Ecosyste.ms: OpenCollective

An open API service for software projects hosted on Open Collective.

github.com/DefectDojo/django-DefectDojo

DevSecOps, ASPM, Vulnerability Management. All on one platform.
https://github.com/DefectDojo/django-DefectDojo

Update versions

1f450c2e737df8e9331590f633a2961562b35429 authored 10 months ago by Cody Maffucci <[email protected]>
Merge pull request #9720 from DefectDojo/release/3.32.1

Release: Merge release into master from: release/3.32.1

b8887d2b5a61e42f8cbf338f4876e359eedc6b09 authored 10 months ago by Cody Maffucci <[email protected]>
Update versions in application files

09922394f7cf5736b800b6b7198b63458bece18a authored 10 months ago by DefectDojo release bot <[email protected]>
fix <br/> tag on django.po (#9718)

361bf02156bfcb6a8cd7b820cd506440534fd8ee authored 10 months ago by Paul Osinski <[email protected]>
Helm: Remove PSQLHA Test (#9716)

This test will no longer be supported per https://github.com/DefectDojo/django-DefectDojo/discus...

e9bd0a853a3c118c9a156085c282c188bf8be0a2 authored 10 months ago by Cody Maffucci <[email protected]>
Added Checkmarx One Parser (#9715)

* Added Checkmarx One Parser

* added cweID

* changing cve by cwe

* replace cve by cwe

9b2ef5093bcd4d5d6cc7ccf0b7aa9952369369d2 authored 10 months ago by Felix Hernandez <[email protected]>
Endpoints: Remove "verified" query on listing pages (#9717)

* Endpoints: Remove "verified" query on listing pages

* Rename active findings to open findin...

63e96d26a754781584d279bb265ace2adbde99df authored 10 months ago by Cody Maffucci <[email protected]>
remove flotaxis, #9700 (#9709)

34ff4527d9240a0c8c83f8846bc85c919fcb714c authored 10 months ago by manuelsommer <[email protected]>
Product Metrics: Correct week to week charts (#9695)

* Metrics: Sane ordering of product metric charts

* Separate closed metric calculation from o...

434d231fec1223d51c4c208002580f6bd2511862 authored 10 months ago by Cody Maffucci <[email protected]>
Jira: Improve alerting on a per step basis (#9691)

0d35b18ed837ef86656f7bef9665bd14981bd21d authored 10 months ago by Cody Maffucci <[email protected]>
Added crunch42 parser (#9714)

f5769f82a101479d15e4e0d923077fe045dce02a authored 10 months ago by Felix Hernandez <[email protected]>
Bugfix: checkmarx parser - datetime is no longer put into the Finding.date field (#9570)

* Checkmarx parser: datetime is no longer put into the Finding.date field

* Conversion of the...

370cffb289848da35b2d75632c31238ccac56bdb authored 10 months ago by Andreas Reichert <[email protected]>
Merge pull request #9677 from DefectDojo/master-into-bugfix/2.32.0-2.33.0-dev

Release: Merge back 2.32.0 into bugfix from: master-into-bugfix/2.32.0-2.33.0-dev

e88d490eef7ea2f05ae69c67be6a8c5e58045426 authored 10 months ago by Cody Maffucci <[email protected]>
Update versions in application files

eec7d35e26edb3c3aaf2ed7ba6c47654bd7ec21d authored 10 months ago by DefectDojo release bot <[email protected]>
Merge pull request #9676 from DefectDojo/release/2.32.0

Release: Merge release into master from: release/2.32.0

82181253cd303efd1642994327e1d862c6b247ef authored 10 months ago by Cody Maffucci <[email protected]>
Update versions in application files

7a13dc5850b534046fe2bb94d2a0699442514e36 authored 10 months ago by DefectDojo release bot <[email protected]>
Fix shell check

ef2a3fdc15de141cb5901266eaff1b67b6e99536 authored 10 months ago by Cody Maffucci <[email protected]>
DRF Spectacular: Enable sidecar by default (#9645)

5b93c47accb6aad05e5c7584b951f7d6b10ec27b authored 10 months ago by Cody Maffucci <[email protected]>
Upgrade drf-spectacular-sidecar to 2024.3.4 (#9670)

e62398269a90805c465b56517fa22abce4f2034c authored 10 months ago by kiblik <[email protected]>
resolve doing, remove dead code (#9577)

* resolve doing, remove dead code

* more dead code

* ruff linter

* remove unnecessary todo

8b7fa55ee334614385b5836159cffd61dfae1137 authored 10 months ago by manuelsommer <[email protected]>
:sparkles: implement osv-scanner, #7321 (#9578)

* :sparkles: implement osv-scanner, #7321

* add unittest files

* add unittests

* :const...

cd29fdb76c9f2301ccdfdd50a07c30b47eebfd2b authored 10 months ago by manuelsommer <[email protected]>
πŸ”¨ restructure clair parser (#9660)

* :hammer: restructure clair parser

* refactor clair

* refactor clairklar

* update

*...

12ea3e6cd2760b5028510cb2efa844590039c658 authored 10 months ago by manuelsommer <[email protected]>
Force to use DjangoDivFormRenderer (#9659)

ee1c6e0e2a06f5619beec369cd679f383b979be6 authored 10 months ago by kiblik <[email protected]>
:hammer: restructure openvas parser (#9658)

* :hammer: restructure openvas parser

* adapt csv parser

* fix csv parser

* fix xml par...

e9b47b9b6144bbe4f1001ecf657cbf4f0d30188d authored 10 months ago by manuelsommer <[email protected]>
Fix github parser issue 9582 (#9583)

* add unittest file

* add unittest

* adapt parser

* fix unittest

* flake8

86e1afb091acac14de866a3a7d8d78afda74c298 authored 10 months ago by manuelsommer <[email protected]>
Bundler Audit Parser - Support for GHSA-Only Findings (#9649)

* Add support for findings with a GHSA but no CVE

* Update unit test to handle case with GHSA...

ef07eb05dae43bb77297c2ae671cce9935d97013 authored 10 months ago by rh0dy <[email protected]>
StringAgg: use default Value('') (#9661)

c5741fcd70a1b804eb323d333edc2d7c175e79de authored 10 months ago by kiblik <[email protected]>
Upgrade Notes: Move breaking helm change notice from 2.13.x -> 2.12.x (#9637)

* fix upgrade notes, issue #6793

* remove section from 2.13

a84d8453fb9ce3ea1018da99a42967245a8e3e64 authored 10 months ago by manuelsommer <[email protected]>
Anchore Grype: Default to Info severity if missing in report (#9620)

* add unittestfile for issue 9618

* :bug: fix severity Key Error

* add unittest

* flake...

7c41c7137a477674a276f91a39e4595168c5bd8e authored 10 months ago by manuelsommer <[email protected]>
resolve npm audit unittest doing (#9572)

15f2a2983e2ccb9c9a2e554672a490205927c9e3 authored 10 months ago by manuelsommer <[email protected]>
Update dependency autoprefixer from 10.4.17 to v10.4.18 (docs/package.json) (#9664)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>

c6bcbb228499c197a4933f616451c128b944b111 authored 10 months ago by renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Extend APIv2 Findings endpoint and UI filters to accept new date filters (#9642)

* Extend APIv2 Findings endpoint and UI filters to accept new date filters

* fix flake too ma...

f027c63762c45a53522a12a14a0639df37243574 authored 10 months ago by Felix Hernandez <[email protected]>
advance mobsf to also parse exisiting unittestfile (#9563)

* advance mobsf to also parse exisiting unittestfile

* dupe_key update

* fix unittests

...

86dfea38c45260ee02b535cb1288612f8622baa6 authored 10 months ago by manuelsommer <[email protected]>
Added Snyk Code Parser (#9647)

* Added Snyk Code Parser

* fix unittests SnykCodeParser

* Added SnykCode Parser Docs

* ...

eb17d8593b56019f1d70a77edc689bcd430165c4 authored 10 months ago by Felix Hernandez <[email protected]>
Update dependency ruff from 0.2.2 to v0.3.0 (requirements-lint.txt) (#9652)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>

5d3d56d1aff3252af1c8cd4c83d8bcf61530473f authored 10 months ago by renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Merge pull request #9656 from DefectDojo/master-into-dev/2.31.5-2.32.0-dev

Release: Merge back 2.31.5 into dev from: master-into-dev/2.31.5-2.32.0-dev

e2b4ba974d0358cd8b6233c91c13fc04479bba98 authored 10 months ago by Cody Maffucci <[email protected]>
Merge pull request #9657 from DefectDojo/master-into-bugfix/2.31.5-2.32.0-dev

Release: Merge back 2.31.5 into bugfix from: master-into-bugfix/2.31.5-2.32.0-dev

efa11187a42c3532cb8c4bc1ee2c35816fe31117 authored 10 months ago by Cody Maffucci <[email protected]>
Merge branch 'dev' into master-into-dev/2.31.5-2.32.0-dev

ac9db13de99ba2476523dd805970be7cd5b77847 authored 10 months ago by Cody Maffucci <[email protected]>
Update versions in application files

0ff0bb29b3c84fb1bb263c28d414e1c8433558c4 authored 10 months ago by DefectDojo release bot <[email protected]>
Merge pull request #9655 from DefectDojo/release/2.31.5

Release: Merge release into master from: release/2.31.5

2181c61ef50f7b11d63f4612c1064fec89770760 authored 10 months ago by Cody Maffucci <[email protected]>
Update versions in application files

95a774f7f43098a3a74e9afa288c6cfc4858059b authored 10 months ago by DefectDojo release bot <[email protected]>
Metrics: Status unification (#9654)

* Metrics: Status unification

* Correct various mistakes

* Add label clarification

* Co...

eb50b82b400da89f867bd377002ac3ca39f6c8bf authored 10 months ago by Cody Maffucci <[email protected]>
FindingGroupSerializer: not break schemas when JIRAIssue not available (#9651)

01a4fcfe4739f817c062f120c26082f3c70c9dad authored 10 months ago by kiblik <[email protected]>
View Engagement to class based view and block in engagement template (#9613)

* view Engagement to class based view and block in engagement template

* fix flake8

* get_...

6d04c1f481753c05601b76affad3520ff80e6e0a authored 10 months ago by Felix Hernandez <[email protected]>
Qualys: Correct CVE assignment (#9653)

4153c78af997fe9ecd7581e330490b62594497e1 authored 10 months ago by Cody Maffucci <[email protected]>
Update azure/setup-helm action from v3 to v4 (.github/workflows/test-helm-chart.yml) (#9646)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>

fcb578e0757e584b41b17d5e8851c2253d188aaf authored 10 months ago by renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
ASFF Parser: Respect `active` status based on `RecordState` field (#9567)

* resolve asff parser doing

* add unittest to retrigger unittests

305146681c43b2d5718f50c62600760a691db1da authored 10 months ago by manuelsommer <[email protected]>
Add integration tests script (#9136)

5ee7bb4a88464755b836506e23fa4224b137aa8d authored 10 months ago by Cody Maffucci <[email protected]>
:sparkles: Fortify: Support .fpr format (#9590)

* :sparkles: fpr format for fortify

* :construction: extract content of fdr

* extract audi...

680e7ceab1a1da00ec065d00a34a7bbf3d6ec547 authored 10 months ago by manuelsommer <[email protected]>
Engagement validation for risk_acceptance API in POST PATCH and PUT (#9599)

* engagement validation for risk_acceptance API in POST PATCH and PUT

* fix unit tests

* c...

a5df4fa8a16efe4e36600b16cc917c792da440ad authored 10 months ago by Felix Hernandez <[email protected]>
Format cyclonedx_cwe.json (#9595)

8402f84960e899e0e8e04d5b300873cc252afe0b authored 10 months ago by Paul Osinski <[email protected]>
:tada: Snyk epss update (#9601)

* import epss from snyk export

* :facepalm: fix unittests

0fd1084ac67ff885d26c380d0d0a691ab4f58780 authored 10 months ago by Quirin Hardy Zießler <[email protected]>
Making EPSS float formatting consistent in 'view Finding' (#9591)

053929c43629b39e2aeedda8c0e97d08a7a551bd authored 10 months ago by Charles Neill <[email protected]>
Update rabbitmq:3.13.0-alpine Docker digest from 3.13.0 to 3.13.0-alpine (docker-compose.yml) (#9644)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>

f4e79080bc6ac5a44ba9a6d23e96d014c6501f47 authored 10 months ago by renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Remove filterwarnings for RemovedInDjango50Warning (#9500)

* Drop RemovedInDjango50Warning from filterwarnings

* Remove CryptPasswordHasher from PASSWOR...

3b5c0564c112d114a8fd6f8ef3c0ed1779b4b2e1 authored 10 months ago by kiblik <[email protected]>
Nosey Parker Parser (#9067)

* Created _init_.py

* Created parser.py

* Update README.md (#9048)

* Fixing README link...

18ff583c293acd991079e499df3c67e0d05ebded authored 10 months ago by Tanvi Patil <[email protected]>
Drop filterwarnings "cgi is deprecated and slated" (#9561)

db7080239c949b098bba0e8ade9545ddce9399e5 authored 10 months ago by kiblik <[email protected]>
Bump es5-ext from 0.10.62 to 0.10.64 in /components (#9640)

Bumps [es5-ext](https://github.com/medikoo/es5-ext) from 0.10.62 to 0.10.64.
- [Release notes](...

1674af167d742f223ab411cb9bf08d5621707776 authored 10 months ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
EPSS Data Displayed Everywhere (#9621)

* On Findings list, separate EPSS scores and percentiles into separate columns for sorting. Spec...

cd30f4203e720eb91bdfc633fb4cbfd88a34c57c authored 10 months ago by dogboat <[email protected]>
Merge pull request #9634 from DefectDojo/master-into-dev/2.31.4-2.32.0-dev

Release: Merge back 2.31.4 into dev from: master-into-dev/2.31.4-2.32.0-dev

ec4abc50f41c10df39a253e391d0ac778aa3cb7a authored 10 months ago by Cody Maffucci <[email protected]>
Update helm lock file

Signed-off-by: DefectDojo <[email protected]>

96d9a7482338f5a7165a30f650cf936e5191bf81 authored 10 months ago by DefectDojo <[email protected]>
Merge branch 'dev' into master-into-dev/2.31.4-2.32.0-dev

46f338cdc4095990ca831ab3d73b8eabc0e94269 authored 10 months ago by Cody Maffucci <[email protected]>
Merge pull request #9633 from DefectDojo/master-into-bugfix/2.31.4-2.32.0-dev

Release: Merge back 2.31.4 into bugfix from: master-into-bugfix/2.31.4-2.32.0-dev

73136c9b4e128eaf61916993ce320be24b27cd75 authored 10 months ago by Cody Maffucci <[email protected]>
Update versions in application files

7bdc5be30f96652b56f765146163d0f1be550e69 authored 10 months ago by DefectDojo release bot <[email protected]>
Update versions in application files

61799fa21ae236a5e915970666641c21a4717303 authored 10 months ago by DefectDojo release bot <[email protected]>
Merge pull request #9631 from DefectDojo/release/2.31.4

Release: Merge release into master from: release/2.31.4

c5d896b2a606985f41669388962e47409f4866ba authored 10 months ago by Cody Maffucci <[email protected]>
Update versions in application files

efe927ba892912d25d8e2893222c4cb8e162051e authored 10 months ago by DefectDojo release bot <[email protected]>
Correct search queries containing colons (#9624)

362641488e663c930d986e96c6707ec94e38e3a5 authored 10 months ago by Cody Maffucci <[email protected]>
Revet psqlha version from v13 to v9 (#9630)

27a0615c567a46d80401ef053a80b927b46540a1 authored 10 months ago by Cody Maffucci <[email protected]>
Update rabbitmq Docker tag from 3.12.13 to v3.13.0 (docker-compose.yml) (#9622)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>

20cd36feb85c10dcc0b37c13e3faef9685d53a76 authored 10 months ago by renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Extend npm_audit.md with unsupported v7 notice (#9593)

3cec37b6f826a28073c0c70f58da835c2e77ee04 authored 10 months ago by Paul Osinski <[email protected]>
Merge pull request #9616 from DefectDojo/master-into-dev/2.31.3-2.32.0-dev

Release: Merge back 2.31.3 into dev from: master-into-dev/2.31.3-2.32.0-dev

e0a33de0f76f4dc5d54271a5a6b1f1d0f327a65c authored 10 months ago by Cody Maffucci <[email protected]>
Merge pull request #9617 from DefectDojo/master-into-bugfix/2.31.3-2.32.0-dev

Release: Merge back 2.31.3 into bugfix from: master-into-bugfix/2.31.3-2.32.0-dev

ba72459863214079398a0dc4d5e844082753d546 authored 10 months ago by Cody Maffucci <[email protected]>
Merge branch 'dev' into master-into-dev/2.31.3-2.32.0-dev

e77f7f02f2451b002b7a4edd4644ed235b2eed7c authored 10 months ago by Cody Maffucci <[email protected]>
Update versions in application files

a51533dcd186e6dd24c27f3ec74576be7be0b369 authored 10 months ago by DefectDojo release bot <[email protected]>
Merge pull request #9615 from DefectDojo/release/2.31.3

Release: Merge release into master from: release/2.31.3

f628463ffa6805bb20667d0afe22d68c1f2b39eb authored 10 months ago by Cody Maffucci <[email protected]>
Update versions in application files

5807e0db1f8ee600cec55c7f17251c251b4ff3c1 authored 10 months ago by DefectDojo release bot <[email protected]>
Update SLA Violation Filter query (#9614)

Make the filtration of acceptable statuses defined in a SLA violation a bit tighter

[sc-4470]

423a30485cdca28ba88cf50a620685a5ece733a4 authored 10 months ago by Cody Maffucci <[email protected]>
CSV/Excel Report: Correct date/datetime comparison error (#9609)

fef83346ae18f4c144f4a665157828c501d48d53 authored 10 months ago by Cody Maffucci <[email protected]>
Fix broken migration 0197 (#9606)

* Fix broken migration 0179

* Fix on other places

* fix dicts

bcb234d1812a56006893ea8bf0d7d36edf5e197e authored 10 months ago by kiblik <[email protected]>
Bump cryptography from 42.0.2 to 42.0.4 (#9607)

Bumps [cryptography](https://github.com/pyca/cryptography) from 42.0.2 to 42.0.4.
- [Changelog]...

1fb0258470442ab78eb0d84d958843a9710d3b3e authored 10 months ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Update gcr.io/cloudsql-docker/gce-proxy Docker tag from 1.33.16 to v1.34.0 (helm/defectdojo/values.yaml) (#9598)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>

b0d75ca5d4f711fa73303ae7f38da5b1c5e737fb authored 10 months ago by renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
:sparkles: AWS Security Hub: Add GuardDuty (#9524)

* :sparkles: fix guardduty, issue #7813

* advance unittests

* add mitigation

* provide ...

db2f0037ebcb58aea29c689b109ff249ca228843 authored 10 months ago by manuelsommer <[email protected]>
Update dependency ruff from 0.2.1 to v0.2.2 (requirements-lint.txt) (#9576)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>

702b4890ff17be7e4d3295305a24557f4f99a047 authored 10 months ago by renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Merge pull request #9597 from DefectDojo/master-into-dev/2.31.2-2.32.0-dev

Release: Merge back 2.31.2 into dev from: master-into-dev/2.31.2-2.32.0-dev

d5fa644d9c7771bacf21d45f70de754cac3e5da3 authored 10 months ago by Cody Maffucci <[email protected]>
More warning things

dcd369e5a5d34534b9741b247a932ae7996f108f authored 10 months ago by Cody Maffucci <[email protected]>
Fix Flake8 again...

36d666d33d7e3ff29ca994b39378dfc78acd0312 authored 10 months ago by Cody Maffucci <[email protected]>
More warning handling

a114822b310b0d803e117c6126b4d59c457f3172 authored 10 months ago by Cody Maffucci <[email protected]>
Correct survey warnings

4ee1a4bb976c0d260c21f6bfaef4699ede4a49b5 authored 10 months ago by Cody Maffucci <[email protected]>
Fix Flake8

996447b87e763e2966fcf25b40ad9d196faf94b8 authored 10 months ago by Cody Maffucci <[email protected]>
Ignore warnings from polymorphic

dc60184dd8cb00cc3f6484bf6bdc6ae1332e4617 authored 10 months ago by Cody Maffucci <[email protected]>
Merge branch 'dev' into master-into-dev/2.31.2-2.32.0-dev

0306d27cb2c72d0f9e6edeb3cca65bd25d0892e3 authored 10 months ago by Cody Maffucci <[email protected]>
Merge pull request #9596 from DefectDojo/master-into-bugfix/2.31.2-2.32.0-dev

Release: Merge back 2.31.2 into bugfix from: master-into-bugfix/2.31.2-2.32.0-dev

ccda358eeea39ea85892011023f4cb4fb868dea8 authored 10 months ago by Cody Maffucci <[email protected]>
Update versions in application files

f9575282282fe08ff268a349d0066601668cf2ef authored 10 months ago by DefectDojo release bot <[email protected]>
Update versions in application files

395e78f9b53b0353954afebb2fca710da3056c8b authored 10 months ago by DefectDojo release bot <[email protected]>
Merge pull request #9594 from DefectDojo/release/2.31.2

Release: Merge release into master from: release/2.31.2

a2f7c97f9eb526a6d75216643bb4b6f37fdb6714 authored 10 months ago by Cody Maffucci <[email protected]>
Update versions in application files

d40e23afb2de01313ec3e3ceec043d4048f48131 authored 10 months ago by DefectDojo release bot <[email protected]>
Deduplication: Do not reopen original finding (#9558)

54aa5652f54c678a6fe328aef933002e7019b75e authored 10 months ago by Cody Maffucci <[email protected]>
Correct Endpoint "Hosts" views when the host field is `None` (#9560)

* Endpoints: Force object validation on save

* Prevent str concatenation with None type

* ...

97b5f18d626ebf9a5dafc0fa7fdf9d20733a0cfe authored 10 months ago by Cody Maffucci <[email protected]>
Bump nginx from 1.25.3-alpine to 1.25.4-alpine (#9580)

Bumps nginx from 1.25.3-alpine to 1.25.4-alpine.

---
updated-dependencies:
- dependency-nam...

f8c269ecc5428100f84c03b21ffe453503a1156b authored 10 months ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>