2
0
mirror of https://github.com/inventree/InvenTree.git synced 2026-07-04 14:10:52 +00:00
Commit Graph

17685 Commits

Author SHA1 Message Date
Oliver 8da7b21370 Bump software version to 1.3.6 (#12153) 2026-06-11 12:52:48 +10:00
Oliver d8cac9bb61 Make plugin registry hash independent of plugin discovery order (#12151) (#12152)
* Make plugin registry hash independent of plugin discovery order

calculate_plugin_hash() iterates self.plugins.items() in insertion
order, which is the plugin discovery order of the local process. Two
processes can hold the same registry state (same plugins, versions,
active flags) in a different order and compute different hashes,
ping-ponging the _PLUGIN_REGISTRY_HASH setting and triggering endless
registry reloads in check_reload().

Sort by slug before hashing so the hash represents the registry state
rather than the iteration order of any particular process. Add a
regression test that reverses the plugin dict and asserts the hash is
unchanged.

* Address review comments: explicit sort key, guard against vacuous test

---------

Co-authored-by: Christopher Johnson <keitonasawa@gmail.com>
Co-authored-by: Nasawa <christopher@anigeek.com>
1.3.5
2026-06-11 11:15:50 +10:00
github-actions[bot] de48f982df bump container deps (#12136) (#12141)
* bump container deps

* specific n version

* switch to nvm as n is not officially supported

* fix bash script

* fix corepack

* move yarn config inline

* revert nvm usage

(cherry picked from commit 9ee189a16b)

Co-authored-by: Matthias Mair <code@mjmair.com>
2026-06-10 09:46:31 +10:00
github-actions[bot] 391d1d091b Remove reference to lead_time field (#12133) (#12134)
Ref: https://github.com/inventree/InvenTree/discussions/8371#discussioncomment-17225032
(cherry picked from commit ca6f73e919)

Co-authored-by: Oliver <oliver.henry.walters@gmail.com>
2026-06-09 19:10:57 +10:00
github-actions[bot] b6fc2991c3 [1.3.x] chore(deps): bump python in /contrib/container (#12007) (#12110)
* chore(deps): bump python in /contrib/container (#12007)

Bumps python from 3.14-slim-trixie to 3.14.5-slim-trixie.

---
updated-dependencies:
- dependency-name: python
  dependency-version: 3.14.5-slim-trixie
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
(cherry picked from commit 06680758c3)

* Update base image date in Dockerfile

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Matthias Mair <code@mjmair.com>
2026-06-09 01:20:41 +02:00
github-actions[bot] 37b00adf93 UX: Disable standard allocation for trackable parts (#11811) (#11967) (#12113)
* UX: Disable standard allocation for trackable parts and add tooltip (#11811)

* Test: Update Playwright tests for disabled trackable allocation

* Fix: Align trackable allocation logic and tests based on review

* Test: Fix incorrect assumption of trackable Red Widget in pui_build.spec.ts

---------


(cherry picked from commit c2c8e72f37)

Co-authored-by: Aditya Kumar Mishra <154746713+adityakrmishra@users.noreply.github.com>
Co-authored-by: Matthias Mair <code@mjmair.com>
2026-06-08 07:53:58 +10:00
Matthias Mair f70e238bf3 Bump InvenTree software version to 1.3.5 (#12109) 2026-06-07 11:52:55 +02:00
github-actions[bot] 0000ff0873 fix(tasks): bypass Invoke PTY for interactive superuser/flush commands (#12078) (#12106)
* fix(tasks): bypass Invoke PTY for interactive superuser/flush commands

Docker TTY sessions could drop the first keypress and stall at the username prompt when using invoke superuser (and interactive flush).

Run these interactive management commands via direct subprocess stdio instead of Invoke PTY mediation.

Refs #11751.

* chore: remove changelog entry per review

(cherry picked from commit 245ead26bc)

Co-authored-by: getpwnam <cp@evilbit.co.uk>
1.3.4
2026-06-07 10:07:02 +10:00
Matthias Mair 068fffed81 bump django (#12097) (#12102)
(cherry picked from commit bd3098028b)

# Conflicts:
#	src/backend/requirements-dev-3.14.txt
#	src/backend/requirements-dev.txt
2026-06-06 11:01:52 +10:00
github-actions[bot] 52b2b3a62f Fix for empty boolean fields (#12100) (#12101)
(cherry picked from commit b9c063fe31)

Co-authored-by: Oliver <oliver.henry.walters@gmail.com>
2026-06-06 09:51:36 +10:00
github-actions[bot] 00d99f65fa [Bug] Fix for build forms (#12081) (#12083)
* Bug fix for build forms

- Memoize outputs to prevent re-rendering reset issues

* Add playwright test

(cherry picked from commit 3dfd03fa89)

Co-authored-by: Oliver <oliver.henry.walters@gmail.com>
2026-06-04 22:25:12 +10:00
github-actions[bot] bcd70c7b0d fix (backend): only instrument tracing once (#12050) (#12053)
* ensure tracing is only set up once

* check if instrument was already called

(cherry picked from commit 914cd72ef1)

Co-authored-by: Matthias Mair <code@mjmair.com>
2026-05-31 07:59:51 +10:00
Matthias Mair 59f5cad1af chore(deps): bump dulwich from 1.2.1 to 1.2.5 in /src/backend (#12028) (#12046)
* chore(deps): bump dulwich from 1.2.1 to 1.2.5 in /src/backend

Bumps [dulwich](https://github.com/dulwich/dulwich) from 1.2.1 to 1.2.5.
- [Release notes](https://github.com/dulwich/dulwich/releases)
- [Changelog](https://github.com/jelmer/dulwich/blob/main/NEWS)
- [Commits](https://github.com/dulwich/dulwich/compare/dulwich-1.2.1...dulwich-1.2.5)

---
updated-dependencies:
- dependency-name: dulwich
  dependency-version: 1.2.5
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

* fix style

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Matthias Mair <code@mjmair.com>
(cherry picked from commit 3a34b54ac2)

# Conflicts:
#	src/backend/requirements-3.14.txt
#	src/backend/requirements.txt

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-05-30 23:01:42 +10:00
Matthias Mair 8a18e9ee69 chore(backend): also release packages to stable in the new packager.io repo (#12023) (#12025)
* new packager setup: also release to stable

* fix missing param

(cherry picked from commit ca745bec30)
2026-05-28 23:31:34 +02:00
Matthias Mair 10c73afdc9 Bump InvenTree software version to 1.3.4 (#12024) 2026-05-28 23:27:15 +02:00
Matthias Mair 78527d3b9c chore(deps): bump idna from 3.13 to 3.15 in /contrib/dev_reqs (#11970) (#11983)
* chore(deps): bump idna from 3.13 to 3.15 in /contrib/dev_reqs

Bumps [idna](https://github.com/kjd/idna) from 3.13 to 3.15.
- [Release notes](https://github.com/kjd/idna/releases)
- [Changelog](https://github.com/kjd/idna/blob/master/HISTORY.md)
- [Commits](https://github.com/kjd/idna/compare/v3.13...v3.15)

---
updated-dependencies:
- dependency-name: idna
  dependency-version: '3.15'
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

* fix style

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Matthias Mair <code@mjmair.com>
(cherry picked from commit 65d15a5945)

# Conflicts:
#	contrib/dev_reqs/requirements.txt
#	docs/requirements.txt
#	src/backend/requirements-3.14.txt
#	src/backend/requirements-dev-3.14.txt
#	src/backend/requirements-dev.txt
#	src/backend/requirements.txt

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
1.3.3
2026-05-22 09:40:57 +10:00
github-actions[bot] 7134aab05b Fix #11832: Prevent TypeError by making LDAP group search conditional in settings (#11898) (#11944)
(cherry picked from commit 45d95142cc4ab4374f017b388e2331c953b1f07c)

Co-authored-by: Aditya Kumar Mishra <154746713+adityakrmishra@users.noreply.github.com>
2026-05-14 22:48:16 +10:00
github-actions[bot] 812a6f7c52 bump urlib3 (#11925) (#11931)
* chore(deps): bump urllib3 from 2.6.3 to 2.7.0 in /src/backend

Bumps [urllib3](https://github.com/urllib3/urllib3) from 2.6.3 to 2.7.0.
- [Release notes](https://github.com/urllib3/urllib3/releases)
- [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst)
- [Commits](https://github.com/urllib3/urllib3/compare/2.6.3...2.7.0)

---
updated-dependencies:
- dependency-name: urllib3
  dependency-version: 2.7.0
  dependency-type: direct:production
...



* fix style

---------



(cherry picked from commit 98f1ae53a3)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Matthias Mair <code@mjmair.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-05-12 13:46:16 +10:00
Matthias Mair 357c693acc fix(CI): adress zimor warnings in the release workflow (#11916) (#11926)
* adress zimor warnings

- https://github.com/inventree/InvenTree/security/code-scanning/346
- https://github.com/inventree/InvenTree/security/code-scanning/345
- https://github.com/inventree/InvenTree/security/code-scanning/344
- https://github.com/inventree/InvenTree/security/code-scanning/343

* adress https://github.com/inventree/InvenTree/security/code-scanning/232

* fix template injection

* revert change

* collected improvements

* use native action

(cherry picked from commit 5d059fe725)
2026-05-12 11:48:16 +10:00
github-actions[bot] 9567bbeaaf chore(backend): bump django (#11907) (#11912)
* bump django

* add  comment regarding GHSA-5h8x-9c6f-2j8m

---------


(cherry picked from commit 1aed591c2f)

Co-authored-by: Matthias Mair <code@mjmair.com>
Co-authored-by: Oliver <oliver.henry.walters@gmail.com>
2026-05-10 09:12:31 +10:00
github-actions[bot] e60092e1f6 fix(backend): ensure version screeen runs without django present (#11887) (#11891)
(cherry picked from commit 556de563e2)

Co-authored-by: Matthias Mair <code@mjmair.com>
Co-authored-by: Oliver <oliver.henry.walters@gmail.com>
2026-05-08 08:49:35 +10:00
github-actions[bot] 457e8b4325 Lock notes on orders if they are completed (#11880) (#11882)
* Lock notes on orders if they are completed
Fixes #11879

* also check setting

* use statuscode object

* remove build lock

(cherry picked from commit 610e275ca0)

Co-authored-by: Matthias Mair <code@mjmair.com>
2026-05-07 08:42:34 +10:00
Oliver 599bf16c32 Bump InvenTree software version to 1.3.3 (#11878) 2026-05-05 22:28:00 +10:00
github-actions[bot] a60e85b668 [UI] Fix for parameter form (#11875) (#11877)
- Ensure string field is properly selected

(cherry picked from commit aae97eeb40)

Co-authored-by: Oliver <oliver.henry.walters@gmail.com>
1.3.2
2026-05-05 19:48:02 +10:00
github-actions[bot] ba2dbaead1 [UI] Fix ReturnOrder table (#11845) (#11851)
* [UI] Fix ReturnOrder table

- Closes https://github.com/inventree/InvenTree/issues/11833

* Add playwright test

(cherry picked from commit 76407d71b8)

Co-authored-by: Oliver <oliver.henry.walters@gmail.com>
2026-05-02 20:20:17 +10:00
github-actions[bot] cbbf2d5deb Adjust app docs (#11849) (#11850)
(cherry picked from commit 7269b0c21f)

Co-authored-by: Oliver <oliver.henry.walters@gmail.com>
2026-05-02 10:16:20 +10:00
github-actions[bot] b4898eb181 Fix build order annotation (#11848) (#11852)
- Closes https://github.com/inventree/InvenTree/issues/11830

(cherry picked from commit f0edb002d0)

Co-authored-by: Oliver <oliver.henry.walters@gmail.com>
2026-05-02 10:16:06 +10:00
github-actions[bot] 3632d4ea98 Update installer docs (#11846) (#11847)
- Fix information on supported distros

(cherry picked from commit 768184e4f0)

Co-authored-by: Oliver <oliver.henry.walters@gmail.com>
2026-05-02 09:24:53 +10:00
github-actions[bot] bab507e090 Fix: preserve existing widget sizes when adding a dashboard widget (#11834) (#11838)
* Fix: preserve existing widget sizes when adding a dashboard widget

When adding a new widget from the drawer, addWidget called
updateLayoutForWidget with overrideSize=true on every existing layout
key. That flag forces w/h on every layout entry to the widget's
minWidth/minHeight, which silently reset all user-customised widget
sizes back to their minimums.

Pass overrideSize=false instead. Existing widgets retain their layout
entries (and therefore their user-set sizes); the newly added widget
has no entry yet, so react-grid-layout auto-places it at default size.

Adds a Playwright regression test that resizes a widget, adds a second
widget, and asserts the first widget's height is preserved.

* Make widget-resize regression test reliable

Replace the previous drag-based test with a deterministic check that
manipulates the persisted layout directly. The resize handles only
exist when isResizable={editing} is true, so the previous test's
attempt to grab .react-resizable-handle returned null in CI.

The new test inflates the first widget's layout entry in
localStorage, reloads to rehydrate zustand, then adds a second widget
via the menu and asserts the first widget retained its enlarged
dimensions. This directly exercises the addWidget code path without
needing edit mode or mouse simulation.

* Apply biome formatting

* Patch backend profile to inflate widget; fix unused non-null assertion

Updating localStorage was wiped out by observeProfile() on reload, so
inflate the widget on the backend user profile instead.

---------


(cherry picked from commit d603358205)

Co-authored-by: tigger2000ttfn <tigger2000ttfn@gmail.com>
Co-authored-by: tigger2000ttfn <tigger2000ttfn@users.noreply.github.com>
2026-05-01 14:03:34 +10:00
github-actions[bot] 7899a17edf bump deps (#11812) (#11814)
* fix pip

* bump uv

---------


(cherry picked from commit e3a2a02857)

Co-authored-by: Matthias Mair <code@mjmair.com>
Co-authored-by: Oliver <oliver.henry.walters@gmail.com>
2026-04-27 09:19:52 +10:00
Oliver 1d34ba7560 Bump software version to 1.3.2 (#11805) 2026-04-26 10:56:58 +10:00
github-actions[bot] 7b63aa900c Fix for category template creation (#11803) (#11804)
- Prevent duplicate parameters
- Closes https://github.com/inventree/InvenTree/issues/11798


(cherry picked from commit 75942fbedf)

Co-authored-by: Oliver <oliver.henry.walters@gmail.com>
Co-authored-by: Copilot <copilot@github.com>
1.3.1
2026-04-26 09:39:53 +10:00
github-actions[bot] a4115cdd16 [bug] BOM validation fixes (#11783) (#11784)
* Ensure a new BOM item triggers check_bom_valid

* Ensure BOM validation is properly recomputed on a BOM item update

* Add unit tests

* Tweak unit tests

* Update 'clear_bom' method

(cherry picked from commit a94798daaa)

Co-authored-by: Oliver <oliver.henry.walters@gmail.com>
2026-04-23 09:27:16 +10:00
github-actions[bot] a28e5da6b5 add frontend cookie removal of mfa trust (#11768) (#11773)
(cherry picked from commit 3c9b014939)

Co-authored-by: Matthias Mair <code@mjmair.com>
2026-04-21 10:42:43 +10:00
github-actions[bot] 7dc80da9e8 Update docker_install.md (#11746) (#11748)
(cherry picked from commit 1ab0182e92)

Co-authored-by: ZhangzrJerry <contact@zzhangje.top>
2026-04-15 09:13:15 +10:00
github-actions[bot] 913fe854c9 Fix for SVG sanitizing (#11742) (#11744)
- Clear our non-breaking-space characters
- These can break SVG rendering in the browser
- Ref: https://github.com/inventree/InvenTree/pull/11655

(cherry picked from commit cead09bcd8)

Co-authored-by: Oliver <oliver.henry.walters@gmail.com>
2026-04-14 12:55:11 +10:00
github-actions[bot] d1354fc147 [plugin] Render tables (#11733) (#11737)
* Move useFilterSet state to the @lib

* Refactor useTable hook into @lib

* Refactor string helper functions

* Refactor constructFormUrl func

* Refactor Boundary component

* Refactor StoredTableState

* More refactoring

* Refactor CopyButton and CopyableCell

* Pass table render func to plugins

* Provide internal wrapper function, while allowing the "api" and "navigate" functions to be provided by the caller

* Adds <InvenTreeTable /> component which is exposed to plugins

* Update frontend versioning

* Update docs

* Handle condition where UI does not provide table rendering function

* Move queryFilters out of custom state

* Fix exported type

* Extract searchParams

- Cannot be used outside of router component
- Only provide when the table is generated internally

* Bump UI version

* Fix for right-click context menu

- Function needs to be defined with the context menu provider

(cherry picked from commit 23f43ffd33)

Co-authored-by: Oliver <oliver.henry.walters@gmail.com>
2026-04-13 20:43:40 +10:00
github-actions[bot] c94874e3be Add redis database index support (#11732) (#11736)
(cherry picked from commit fc06aa354a)

Co-authored-by: Dään <12813916+hartigdan@users.noreply.github.com>
2026-04-13 09:24:24 +10:00
Oliver 72cb873d8d Bump InvenTree software version to 1.3.1 (#11731) 2026-04-12 09:49:18 +10:00
github-actions[bot] b422372141 New Crowdin translations by GitHub Action (#11695) (#11729)
(cherry picked from commit 5aaf1cfcab)

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
1.3.0
2026-04-11 21:33:04 +10:00
Oliver 2c8b2d3349 Bump version number to 1.3.0 (#11724) 2026-04-11 20:21:04 +10:00
Oliver 513a9526f7 Update changelog (#11727) 2026-04-11 19:38:09 +10:00
Matthias Mair 366d4c398c refactor(backend): move various endpoints to modelviewsets (#11617)
* move to router based path building

* fix url names

* fix import

* fix test helper

* fix test

* more test fixes

* fix api response

* remove url patch

* bump api version

* reduce diff

* Fix version tag

* fix schema generation errors

* adjust texts

* fix tests

* add test for notification behavior / readakk

* add todo for wrong endpoint

* rename

* adjust docstring

* fix outstanding permission todo - this pattern should be changed in the API
2026-04-11 17:37:16 +10:00
Oliver fffc55c764 Catch keyboard interrupts (#11720) 2026-04-11 13:46:55 +10:00
Oliver 3bd304bb4d Cache schema checks (#11721)
- The isGeneratingSchema command is potentially expensive
- Cache the result (per thread)
2026-04-11 13:46:40 +10:00
Oliver 4581799d0b Linkify search results (#11719)
* Linkify search results

- Closes https://github.com/inventree/InvenTree/issues/11717

* Divide search results
2026-04-11 13:23:05 +10:00
Oliver 62588a62a3 Additional report tags (#11718)
* Add some more convenience functions for report helpers

* Add "reverse" tag

* Add unit tests

* Add lstrip and rstrip

* Fix unit tests
2026-04-11 12:03:58 +10:00
Oliver a05d01b759 [UI] Fix superuser banner (#11716)
- Allow it to be dismissed again
2026-04-11 10:48:39 +10:00
dependabot[bot] fcdba5d76a chore(deps): bump axios from 1.13.6 to 1.15.0 in /src/frontend (#11708)
Bumps [axios](https://github.com/axios/axios) from 1.13.6 to 1.15.0.
- [Release notes](https://github.com/axios/axios/releases)
- [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md)
- [Commits](https://github.com/axios/axios/compare/v1.13.6...v1.15.0)

---
updated-dependencies:
- dependency-name: axios
  dependency-version: 1.15.0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-11 09:51:23 +10:00
dependabot[bot] 84f3fcf32e chore(deps): bump pypdf from 6.9.2 to 6.10.0 in /src/backend (#11715)
* chore(deps): bump pypdf from 6.9.2 to 6.10.0 in /src/backend

Bumps [pypdf](https://github.com/py-pdf/pypdf) from 6.9.2 to 6.10.0.
- [Release notes](https://github.com/py-pdf/pypdf/releases)
- [Changelog](https://github.com/py-pdf/pypdf/blob/main/CHANGELOG.md)
- [Commits](https://github.com/py-pdf/pypdf/compare/6.9.2...6.10.0)

---
updated-dependencies:
- dependency-name: pypdf
  dependency-version: 6.10.0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

* fix style

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Matthias Mair <code@mjmair.com>
2026-04-11 09:50:33 +10:00