79800871fa
fix: harden frontend-builder with npm upgrade to mitigate bundled CVEs
2026-03-16 12:26:55 +00:00
5e5eae7422
fix: ensure Semgrep hook triggers on Dockerfile-only commits
2026-03-16 11:44:27 +00:00
78f216eaef
fix: enhance payload handling in Slack provider creation to track token presence
2026-03-16 11:41:06 +00:00
95a65069c0
fix: handle existing PR outputs in promotion job
2026-03-16 11:17:37 +00:00
1e4b2d1d03
Merge pull request #843 from Wikid82/renovate/feature/beta-release-non-major-updates
...
fix(deps): update non-major-updates (feature/beta-release)
2026-03-16 07:15:40 -04:00
81f1dce887
fix(deps): update non-major-updates
2026-03-16 11:06:23 +00:00
b66cc34e1c
fix: update Caddy security version to 1.1.48 in Dockerfile
2026-03-15 20:49:53 +00:00
5bafd92edf
fix: supply slack webhook token in handler create sub-tests
...
The slack sub-tests in TestDiscordOnly_CreateRejectsNonDiscord and
TestBlocker3_CreateProviderRejectsNonDiscordWithSecurityEvents were
omitting the required token field from their request payloads.
CreateProvider enforces that Slack providers must have a non-empty
token (the webhook URL) at creation time. Without it the service
returns "slack webhook URL is required", which the handler does not
classify as a 400 validation error, so it falls through to 500.
Add a token field to each test struct, populate it for the slack
case with a valid-format Slack webhook URL, and use
WithSlackURLValidator to bypass the real format check in unit tests —
matching the pattern used in all existing service-level Slack tests.
2026-03-15 15:17:23 +00:00
6e4294dce1
fix: validate Slack webhook URL at provider create/update time
2026-03-15 12:23:27 +00:00
82b1c85b7c
fix: clarify feature flag behavior for Slack notifications in documentation
2026-03-15 12:14:48 +00:00
41ecb7122f
fix: update baseline-browser-mapping and caniuse-lite to latest versions
2026-03-15 11:58:48 +00:00
2fa7608b9b
fix: guard routeBodyPromise against indefinite hang in security test
2026-03-15 11:51:16 +00:00
285ee2cdda
fix: expand Semgrep ruleset to cover TypeScript, Dockerfile, and shell security
2026-03-15 11:45:18 +00:00
72598ed2ce
fix: inject Slack URL validator via constructor option instead of field mutation
2026-03-15 11:27:51 +00:00
8670cdfd2b
fix: format notification services table for better readability
2026-03-15 11:17:34 +00:00
f8e8440388
fix: correct GeoIP CI detection to require truthy value
2026-03-15 11:15:56 +00:00
ab4dee5fcd
fix: make Slack webhook URL validator injectable on NotificationService
2026-03-15 11:15:10 +00:00
04e87e87d5
Merge pull request #841 from Wikid82/renovate/feature/beta-release-jsdom-29.x
...
chore(deps): update dependency jsdom to v29 (feature/beta-release)
2026-03-15 07:00:19 -04:00
cc96435db1
Merge pull request #840 from Wikid82/renovate/feature/beta-release-non-major-updates
...
chore(deps): update softprops/action-gh-release digest to b25b93d (feature/beta-release)
2026-03-15 06:59:51 -04:00
53af0a6866
chore(deps): update dependency jsdom to v29
2026-03-15 10:56:03 +00:00
3577ce6c56
chore(deps): update softprops/action-gh-release digest to b25b93d
2026-03-15 10:55:54 +00:00
0ce35f2d64
Merge branch 'development' into feature/beta-release
2026-03-14 23:47:43 -04:00
0e556433f7
Merge pull request #839 from Wikid82/hotfix/login
...
Hotfix: Login / Auth on Private IP
2026-03-14 23:45:41 -04:00
4b170b69e0
fix: update Caddy security version to 1.1.47 in Dockerfile
2026-03-15 03:25:41 +00:00
fd58f9d99a
fix(auth): update SameSite cookie policy description for clarity
2026-03-15 03:23:06 +00:00
f33ab83b7c
fix(auth): rename isLocalHost to isLocalOrPrivateHost and update related tests
2026-03-15 03:20:11 +00:00
6777f6e8ff
feat(auth): implement Bearer token fallback in fetchSessionUser for private network HTTP connections
...
- Expanded fetchSessionUser to include Bearer token from localStorage as a fallback for authentication when Secure cookies fail.
- Updated headers to conditionally include Authorization if a token is present.
- Ensured compatibility with the recent fix for the Secure cookie flag on private network connections.
2026-03-15 02:25:07 +00:00
1096b00b94
fix: set PORT environment variable for httpbin backend in integration scripts
2026-03-14 16:44:35 +00:00
6180d53a93
fix: update undici to version 7.24.2 in package-lock.json
2026-03-14 16:44:35 +00:00
fca1139c81
Merge pull request #838 from Wikid82/renovate/feature/beta-release-release-drafter-release-drafter-7.x
...
chore(deps): update release-drafter/release-drafter action to v7 (feature/beta-release)
2026-03-14 12:30:46 -04:00
847b10322a
Merge pull request #837 from Wikid82/renovate/feature/beta-release-non-major-updates
...
chore(deps): update non-major-updates (feature/beta-release)
2026-03-14 12:30:29 -04:00
59251c8f27
Merge branch 'feature/beta-release' into renovate/feature/beta-release-non-major-updates
2026-03-14 12:30:02 -04:00
58b087bc63
fix: replace curl with wget for backend readiness checks in integration scripts
2026-03-14 13:17:06 +00:00
8ab926dc8b
chore(deps): update release-drafter/release-drafter action to v7
2026-03-14 13:16:45 +00:00
85f258d9f6
chore(deps): update non-major-updates
2026-03-14 13:15:37 +00:00
042c5ec6e5
fix(ci): replace abandoned httpbin image with maintained Go alternative
2026-03-13 22:44:19 +00:00
05d19c0471
fix: update lru-cache and other dependencies to latest versions
2026-03-13 20:07:30 +00:00
48af524313
chore(security): expand Semgrep coverage to include frontend and secrets scanning
2026-03-13 20:07:30 +00:00
bad97102e1
fix: repair GeoIP CI detection and harden httpbin startup in integration tests
2026-03-13 20:07:30 +00:00
98a4efcd82
fix: handle errors gracefully when commenting on PRs in supply chain verification workflow
2026-03-13 20:07:30 +00:00
f631dfc628
Merge pull request #836 from Wikid82/renovate/feature/beta-release-non-major-updates
...
chore(deps): update non-major-updates (feature/beta-release)
2026-03-13 15:58:41 -04:00
eb5b74cbe3
chore(deps): update non-major-updates
2026-03-13 19:08:11 +00:00
1785ccc39f
fix: remove zlib vulnerability suppression and update review dates for Nebula ECDSA signature malleability
2026-03-13 14:14:22 +00:00
4b896c2e3c
fix: replace curl with wget for healthcheck commands in Docker configurations
2026-03-13 14:13:37 +00:00
88a9cdb0ff
fix(deps): update @vitejs/plugin-react to version 6.0.1 and adjust peer dependency for @rolldown/plugin-babel
2026-03-13 12:33:00 +00:00
354ff0068a
fix: upgrade zlib package in Dockerfile to ensure latest security patches
2026-03-13 12:10:38 +00:00
0c419d8f85
chore: add Slack provider validation tests for payload and webhook URL
2026-03-13 12:09:35 +00:00
26be592f4d
feat: add Slack notification provider support
...
- Updated the notification provider types to include 'slack'.
- Modified API tests to handle 'slack' as a valid provider type.
- Enhanced frontend forms to display Slack-specific fields (webhook URL and channel name).
- Implemented CRUD operations for Slack providers, ensuring proper payload structure.
- Added E2E tests for Slack notification provider, covering form rendering, validation, and security checks.
- Updated translations to include Slack-related text.
- Ensured that sensitive information (like tokens) is not exposed in API responses.
2026-03-13 03:40:02 +00:00
fb9b6cae76
fix(deps): update caddy-security version to 1.1.46
2026-03-13 01:37:09 +00:00
5bb9b2a6fb
Merge branch 'development' into feature/beta-release
2026-03-12 13:52:54 -04:00
GitHub Actions
Jeremy
renovate[bot]