github.com/github/codeql-action ) | `3.25.0` | `3.25.3` |
Updates `actions/checkout` from 3.1.0 to 4.1.4
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v3.1.0...0ad4b8fadaa221de15dcec353f45205ec38ea70b )
Updates `docker/setup-buildx-action` from 3.2.0 to 3.3.0
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](2b51285047...d70bba72b1https://github.com/actions/upload-artifact/releases )
- [Commits](5d5d22a312...65462800fdhttps://github.com/actions/download-artifact/releases )
- [Commits](c850b930e6...65a9edc588https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](df5a14dc28...d39d31e687
2024-04-30 07:47:18 +10:00
Matthias Mair
a205fd5967
Fixes to make compatible with Python 3.12 ( #7112 )
...
* Remove use of deprecated imp.load_source
The entire `imp` module has been removed from Python 3.12. This patch applies the recommended replacement using `importlib`.
* Fix usage of from importlib.metadata.entry_points to work with newer importlib & Python 3.12
* Update registry.py
Fix order of imports
* Use importlib.util.module_from_spec() instead of deprecated load_module()
* auto-fixed import style (isort)
* enable py 12
* run coverage for lower and upper bound
* fix style error
* make import conditional
* fix?
* fix env
* style fix
* only use new loader on 3.12
* fix order
* fix module loading
* reimplement assertDictContainsSubset
* remove old testing alias
---------
Co-authored-by: Thea Flowers <thea@winterbloom.com>
Co-authored-by: Oliver <oliver.henry.walters@gmail.com>
2024-04-29 20:59:24 +10:00
Matthias Mair
83191d3fbf
Improve reproduciblity of image ( #7120 )
...
* hard-pin doc requirements
* update docs and commands
* hard pin container requirements
* check hashes in image build
* remove seperate uv install (is in base_requirements)
* containers already ships 3.11 - adjust packaging
* move build deps to general ci requirements
* install yarn using native tools
Closes https://github.com/inventree/InvenTree/security/code-scanning/95
Closes https://github.com/inventree/InvenTree/security/code-scanning/96
* merge install steps
* adapt install command args to be similar
* adapt docs to suggest safer install arg
* fix install path
* update dependabot settings
2024-04-29 11:04:45 +10:00
Matthias Mair
938c724395
Pin hashes in requirements ( #7081 )
...
* use global pin for requests
* unify on yaml for workflo files
* format workflow files
* pin action versions
* fix pinned version
* use system venv
* switch args
* remove uv for now and add setting for pyyaml
* use requirements file
* also switch on docker flow
* generate hashes
* added hashes to reqs
* add hashes for CI too
* add hash checking
* require hashes everywhere possible
* require hashes where possible in docker
2024-04-23 17:15:52 +10:00
Oliver
8f2ef39282
Remove coveralls integration ( #7099 )
2024-04-23 08:42:31 +10:00
Matthias Mair
ca03562d25
[CI] Small nitpick changes ( #7016 )
...
* use global pin for requests
* unify on yaml for workflo files
* format workflow files
* pin action versions
* fix pinned version
* use system venv
* switch args
* remove uv for now and add setting for pyyaml
* fix qc args
* bix doc paths
2024-04-21 22:20:13 +10:00
Oliver
0ba7f7ece5
[PUI] Session authentication ( #6970 )
...
* Adjust backend cookie settings
* Allow CORS requests to /accounts/
* Refactor frontend code
- Remove API token functions
- Simplify cookie approach
- Add isLoggedIn method
* Adjust REST_AUTH settings
* Cleanup auth functions in auth.tsx
* Adjust CSRF_COOKIE_SAMESITE value
* Fix login request
* Prevent session auth on login view
- Existing (invalid) session token causes 403
* Refactor ApiImage
- Point to the right host
- Simplify code
- Now we use session cookies, so it *Just Works*
* Fix download for attachment table
- Now works with remote host
* Cleanup settings.py
* Refactor login / logout notifications
* Update API version
* Update src/frontend/src/components/items/AttachmentLink.tsx
Co-authored-by: Lukas <76838159+wolflu05@users.noreply.github.com>
* fix assert url
* Remove comment
* Add explicit page to logout user
* Change tests to first logout
* Prune dead code
* Adjust tests
* Cleanup
* Direct to login view
* Trying something
* Update CUI test
* Fix basic tests
* Refactoring
* Fix basic checks
* Fix for PUI command tests
* More test updates
* Add speciifc test for quick login
* More cleanup of playwright tests
* Add some missing icons
* Fix typo
* Ignore coverage report for playwright test
* Remove coveralls upload task
---------
Co-authored-by: Lukas <76838159+wolflu05@users.noreply.github.com>
Co-authored-by: Matthias Mair <code@mjmair.com>
2024-04-17 21:35:20 +10:00
dependabot[bot]
5315886fb4
Bump stefanzweifel/git-auto-commit-action from 5.0.0 to 5.0.1 ( #7037 )
...
Bumps [stefanzweifel/git-auto-commit-action](https://github.com/stefanzweifel/git-auto-commit-action ) from 5.0.0 to 5.0.1.
- [Release notes](https://github.com/stefanzweifel/git-auto-commit-action/releases )
- [Changelog](https://github.com/stefanzweifel/git-auto-commit-action/blob/master/CHANGELOG.md )
- [Commits](8756aa072e...8621497c8c
2024-04-16 09:56:05 +10:00
Matthias Mair
f15a3009bb
[PUI] Add more tests ( #7010 )
...
* add coverage to PUI
* fix testing command
* always do all steps
* fix test assumptions
* add test for serving and logging into pui from django / cui tech stack
* fix up coverage
* fix intentation
* remove paralell flags
* remove coverage finish step
* remove flag
* change names
* add full clickdown test
* more tests
* more tests
* sprinkle in some timeouts
* try using admin
* disable page 1 tests for now
* remove additional tests for now
* only build sourcemaps if coverage is enabled
* fix sourcemap assumption
* add more tests
* fix test
* Update package.json
* move tests to seperate file
* rename test files
* move defaults to seperate file
* centralise user creds
* lower migration level
* re-add page 1
* rename and split tests
* split out problematic test
* Add thumbnail building step
* remove unneded steps
* fix filename
* add more logging
* add sourounding table
* add missing tabs
* wait instead of click
* fix test
* split tests out more
* disable test for stock
* tes part sub-pages
* split tests more
* add company tests
* more sales testing
* split parts testing
* Add test for settings + admin center
2024-04-14 20:24:22 +10:00
dependabot[bot]
6fe0f746b6
Bump codecov/codecov-action from 4.0.1 to 4.3.0 ( #6994 )
...
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action ) from 4.0.1 to 4.3.0.
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/codecov/codecov-action/compare/v4.0.1...v4.3.0 )
---
updated-dependencies:
- dependency-name: codecov/codecov-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-11 20:00:03 +10:00
Matthias Mair
6b858f777b
[CI] Increase migration test coverage ( #6995 )
...
* also trigger CI on changes to test files
* dummy change to test file
* fix match pattern
2024-04-11 10:11:12 +10:00
Matthias Mair
0d59f6e8a9
[CI] Re-add playwright reporting ( #6992 )
...
* re-add playwright reporting
now a bit more ressource optimised
* only upload if the tests faild
2024-04-11 01:00:30 +10:00
Matthias Mair
80475c57b2
[CI] Optimize runs ( #6991 )
...
* only run backend if required
* alwass upload coverage
2024-04-10 18:45:57 +10:00
Matthias Mair
8d41234ef7
Use xml for coverage info ( #6947 )
...
* append more apps
* set source
* use labels to force full CI suit
* always check for label
* use newer syntax
* remove unneeded carryforward flag
* improve action names
* remove unused upload steps
* enable discovery of locate test
* remove wrong module
* delete all ( :-) )lines for upload
* remove init for now
* add carryfoward back in again
* disable flaky test
* always run finsh step
* deactivate machine test for now
* specify refs explicitly
* add docker exception
* use xml for coverage info
* dummy fix
* remove dummy fix
* dummy change
* always export
* change path to ensure basepath is submitted
* add more paths
* reverst isort change
* remove unused html export
* remove paralell
* add plain InvenTree too
* Update pyproject.toml
* reset paths
* Update qc_checks.yaml
* Update qc_checks.yaml
* fix coverage runner setting
* fix coverage tool path
* use move, not copy
* ignore tmp
* reset isort settings
* use relative files for reporting
* Revert "use relative files for reporting"
This reverts commit 1f662bfb97
2024-04-09 10:33:27 +10:00
Matthias Mair
4adce85ef9
Fix test coverage ( #6945 )
...
* append more apps
* set source
* use labels to force full CI suit
* always check for label
* use newer syntax
* remove unneeded carryforward flag
* improve action names
* remove unused upload steps
* enable discovery of locate test
* remove wrong module
* delete all ( :-) )lines for upload
* remove init for now
* add carryfoward back in again
* disable flaky test
* always run finsh step
* deactivate machine test for now
* specify refs explicitly
* add docker exception
* remove paralell
* Update qc_checks.yaml
* Update qc_checks.yaml
* fix coverage tool path
* use move, not copy
* ignore tmp
* only run after at least 1 succeeds
* add TODO
* remove coverage subdir run
* also force migrations
* add coverage to migrations
* fix conditional for migration force check
* always upload coverage
* fix tests
* wait for migrations
* re-add function arg?
* adjust coverage targets
* add no-cov for fixes of flaky tests
* add migration checks to codecov
2024-04-08 21:55:03 +10:00
Matthias Mair
cc045bcc70
Add codecov ( #6967 )
...
* add codecov upload
* add to readme
* add flags
* dummy change
* dummy change
* switch to inventree org
* add codecov yaml
* lower threshold (for now)
see https://github.com/inventree/InvenTree/pull/6945 for a possibility to get it up again
2024-04-08 07:33:26 +10:00
Matthias Mair
3b87c84ae7
[BUG] Include .vite subdir in PUI releases ( #6973 )
...
* use yarn to build
* use different path annotation
* fix path
* include vite explicitly
2024-04-08 06:50:10 +10:00
Matthias Mair
3457eebf5c
Use pinned eslint version ( #6968 )
...
* pin eslint version
* use subdir instead
* move eslint
2024-04-06 14:27:13 +11:00
Matthias Mair
fddcb629b6
[PUI] Add licenses texts to PUI ( #6855 )
...
* compile a license texts bundle
* add backend license extraction on install
* change path for licenses
* add to gitignore
* Add api to expose license paths
* add texts
* add frontend rendering of licensing files
* Handle errors when fetching license information
* Format backend packages.txt in json
* Improved API rendering:
- Handle file errors
- Render as JSON object
* Improve frontend modal rendering
- Separate frontend / backend into tabs
- Split packages into accordion
* Generate JSON file for fronten deps
* Fix rendering for frontend deps
* Update src/frontend/src/components/modals/LicenseModal.tsx
Co-authored-by: Lukas <76838159+wolflu05@users.noreply.github.com>
* Update src/frontend/src/components/modals/LicenseModal.tsx
Co-authored-by: Lukas <76838159+wolflu05@users.noreply.github.com>
* make reading of licenses objects dynamic
* remove unsued import
* style fixes
* style fixes
* default to first value
* use new syntax to call docker compose
* merge fix
* fix path
* Roll back #6942
* Update qc_checks.yaml
Run migration checks when requirements file changes
---------
Co-authored-by: Oliver Walters <oliver.henry.walters@gmail.com>
Co-authored-by: Lukas <76838159+wolflu05@users.noreply.github.com>
2024-04-04 10:31:20 +11:00
Matthias Mair
f58eacf64e
[PUI] Add coverage testing ( #6881 )
...
* add coverage to PUI
* fix testing command
* always do all steps
* fix test assumptions
* add test for serving and logging into pui from django / cui tech stack
* fix up coverage
* fix intentation
* remove paralell flags
* remove coverage finish step
* remove flag
* change names
* add full clickdown test
* more tests
* more tests
* sprinkle in some timeouts
* try using admin
* disable page 1 tests for now
* remove additional tests for now
* only build sourcemaps if coverage is enabled
* fix sourcemap assumption
* Update .github/workflows/qc_checks.yaml
Co-authored-by: Lukas <76838159+wolflu05@users.noreply.github.com>
* fix package.json
* add finish step
---------
Co-authored-by: Lukas <76838159+wolflu05@users.noreply.github.com>
2024-04-03 19:26:38 +11:00
Oliver
6be2ede5e8
Fix unit tests ( #6932 )
...
* Fix unit test
* Fix script pathing
* Fix pathing in version_check.py
* Fix mkdocs.yml
2024-04-03 06:50:13 +00:00
Matthias Mair
0bace3f3af
Code structure refactor ( #5582 )
...
* moved docker files to /contrib/container
* changed code owners to make more precise
* updated CI to use new subdirs
* added manual trigger for testing
* moved ci files
* moved assets into subdir
* moved deploy template file to contrib
* moved django files to src/backend
* updated paths in scripts etc
* updated reqs path
* fixed version file path
* fixed flake8 path
* fixed path to node ressources
* fixed task paths
* added dep path for node
* removed unused yarn lockfile
* removed unused ci script
* updated internal backend paths for tasks
* updated translation stats path
* fixed source path for coverage
* fixed main commit repo path
* fit in changes from testing
* gather packager improvements (#149 )
* Matmair/issue5578 (#143 )
* moved docker files to /contrib/container
* changed code owners to make more precise
* updated CI to use new subdirs
* added manual trigger for testing
* moved ci files
* moved assets into subdir
* moved deploy template file to contrib
* moved django files to src/backend
* updated paths in scripts etc
* updated reqs path
* fixed version file path
* fixed flake8 path
* fixed path to node ressources
* fixed task paths
* added dep path for node
* removed unused yarn lockfile
* removed unused ci script
* updated internal backend paths for tasks
* updated translation stats path
* fixed source path for coverage
* fixed main commit repo path
* fix docker path
* use project dir
* move project dir command
* fixed docker paths
* another fix?
* seperate tasks out
* remove tasks
* some debugging
* ci: add .deepsource.toml
* Update .deepsource.toml
* also ignore migrations
* more debugging
* fix path issues
* remove debug script
* fix style
* change locale path
* Fixed paths for requirements
* Added dummy requirements to fool packager
* fixed exec path
* remove deepsource
---------
Co-authored-by: deepsource-io[bot] <42547082+deepsource-io[bot]@users.noreply.github.com>
* Added docs for file structure
* Fixed style errors
* updated deepsource paths
* fix deepsource paths
* fixed reqs
* merge fixes
* move newly added dirs too
* fix reqs files
* another dep fix
* merge upstream/master
* revert removal of tags
* merge upstream
* enabled detection of old config files
* adapt coverage src
* also detect and support old location for plugins.txt
* style fix
* fix ~/init.sh location
* fix requirements path
* fix config to current master
* move new folders
* fix import order
* fix paths for qc_check
* fix docs build
* fix fix path
* set docker project dir
* just use a cd
* set image path?
* set file correct
* fix copy path
* fix tasks dir
* fix init path
* fix copy path
* set prject dir
* fix paths
* remove old prod files
* fix dev env path
* set docker file
* Fix devcontainer docker compose file
* fix login attempt values
* fix init.sh path
* Fix pathing for Docker
* Docker build fix
- Set INVENTREE_BACKEND_DIR separately
* Update init.sh
* Fix path
* Update requirements.txt
* merge
* fix rq merge
* fix docker compose usage
---------
Co-authored-by: deepsource-io[bot] <42547082+deepsource-io[bot]@users.noreply.github.com>
Co-authored-by: Oliver <oliver.henry.walters@gmail.com>
2024-04-03 12:16:59 +11:00
Matthias Mair
4db61df8cd
Security improvements ( #6890 )
...
* Set write permissions at job level
* publish scorecard results
* Update scorecard.yml
* Update scorecard.yml
* Create .sonarcloud.properties
* Delete .deepsource.toml
* replace badge
* pin requests, pyyaml, jc
* pin yarn version
* pin uv
* reduce settings
* set test path
2024-04-02 17:35:01 +11:00
dependabot[bot]
7ed51dfff5
Bump actions/setup-python from 5.0.0 to 5.1.0 ( #6864 )
...
Bumps [actions/setup-python](https://github.com/actions/setup-python ) from 5.0.0 to 5.1.0.
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](0a5c615913...82c7e631bb
2024-03-27 07:11:37 +11:00
dependabot[bot]
8e5ebf49a9
Bump actions/upload-artifact from 3.1.0 to 4.3.1 ( #6851 )
...
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact ) from 3.1.0 to 4.3.1.
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](https://github.com/actions/upload-artifact/compare/v3.1.0...5d5d22a31266ced268874388b861e4b58bb5c2f3 )
---
updated-dependencies:
- dependency-name: actions/upload-artifact
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-03-26 07:52:51 +11:00
Matthias Mair
4cefbe5171
bump upload to v4 to ensure schema-push still works ( #6837 )
2024-03-25 11:40:04 +11:00
Matthias Mair
7c6eefbcdf
CI-Actions: Security fixes ( #6835 )
...
* add security commitment
* fix badge path
* set token permissions
see https://github.com/inventree/InvenTree/security/code-scanning/48
* add more chapters
* break up flow text
* spellchecking
* clean diff
* bump setup-python to node 20 version
* fix docker version too
2024-03-25 09:11:16 +11:00
dependabot[bot]
8777ca2bd1
Bump actions/download-artifact from 3.0.2 to 4.1.4 ( #6801 )
...
Bumps [actions/download-artifact](https://github.com/actions/download-artifact ) from 3.0.2 to 4.1.4.
- [Release notes](https://github.com/actions/download-artifact/releases )
- [Commits](9bc31d5ccc...c850b930e6
2024-03-23 18:11:25 +11:00
Matthias Mair
32d161852a
Bump frontend dependencies ( #6579 )
...
* set yarn version
* bump yarn to 4.1
* update dependency file
* upgrade all deps as far as possible
* cleanup diff
* bump node
* ignore lock in pre-commit
* fix lockfile
* bump yarn version
* switch back to yarn 1 for now
2024-03-21 22:23:22 +00:00
Matthias Mair
15388d3dc3
Run publish CI actions only on main repo ( #6592 )
...
* only run if in an inventree org repo
* only sign into docker hub if username set
* use repo name for ghcr name
* renmae to not cause confusion
* rename vars
* use seperate step
* disable a bunch of stuff for testing
* use echo instead
* Revert "disable a bunch of stuff for testing"
This reverts commit 0ab5ff6d6d
2024-03-22 09:08:24 +11:00
dependabot[bot]
8e775c8502
Bump dorny/paths-filter from 2.11.1 to 3.0.2 ( #6775 )
...
Bumps [dorny/paths-filter](https://github.com/dorny/paths-filter ) from 2.11.1 to 3.0.2.
- [Release notes](https://github.com/dorny/paths-filter/releases )
- [Changelog](https://github.com/dorny/paths-filter/blob/master/CHANGELOG.md )
- [Commits](4512585405...de90cc6fb3
2024-03-21 10:50:28 +11:00
dependabot[bot]
c0fdd3f3d5
Bump pre-commit/action from 3.0.0 to 3.0.1 ( #6773 )
...
Bumps [pre-commit/action](https://github.com/pre-commit/action ) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/pre-commit/action/releases )
- [Commits](646c83fcd0...2c7b3805fd
2024-03-21 10:50:07 +11:00
Matthias Mair
b46b200101
Add OSSF Scorecard ( #6769 )
...
* Create scorecard.yml
* Add badge
* disable publishing
* Add security improvements (#181 )
* Add OSSF Scorecard (#179 )
* Create scorecard.yml
* Add badge
* disable publishing
* [StepSecurity] Apply security best practices (#180 )
* [StepSecurity] Apply security best practices
Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
* Update .pre-commit-config.yaml
* Update dependabot.yml
* Delete .github/workflows/dependency-review.yml
---------
Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
Co-authored-by: Matthias Mair <code@mjmair.com>
---------
Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
Co-authored-by: StepSecurity Bot <bot@stepsecurity.io>
* Update to upstream project
* disable shellcheck for now
---------
Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
Co-authored-by: StepSecurity Bot <bot@stepsecurity.io>
2024-03-21 10:11:49 +11:00
Lukas
838f6818c5
Fix PUI build workflow ( #6754 )
...
* Fix PUI build workflow
* Fix PUI build release workflow
2024-03-20 08:58:50 +11:00
Oliver
82654eabdc
Site access tweaks ( #6738 )
...
* Adjust docker filter
- Run if settings.py changes
* Revert API version
* Adjust logic in settings.py
- Only exit if in main server thread
* Update qc_checks.yaml
* Add wildcard for CSRF_TRUSTED_ORIGINS in DEBUG mode
* Update wildcard
* Simplify settings.py logic
2024-03-18 15:27:56 +11:00
