dependabot[bot]
c914bea64c
chore(deps): bump the dependencies group with 3 updates ( #10375 )
...
Bumps the dependencies group with 3 updates: [actions/checkout](https://github.com/actions/checkout ), [actions/setup-python](https://github.com/actions/setup-python ) and [anchore/sbom-action](https://github.com/anchore/sbom-action ).
Updates `actions/checkout` from 4.2.2 to 5.0.0
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v4.2.2...08c6903cd8c0fde910a37f88322edcfb5dd907a8 )
Updates `actions/setup-python` from 5.6.0 to 6.0.0
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](https://github.com/actions/setup-python/compare/v5.6.0...e797f83bcb11b83ae66e0230d6156d7c80228e7c )
Updates `anchore/sbom-action` from 0.20.5 to 0.20.6
- [Release notes](https://github.com/anchore/sbom-action/releases )
- [Changelog](https://github.com/anchore/sbom-action/blob/main/RELEASE.md )
- [Commits](da167eac91...f8bdd1d8acsupport@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-23 09:31:47 +10:00
Matthias Mair
7eea2775b9
feat: speed up docker publishing ( #9912 )
...
* feat: speed up docker publishing
by spliting tests tasks for docker publishing into paralell
also makes releasing safer as no tests are run in the then published image and the permissions are slimer
* add update
* add names
* prepare image
* add dev setup
* remove migration stage
* merge unit test
2025-09-20 08:04:42 +10:00
Matthias Mair
21cb488eef
feat(backend): add typechecking with ty ( #9664 )
...
* Add ty for type checking
* fix various typing issues
* fix req
* more fixes
* and more types
* and more typing
* fix imports
* more fixes
* fix types and optional statements
* ensure patch only runs if it is installed
* add type check to qc
* more fixes
* install all reqs
* fix more types
* more fixes
* disable container stuff for now
* move typecheck to seperate job
* try to use putput for path
* use env instead
* fix typo
* add missing install
* remove unclear imports - not sure why this was done
* add kwarg names
* fix introduced issue in url call
* ignore import
* fix broken typing changes
* fix filter import
* reduce change set
* remove api-change
* fix dict
* ignore typing errors
* fix more type issues
* ignore errors
* style fix
* fix type
* bump ty
* fix more
* type fixes
* update ignores
* fix import
* fix defaults
* fix ignore
* fix some issues
* fix type
2025-09-17 21:30:02 +10:00
dependabot[bot]
8a45bcc8c0
chore(deps): bump the dependencies group with 3 updates ( #10324 )
...
Bumps the dependencies group with 3 updates: [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer ), [github/codeql-action](https://github.com/github/codeql-action ) and [ad-m/github-push-action](https://github.com/ad-m/github-push-action ).
Updates `sigstore/cosign-installer` from 3.9.2 to 3.10.0
- [Release notes](https://github.com/sigstore/cosign-installer/releases )
- [Commits](d58896d6a1...d7543c93d8https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](f1f6e5f6af...192325c861https://github.com/ad-m/github-push-action/releases )
- [Commits](d91a481090...77c5b412c5support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-16 09:35:26 +10:00
Oliver
fcb6ebde4b
Release version checker ( #10304 )
...
* Enhance version check regex
* Refactor version_check.py
- Account for non-standard release tags (rc / dev / etc)
- Refactor code for extracting version info
- Add argparse support
- Update qc_checks.yaml
* Enhanced debug output
* Stringify and strip
* Display version tuple in log
* Tweak CI logs
2025-09-12 08:48:05 +10:00
dependabot[bot]
818976320c
chore(deps): bump the dependencies group with 5 updates ( #10289 )
...
Bumps the dependencies group with 5 updates:
| Package | From | To |
| --- | --- | --- |
| [actions/setup-python](https://github.com/actions/setup-python ) | `5.6.0` | `6.0.0` |
| [codecov/codecov-action](https://github.com/codecov/codecov-action ) | `5.5.0` | `5.5.1` |
| [github/codeql-action](https://github.com/github/codeql-action ) | `3.30.0` | `3.30.1` |
| [actions/stale](https://github.com/actions/stale ) | `9.1.0` | `10.0.0` |
| [crowdin/github-action](https://github.com/crowdin/github-action ) | `2.10.0` | `2.11.0` |
Updates `actions/setup-python` from 5.6.0 to 6.0.0
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](a26af69be9...e797f83bcbhttps://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](fdcc847654...5a1091511ahttps://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](2d92b76c45...f1f6e5f6afhttps://github.com/actions/stale/releases )
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md )
- [Commits](5bef64f19d...3a9db7e6a4https://github.com/crowdin/github-action/releases )
- [Commits](9787f4fcb6...0749939f63support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-09 07:02:24 +10:00
dependabot[bot]
a17d7c738a
chore(deps): bump the dependencies group with 2 updates ( #10251 )
...
Bumps the dependencies group with 2 updates: [github/codeql-action](https://github.com/github/codeql-action ) and [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance ).
Updates `github/codeql-action` from 3.29.11 to 3.30.0
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](3c3833e0f8...2d92b76c45https://github.com/actions/attest-build-provenance/releases )
- [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md )
- [Commits](e8998f9491...977bb373edsupport@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-03 09:41:56 +10:00
dependabot[bot]
ccdd6eace3
chore(deps): bump the dependencies group with 3 updates ( #10235 )
...
Bumps the dependencies group with 3 updates: [codecov/codecov-action](https://github.com/codecov/codecov-action ), [github/codeql-action](https://github.com/github/codeql-action ) and [crowdin/github-action](https://github.com/crowdin/github-action ).
Updates `codecov/codecov-action` from 5.4.3 to 5.5.0
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](18283e04ce...fdcc847654https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](96f518a34f...3c3833e0f8https://github.com/crowdin/github-action/releases )
- [Commits](590c05e09a...9787f4fcb6support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-08-27 07:04:45 +10:00
dependabot[bot]
ce6ffdac18
chore(deps): bump the dependencies group with 3 updates ( #10193 )
...
Bumps the dependencies group with 3 updates: [depot/build-push-action](https://github.com/depot/build-push-action ), [github/codeql-action](https://github.com/github/codeql-action ) and [anchore/sbom-action](https://github.com/anchore/sbom-action ).
Updates `depot/build-push-action` from 1.15.0 to 1.16.2
- [Release notes](https://github.com/depot/build-push-action/releases )
- [Commits](2583627a84...9785b135c3https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](76621b61de...96f518a34fhttps://github.com/anchore/sbom-action/releases )
- [Changelog](https://github.com/anchore/sbom-action/blob/main/RELEASE.md )
- [Commits](7b36ad622f...da167eac91support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-08-19 16:32:26 +10:00
Oliver
4cadc433bb
Fix DB migration checks ( #10175 )
2025-08-15 01:00:11 +10:00
dependabot[bot]
e82965ee6d
chore(deps): bump the dependencies group with 7 updates ( #10162 )
...
Bumps the dependencies group with 7 updates:
| Package | From | To |
| --- | --- | --- |
| [actions/checkout](https://github.com/actions/checkout ) | `4.2.2` | `5.0.0` |
| [docker/login-action](https://github.com/docker/login-action ) | `3.4.0` | `3.5.0` |
| [docker/metadata-action](https://github.com/docker/metadata-action ) | `5.7.0` | `5.8.0` |
| [actions/download-artifact](https://github.com/actions/download-artifact ) | `4.3.0` | `5.0.0` |
| [github/codeql-action](https://github.com/github/codeql-action ) | `3.29.3` | `3.29.8` |
| [anchore/sbom-action](https://github.com/anchore/sbom-action ) | `0.20.2` | `0.20.4` |
| [crowdin/github-action](https://github.com/crowdin/github-action ) | `2.9.0` | `2.9.1` |
Updates `actions/checkout` from 4.2.2 to 5.0.0
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](11bd71901b...08c6903cd8https://github.com/docker/login-action/releases )
- [Commits](74a5d14239...184bdaa072https://github.com/docker/metadata-action/releases )
- [Commits](902fa8ec7d...c1e51972afhttps://github.com/actions/download-artifact/releases )
- [Commits](d3f86a106a...634f93cb29https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](d6bbdef45e...76621b61dehttps://github.com/anchore/sbom-action/releases )
- [Changelog](https://github.com/anchore/sbom-action/blob/main/RELEASE.md )
- [Commits](cee1b8e05a...7b36ad622fhttps://github.com/crowdin/github-action/releases )
- [Commits](9fd07c1c5b...590c05e09asupport@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-08-12 12:28:50 +10:00
Oliver
38f713eeac
Run full docker build if full_run specified ( #10153 )
...
* Run full docker build if full_run specified
* Debugging
* Update migration test
* Fix migration test
* Fix typo
* Debug logging
* Add log info
* Disable the test in docker
* Remove debug prints
* Revert docker ci test
2025-08-12 07:37:20 +10:00
Oliver
dfd9fe44a4
[Refactor] BOM Validation ( #10056 )
...
* Add "bom_validated" field to the Part model
* Check bom validity of any assemblies when a part is changed
* Improved update logic
* Fixes for circular imports
* Add additional info to BOM validation serializer
* More intelligent caching
* Refactor
* Update API filter
* Data migration to process existing BomItem entries
* Add "BOM Valid" filter to part table
* Add dashboard widget
* Display BOM validation status
* Tweak dashboard widget
* Update BomTable
* Allow locked BOM items to be validated
* Adjust get_item_hash
- preserve "some" backwards compatibility
* Bump API version
* Refactor app URL patterns
* Fix import sequence
* Tweak imports
* Fix logging message
* Fix error message
* Update src/backend/InvenTree/part/migrations/0141_auto_20250722_0303.py
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com >
* Update exception handling
* Try info level debug
* Disable exchange rate update
* Add registry ready flag
* Add is_ready func
* Cleaner init code
* Protect against plugin access until ready
* Fix dashboard widget filter
* Adjust unit test
* Fix receiver name
* Only add plugin URLs if registry is ready
* Cleanup code
* Update playwright tests
* Update docs
* Revert changes to urls.py
---------
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com >
2025-07-23 20:16:00 +10:00
dependabot[bot]
a08784acce
chore(deps): bump the dependencies group with 2 updates ( #10053 )
...
Bumps the dependencies group with 2 updates: [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer ) and [github/codeql-action](https://github.com/github/codeql-action ).
Updates `sigstore/cosign-installer` from 3.9.1 to 3.9.2
- [Release notes](https://github.com/sigstore/cosign-installer/releases )
- [Commits](398d4b0eee...d58896d6a1https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](181d5eefc2...d6bbdef45esupport@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-07-22 15:22:55 +10:00
dependabot[bot]
6ac563264c
chore(deps): bump crowdin/github-action in the dependencies group ( #10022 )
...
Bumps the dependencies group with 1 update: [crowdin/github-action](https://github.com/crowdin/github-action ).
Updates `crowdin/github-action` from 2.8.0 to 2.9.0
- [Release notes](https://github.com/crowdin/github-action/releases )
- [Commits](297234bae0...9fd07c1c5bsupport@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-07-15 09:20:22 +10:00
Oliver
d62ac38cb1
Unit test fixes ( #10019 )
...
* Add --keepdb option for unit test
* Reduce server launch overhead
- isGeneratingSchema was EXPENSIVE
- Running a single unit test reduced from 30s to 3s
* Option to disable check
2025-07-15 01:30:58 +10:00
dependabot[bot]
c6864ca996
chore(deps): bump the dependencies group with 2 updates ( #9975 )
...
Bumps the dependencies group with 2 updates: [anchore/sbom-action](https://github.com/anchore/sbom-action ) and [svenstaro/upload-release-action](https://github.com/svenstaro/upload-release-action ).
Updates `anchore/sbom-action` from 0.20.1 to 0.20.2
- [Release notes](https://github.com/anchore/sbom-action/releases )
- [Changelog](https://github.com/anchore/sbom-action/blob/main/RELEASE.md )
- [Commits](9246b90769...cee1b8e05ahttps://github.com/svenstaro/upload-release-action/releases )
- [Changelog](https://github.com/svenstaro/upload-release-action/blob/master/CHANGELOG.md )
- [Commits](ebd922b779...81c65b7cd4support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-07-08 09:21:06 +10:00
Oliver
ee3a574029
[UI] Build order visual enhancements ( #9931 )
...
* Adjust UI wording
- Separation between "items" and "stock"
* Add info panel if build order has no required items
* Fixes for playwright testing
- Ensure cookies are completely cleaned between sessions
- Fix base URL based on vite command
- Fix samesite cookie mode
- Prevent /static/ files being served by web server on :8000
* Remove gunicorn option
* Fix unit test
* Readjust base URL
* Simplify doCachedLogin
* Adjust text
* Ensure translations are extracted
- Otherwise, playwright will not find the right strings...
* Make admin test more reliable
* Remove asynciness
* Fix <AttachmentLink>
- Allow null "attachment" value
* Better implementation
* Cleanup
2025-07-03 12:15:22 +10:00
dependabot[bot]
e4102f98cb
chore(deps): bump the dependencies group with 2 updates ( #9913 )
...
Bumps the dependencies group with 2 updates: [github/codeql-action](https://github.com/github/codeql-action ) and [crowdin/github-action](https://github.com/crowdin/github-action ).
Updates `github/codeql-action` from 3.29.0 to 3.29.2
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](ce28f5bb42...181d5eefc2https://github.com/crowdin/github-action/releases )
- [Commits](f214c87230...297234bae0support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-07-01 08:25:52 +10:00
dependabot[bot]
4840782c19
chore(deps): bump the dependencies group with 4 updates ( #9831 )
...
Bumps the dependencies group with 4 updates: [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ), [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer ), [depot/build-push-action](https://github.com/depot/build-push-action ) and [svenstaro/upload-release-action](https://github.com/svenstaro/upload-release-action ).
Updates `docker/setup-buildx-action` from 3.11.0 to 3.11.1
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](18ce135bb5...e468171a9dhttps://github.com/sigstore/cosign-installer/releases )
- [Commits](3454372f43...398d4b0eeehttps://github.com/depot/build-push-action/releases )
- [Commits](636daae766...2583627a84https://github.com/svenstaro/upload-release-action/releases )
- [Changelog](https://github.com/svenstaro/upload-release-action/blob/master/CHANGELOG.md )
- [Commits](04733e069f...ebd922b779support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-06-24 09:44:44 +10:00
Matthias Mair
d5fa609275
feat: improve user/group management actions ( #9602 )
...
* feat: improve user management actions
add "open profile" actions
* add lock / unlock action
* add actions for password reset
* submit coverage info to codecov
no idea why this was turned off
* bump api version
* add frontend test
* add backend test
* fix test state
* move test
* fix style
* fix name
* hide password change if not superuser
* bump playwright
see https://github.com/microsoft/playwright/issues/35183
* fix test
* fix test order
* simplify test
---------
Co-authored-by: Oliver <oliver.henry.walters@gmail.com >
2025-06-19 09:14:59 +10:00
dependabot[bot]
0393944b9a
chore(deps): bump the dependencies group with 5 updates ( #9795 )
...
Bumps the dependencies group with 5 updates:
| Package | From | To |
| --- | --- | --- |
| [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) | `3.10.0` | `3.11.0` |
| [stefanzweifel/git-auto-commit-action](https://github.com/stefanzweifel/git-auto-commit-action ) | `5.2.0` | `6.0.1` |
| [github/codeql-action](https://github.com/github/codeql-action ) | `3.28.19` | `3.29.0` |
| [anchore/sbom-action](https://github.com/anchore/sbom-action ) | `0.20.0` | `0.20.1` |
| [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance ) | `2.3.0` | `2.4.0` |
Updates `docker/setup-buildx-action` from 3.10.0 to 3.11.0
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](b5ca514318...18ce135bb5https://github.com/stefanzweifel/git-auto-commit-action/releases )
- [Changelog](https://github.com/stefanzweifel/git-auto-commit-action/blob/master/CHANGELOG.md )
- [Commits](b863ae1933...778341af66https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](fca7ace96b...ce28f5bb42https://github.com/anchore/sbom-action/releases )
- [Changelog](https://github.com/anchore/sbom-action/blob/main/RELEASE.md )
- [Commits](e11c554f70...9246b90769https://github.com/actions/attest-build-provenance/releases )
- [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md )
- [Commits](db473fddc0...e8998f9491support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-06-17 09:05:42 +10:00
Matthias Mair
13b185e66f
chore: make issue template clearer ( #9753 )
...
* make template more clear regarding reproduction
* use dropdown for deployment method
* add stable ref
* fix syntax
2025-06-10 20:30:32 +10:00
dependabot[bot]
ff508348e4
chore(deps): bump the dependencies group with 2 updates ( #9751 )
...
Bumps the dependencies group with 2 updates: [github/codeql-action](https://github.com/github/codeql-action ) and [crowdin/github-action](https://github.com/crowdin/github-action ).
Updates `github/codeql-action` from 3.28.18 to 3.28.19
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](ff0a06e83c...fca7ace96bhttps://github.com/crowdin/github-action/releases )
- [Commits](b8012bd549...f214c87230support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-06-10 17:04:25 +10:00
dependabot[bot]
fa1b056b40
chore(deps): bump ossf/scorecard-action in the dependencies group ( #9715 )
...
Bumps the dependencies group with 1 update: [ossf/scorecard-action](https://github.com/ossf/scorecard-action ).
Updates `ossf/scorecard-action` from 2.4.1 to 2.4.2
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](f49aabe0b5...05b42c6244support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-06-02 21:24:49 +10:00
Matthias Mair
7a984f831f
bump backend deps ( #9713 )
...
* bump backend deps
* lower xmlsec to fix build
* add permament pin
* lower allauth as there are api changes
* unify dependabot config
2025-06-02 11:26:49 +10:00
dependabot[bot]
5937bb8291
chore(deps): bump the dependencies group with 3 updates ( #9680 )
...
Bumps the dependencies group with 3 updates: [codecov/codecov-action](https://github.com/codecov/codecov-action ), [github/codeql-action](https://github.com/github/codeql-action ) and [anchore/sbom-action](https://github.com/anchore/sbom-action ).
Updates `codecov/codecov-action` from 5.4.2 to 5.4.3
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](ad3126e916...18283e04cehttps://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](60168efe1c...ff0a06e83chttps://github.com/anchore/sbom-action/releases )
- [Changelog](https://github.com/anchore/sbom-action/blob/main/RELEASE.md )
- [Commits](9f73021414...e11c554f70support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-05-20 09:24:38 +02:00
Matthias Mair
41f1670aa2
fix generation / upload path ( #9642 )
2025-05-07 21:28:15 +01:00
Matthias Mair
0b228761b4
feat(backend): record contexts for coverage ( #9643 )
...
* feat(backend): Record contexts for coverage
* add docs
2025-05-07 20:28:06 +00:00
Matthias Mair
0ff86103d9
refactor(docs): simplify docs files / pipelines ( #9633 )
...
* refactor(doc): only use one command
* restructure
* move all generated helpers to a dedicated directory
* move to pathlib
* and more pathlib
* add empty generated folder
2025-05-06 12:20:11 +01:00
dependabot[bot]
3fe08751d3
chore(deps): bump github/codeql-action in the dependencies group ( #9631 )
...
Bumps the dependencies group with 1 update: [github/codeql-action](https://github.com/github/codeql-action ).
Updates `github/codeql-action` from 3.28.16 to 3.28.17
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](28deaeda66...60168efe1csupport@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-05-05 20:06:38 +01:00
dependabot[bot]
13b543e128
Bump the dependencies group with 6 updates ( #9599 )
...
Bumps the dependencies group with 6 updates:
| Package | From | To |
| --- | --- | --- |
| [actions/setup-python](https://github.com/actions/setup-python ) | `5.5.0` | `5.6.0` |
| [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer ) | `3.8.1` | `3.8.2` |
| [actions/download-artifact](https://github.com/actions/download-artifact ) | `4.2.1` | `4.3.0` |
| [github/codeql-action](https://github.com/github/codeql-action ) | `3.28.15` | `3.28.16` |
| [anchore/sbom-action](https://github.com/anchore/sbom-action ) | `0.18.0` | `0.19.0` |
| [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance ) | `2.2.3` | `2.3.0` |
Updates `actions/setup-python` from 5.5.0 to 5.6.0
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](8d9ed9ac5c...a26af69be9https://github.com/sigstore/cosign-installer/releases )
- [Commits](d7d6bc7722...3454372f43https://github.com/actions/download-artifact/releases )
- [Commits](95815c38cf...d3f86a106ahttps://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](45775bd823...28deaeda66https://github.com/anchore/sbom-action/releases )
- [Changelog](https://github.com/anchore/sbom-action/blob/main/RELEASE.md )
- [Commits](f325610c9f...9f73021414https://github.com/actions/attest-build-provenance/releases )
- [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md )
- [Commits](c074443f1a...db473fddc0support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-04-29 12:13:54 +01:00
Matthias Mair
e90346f14d
fix(ci): Make translation step more robust ( #9587 )
...
The translation push step fails from time to time - this adds more step logging and makes it more robust https://github.com/inventree/InvenTree/actions/runs/14653723469/job/41124911037
2025-04-26 08:15:27 +10:00
Matthias Mair
40ded29b35
feat(docs): include docs in release ( #9524 )
...
* add build step for docs
* various fixes after live-testing (#349 )
2025-04-22 09:05:06 +10:00
dependabot[bot]
9b489911e5
Bump stefanzweifel/git-auto-commit-action in the dependencies group ( #9555 )
...
Bumps the dependencies group with 1 update: [stefanzweifel/git-auto-commit-action](https://github.com/stefanzweifel/git-auto-commit-action ).
Updates `stefanzweifel/git-auto-commit-action` from 5.1.0 to 5.2.0
- [Release notes](https://github.com/stefanzweifel/git-auto-commit-action/releases )
- [Changelog](https://github.com/stefanzweifel/git-auto-commit-action/blob/master/CHANGELOG.md )
- [Commits](e348103e90...b863ae1933support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-04-22 08:16:09 +10:00
Matthias Mair
8bb03b7afd
feat(backend): add oauth2 ( #9333 )
...
* feat(backend): add oauth2
* fix import
* Add inventree roles
* refactor to make lookup more efficient
* fix single scope definitions
* cleanup
* fix schema
* reduce auth methods
* fix OAuth validator
* re-enable token and basic auth again
* Add models to role mapping
* change scope args
* add debug step for schema generation
* add oauth config for schema generation
* improve token -> permission mapping
* fix req
* extend checks to ensure normal auth also passes
* fix api version
* fix ignore
* fix rule name
* bump api version
* remove old modelref
* move scope definition
* make test results easier to work with
* add tests to ensure scopes are in sync with rulesets
* fix docstring
* fix various permissions and their mapping to oauth
* refactor
* simplify
* fix permission mapping
* ignore failure cases
* fix unauthenticated access
* flag oAuth2 till it is done
* Add OIDC support
* add RSA key generation and docs
* fix test
* move imports
* update ignore
* feat(backend): Add API Schema stats
* add scope stats
* fix name
* fix scope output
* feat(backend): test custom command
* add warning for unknown scopes
* reduce diff in launch.json
* cleanup diff
* add error code for ruleset / scope issues
* update structure
* add oauth docs
* add experimetnal feature docs
* simplify metadata endpoint
* add importer model
* refactor(backend): simplify metadata endpoint
* fix imports
* simplify even more
* remove unneeded schema tooling
* fix permission mappings
* fix testing
* fix role calculations
* fix mapping
* remove importer change to unblock this
* remove importer scope everywhere
* fix merge conflict in test
* add missing models
* fix api version
* fix OASToken matcher
* revert permission class change
* reduce size of test log by writing schema
* fix permissions
* fix file path
* extend schema to remove need for TokenMatchesOASRequirements
* cleanup permissions file
* add base object permission
2025-04-18 19:27:32 +10:00
dependabot[bot]
fd4caceed0
Bump codecov/codecov-action in the dependencies group ( #9517 )
...
Bumps the dependencies group with 1 update: [codecov/codecov-action](https://github.com/codecov/codecov-action ).
Updates `codecov/codecov-action` from 5.4.0 to 5.4.2
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](0565863a31...ad3126e916support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Oliver <oliver.henry.walters@gmail.com >
2025-04-17 16:55:45 +10:00
Matthias Mair
9ab82a187e
fix(ci): dependabot config ( #9514 )
...
* fix(ci): dependabot config
* bump now updatable lingui/cli
2025-04-16 08:04:54 +10:00
Matthias Mair
0c7173c096
fix(ci): codecov upload ( #9513 )
...
* fix(ci): codecov uploader
* bump back down
2025-04-16 07:22:43 +10:00
dependabot[bot]
dbd15a68a9
Bump the dependencies group with 2 updates ( #9504 )
...
Bumps the dependencies group with 2 updates: [codecov/codecov-action](https://github.com/codecov/codecov-action ) and [github/codeql-action](https://github.com/github/codeql-action ).
Updates `codecov/codecov-action` from 5.4.0 to 5.4.1
- [Release notes](https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](0565863a31...cf3f51a67dhttps://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](fc7e4a0fa0...45775bd823support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-04-15 09:02:45 +10:00
Matthias Mair
0d6c47fcd5
fix(backend): repair remaining schema generation errors ( #9453 )
...
* Remove hardcoded currency enum from schema
* Convert schema custom key enums to int to allow customized keys to validate
* Convert stock status key enums to int to allow customizations to
validate in schema
* api version bump
* fix remaining operationId errors
* fix errors
* fix another error
* fix missing model
* ensure we do not ignore warnings anymore
* Restore enumerated help text for currencies
* Remove commented block of old code
* Restore custom key enumerated values to schema documentation
* Restore status key enumeration to schema documentation
* fix more enums
* Add debug definitions for schema generation
* fix schema generation for PluginRelationSerializer
* add migrations
* fix enum names for allauth schema duplications
* bump api version
---------
Co-authored-by: Joe Rogers <1337joe@gmail.com >
2025-04-08 22:09:57 +10:00
dependabot[bot]
f541d76cd1
Bump github/codeql-action in the dependencies group ( #9473 )
...
Bumps the dependencies group with 1 update: [github/codeql-action](https://github.com/github/codeql-action ).
Updates `github/codeql-action` from 3.28.13 to 3.28.14
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](1b549b9259...fc7e4a0fa0support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-04-08 07:27:48 +10:00
Matthias Mair
2712f30382
fix: ci security issues ( #9451 )
...
* fix possible code injection errors
* pin n
2025-04-04 09:04:06 +11:00
dependabot[bot]
851ef71864
Bump crowdin/github-action from 2.6.1 to 2.7.0 in the dependencies group ( #9430 )
...
Bumps the dependencies group with 1 update: [crowdin/github-action](https://github.com/crowdin/github-action ).
Updates `crowdin/github-action` from 2.6.1 to 2.7.0
- [Release notes](https://github.com/crowdin/github-action/releases )
- [Commits](2cc7959c56...b8012bd549support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-04-01 07:13:11 +11:00
Oliver
fcc6709b3f
Revert some playwright changes ( #9419 )
...
* Revert some playwright changes
- Use vite dev server all the time
* Simplify test
2025-03-31 20:12:26 +11:00
Oliver
7f5a447769
[CI] Playwright improvements ( #9395 )
...
* Allow port 4173 (vite preview)
* Change 'base' attr based on vite command
* Allow api_host to be specified separately
* Harden API host functionality
* Adjust server selections
* Cleanup vite.config.ts
* Adjust playwright configuration
- Allow to run in "production" mode
- Builds the code first
- Runs only the backend web server
- Not suitable for coverage
* Tweak github actions
* Tweak QC file
* Reduce number of steps
* Tweak CI file
* Fix typo
* Ensure translation before build
* Fix hard-coded test
* Test tweaks
* uncomment
* Revert some changes
* Run with gunicorn, single worker
* Reduce log output in DEBUG mode
* Update deps
* Add global-setup func
* Fix for .gitignore file
* Cached auth state
* Tweak login func
* Updated tests
* Enable parallel workers again
* Simplify config
* Try with a single worker again
* Single retry mode
* Run auth setup first
- Prevent issues with parallel test doing login
* Improve test setup process
* Tweaks
* Bump to 3 workers
* Tweak playwright settings
* Revert change
* Revert change
2025-03-30 14:12:48 +11:00
dependabot[bot]
a1b34f5591
Bump actions/setup-python from 5.4.0 to 5.5.0 in the dependencies group ( #9386 )
...
Bumps the dependencies group with 1 update: [actions/setup-python](https://github.com/actions/setup-python ).
Updates `actions/setup-python` from 5.4.0 to 5.5.0
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](42375524e2...8d9ed9ac5csupport@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-03-26 13:49:28 +11:00
Matthias Mair
9bc0d599bc
chore: improve ci security ( #9384 )
...
* pin docker files
* pin github actions
* enforce hashes that are already present
* run style checks on cicd changes
2025-03-26 13:04:45 +11:00
Matthias Mair
d8f5a56064
fix(backend): Bump maybe vulnerable esbuild ( #9155 )
...
* fix(backend): Bump vulnerable vanilla-extract
* bump deps futher
* remove @types/dompurify
* bump @lingui
* use more modern image
20.04 ships with node 18 as default, 24.04 with 20
* bump rest of image deps
* bump deps
* bump base deps
* bump resolution
* lower resolution
* fix resolution
* update lingui
* switch to build-in macro
* fix imports
2025-03-26 09:30:59 +11:00
dependabot[bot]
8e0f79cdfc
Bump the dependencies group with 3 updates ( #9372 )
...
Bumps the dependencies group with 3 updates: [actions/upload-artifact](https://github.com/actions/upload-artifact ), [actions/download-artifact](https://github.com/actions/download-artifact ) and [github/codeql-action](https://github.com/github/codeql-action ).
Updates `actions/upload-artifact` from 4.6.1 to 4.6.2
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](4cec3d8aa0...ea165f8d65https://github.com/actions/download-artifact/releases )
- [Commits](cc20338598...95815c38cfhttps://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](6bb031afdd...1b549b9259support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-03-25 07:27:05 +11:00
