Ecosyste.ms: OpenCollective

An open API service for software projects hosted on Open Collective.

github.com/DefectDojo/django-DefectDojo

DevSecOps, ASPM, Vulnerability Management. All on one platform.
https://github.com/DefectDojo/django-DefectDojo

feat(doc): integrate documentation in main dojo repo (#3809)

0b3ac112917be7f68eb3729f009ae3aac43889e4 authored almost 4 years ago by alles-klar <[email protected]>
Merge branch 'dev' into move-cvss3

692237d46670920fdb31a1e43f9253873680ce0d authored almost 4 years ago by Fred Blaise <[email protected]>
Make mitigated date editable (#3813)

9f55651437f1abfceb8045eba2690b7c403a9b2c authored almost 4 years ago by Gregor Ratajc <[email protected]>
fix other tests..

7a6ec7b5e949f508aa9376944420ef66495815c6 authored almost 4 years ago by Fred Blaise <[email protected]>
popover

57c8ee0708507356c7efdf4362b0c6e0e3a37870 authored almost 4 years ago by Fred Blaise <[email protected]>
remove cvss panel

ca7b2b6bdc881131db76acc425c13754b1a9d7ff authored almost 4 years ago by Fred Blaise <[email protected]>
Adjusting integration test

80334315e449d24fa05229d121360997d9ea8bed authored almost 4 years ago by Fred Blaise <[email protected]>
quote missing..

6410cbefce0741b1c6d58cb9a5966f47610e14a4 authored almost 4 years ago by Fred Blaise <[email protected]>
adding spaces to cvss v3 all around

2235e65693e5460317fc3a38482a17d9f68a4bab authored almost 4 years ago by Fred Blaise <[email protected]>
revert unwanted change

c91203a796e1e9542b36030f3e2368bef316eaab authored almost 4 years ago by Fred Blaise <[email protected]>
rename cvssv3 + pop-over

567f248f4eaa1e9abc4b87976a6305de001a16d0 authored almost 4 years ago by Fred Blaise <[email protected]>
missing comma

adddce29f1abd3180dad58916370a0d14b170e86 authored almost 4 years ago by Fred Blaise <[email protected]>
rearrange for cvssv3

f81cbe5a37a390b0c6c0ed881ec2626974a72a24 authored almost 4 years ago by Fred Blaise <[email protected]>
import_scan: add official test response field (#3855)

12188fd0c98df2b1899feab10955fe9dc22caf20 authored almost 4 years ago by valentijnscholten <[email protected]>
Make the engagement view more consistent (#3856)

cf6ae61df7ac950667700e1f79da1b8cc487a9f8 authored almost 4 years ago by Stefan Fleckenstein <[email protected]>
Update styfle/cancel-workflow-action action from 0.7.0 to v0.8.0 (.github/workflows/cancel-outdated-workflow-runs.yml) (#3857)

Co-authored-by: Renovate Bot <[email protected]>

f927955c56cd41dfa63baa09d0b75ccd98c1d36e authored almost 4 years ago by renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Update release-drafter/release-drafter action from v5.13.0 to v5.14.0 (.github/workflows/release-drafter.yml) (#3859)

Co-authored-by: Renovate Bot <[email protected]>

8e4b7c2126ecf4f8904cc60f238a1808b2a4c621 authored almost 4 years ago by renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Bump asteval from 0.9.21 to 0.9.22 (#3845)

Bumps [asteval](https://github.com/newville/asteval) from 0.9.21 to 0.9.22.
- [Release notes](h...

bded1e3c28c6209203171b49641897cf396d6ae9 authored almost 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump google-auth from 1.26.0 to 1.26.1 (#3846)

Bumps [google-auth](https://github.com/googleapis/google-auth-library-python) from 1.26.0 to 1.2...

693a397f4cb7786bc1946e75660eaa51e388b28f authored almost 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump django-jsonfield-backport from 1.0.2 to 1.0.3 (#3847)

Bumps [django-jsonfield-backport](https://github.com/laymonage/django-jsonfield-backport) from 1...

a1661d530b1d88f87fd28b47bbac049b281588b2 authored almost 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
feature flag: Track Import history per Test (#3748)

* reimport history: track changes made by reimports

cd26a90399a476610289881a400c59c65ad69d10 authored almost 4 years ago by valentijnscholten <[email protected]>
Bump google-auth from 1.25.0 to 1.26.0 (#3842)

Bumps [google-auth](https://github.com/googleapis/google-auth-library-python) from 1.25.0 to 1.2...

d4443642751a31af92e216ccd650f40b13d1176f authored almost 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Update views.py (#3844)

deb240baf15e893c253ee2c11f6fa3a776e303f8 authored almost 4 years ago by Fred Blaise <[email protected]>
finding.save() + add logging of the JIRA issue key to jira webhook (#3839)

38f06a56a525dd9c8d519d4b4370433d95b09955 authored almost 4 years ago by Fred Blaise <[email protected]>
tests: fix add finding javascript error (#3834)

4506dc571249ee9ff8e9d9f8a5325c154a417a2d authored almost 4 years ago by valentijnscholten <[email protected]>
Bump justgage from 1.4.0 to 1.4.1 in /components (#3838)

Bumps [justgage](https://github.com/toorshia/justgage) from 1.4.0 to 1.4.1.
- [Release notes](h...

badefb4943979d3404a680770b4683e0d713ceb6 authored almost 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump cryptography from 3.4.3 to 3.4.4 (#3836)

Bumps [cryptography](https://github.com/pyca/cryptography) from 3.4.3 to 3.4.4.
- [Release note...

6788e07a3beb015814f25f769dc9d94afb4b078b authored almost 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump jszip from 3.5.0 to 3.6.0 in /components (#3837)

Bumps [jszip](https://github.com/Stuk/jszip) from 3.5.0 to 3.6.0.
- [Release notes](https://git...

881df7c7852eab71316eb85da0c22dc9cd7f0c8b authored almost 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Small typo correction (#3833)

* update diagram

* Small typo correction

* Small typo correction

Co-authored-by: Fred B...

4a374738a263a2fe05bb98f119e7a00270e0fb3d authored almost 4 years ago by Wadeck Follonier <[email protected]>
Bump cryptography from 3.4.1 to 3.4.3 (#3831)

Bumps [cryptography](https://github.com/pyca/cryptography) from 3.4.1 to 3.4.3.
- [Release note...

e10f2582af908c7974b78560c6ee12a9776838f1 authored almost 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Add Close Engagement Notification (#3803)

* Add Close Engagement Notification

* Fix migration

* Add product level notification

* ...

bf1cfec63acdba375f1f560557415f6ee11c255c authored almost 4 years ago by Cody Maffucci <[email protected]>
Add parser for Anchore Grype scan (#3814)

360368b8471498e37f8e8261d1a289b6dc19c9af authored almost 4 years ago by Damien Carol <[email protected]>
fixing 3824 (#3826)

5d0f246f98e8ace40a33c4030f7b54065619ff4f authored almost 4 years ago by Michael Gibson <[email protected]>
Fix image_digest/imageDigest error (#3802)

75dc4970f17c6dd7387fd53533adda18cacad15f authored almost 4 years ago by Damien Carol <[email protected]>
store tags for new (ad hoc) findings (#3825)

8ef381bbc726b32fa127a4996e18ba34f0879004 authored almost 4 years ago by valentijnscholten <[email protected]>
risk acceptance rename left over reporter to owner (#3828)

126152ed734fefab362bfffa321984cf8789fdc8 authored almost 4 years ago by valentijnscholten <[email protected]>
Re-enable Jira Epic Mapping (#3782)

* Re-enable Jira Epic Mapping

* Forgot new cassette

* add more unit tests

* Fix flake8
...

3b4d990a2166545458101e05c678959931a99c78 authored almost 4 years ago by Cody Maffucci <[email protected]>
show boolean fields as icons (#3819)

bdc818e02f5df1e68fa4047b51167656fb997f9e authored almost 4 years ago by Stefan Fleckenstein <[email protected]>
Fix deduplication hashcode fields for Dependency Track scanner (#3822)

The Dependency Track scanner was configured to use `'component'` in its dedupe hashcode, but tha...

e66994a72deb701ff2a63ae3b9f5092a1eef54ba authored almost 4 years ago by Stefan van der Meer <[email protected]>
Fix google sheets + tests (#3747)

1d870c7025b3d8a6815841fd0bac74bb2b24caa4 authored almost 4 years ago by Fred Blaise <[email protected]>
Bump django-extensions from 3.1.0 to 3.1.1 (#3816)

Bumps [django-extensions](https://github.com/django-extensions/django-extensions) from 3.1.0 to ...

58bc6df97cbdd1c9a9263112262b70d9b7997d14 authored almost 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump cryptography from 3.3.1 to 3.4.1 (#3817)

Bumps [cryptography](https://github.com/pyca/cryptography) from 3.3.1 to 3.4.1.
- [Release note...

cd9cf952e0bd40e8267117e868aea037169c3559 authored almost 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump nginx from `0174730` to `c2ce58e` (#3818)

Bumps nginx from `0174730` to `c2ce58e`.

Signed-off-by: dependabot[bot] <[email protected]>
...

291dac9a7ad4d9825c53fd639e7274a33041bd49 authored almost 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
jira webhook: fix risk acceptance handling (#3769)

6b2b8c8cc12ce0a821cf78a72d8911675688cebd authored almost 4 years ago by valentijnscholten <[email protected]>
product types: remove unused count prefetch (#3810)

ab889733aa022e7648f7f9d796b7a1fbbfa1de6f authored almost 4 years ago by valentijnscholten <[email protected]>
products: only prefetch github data if enabled (#3811)

* products: only prefetch github data if enabled

* linting

ff5c4bdfd87563976fd1a008f0b7a9592533b64c authored almost 4 years ago by valentijnscholten <[email protected]>
cleanup: remove __unicode__ everywhere (#3770)

Co-authored-by: Damien Carol <[email protected]>

f4b4730dfb85c477d7237714bff03acbfa4c2c1f authored almost 4 years ago by valentijnscholten <[email protected]>
fix(api): linting that lead to a bugfix in product type report via api (#3751)

vscode now has a new language server based on pylance, which is based on pyright, a type checker...

8961f608102ff1b18d14fbfac4374680cee5e4ac authored almost 4 years ago by valentijnscholten <[email protected]>
Metrics query optimizations (#3730)

* Metrics: fix bug, undefined object "finding"

* Remove unused variables in Metrics views

...

9e75930a92522231c1089776e20fadb539e0b6d0 authored almost 4 years ago by Daniel Naab <[email protected]>
Allow marking Qualys WAS security weaknesses as findings. (#3427)

* Allow marking Qualys WAS security weaknesses as findings.

* Appease the linter.

* Rename...

b983cfc0c6798b34f98f3ecf3d6cfa2930883888 authored almost 4 years ago by Ian Walton <[email protected]>
DSOP parser: remove pandas and fix twistlock CVE (#3784)

9457aaa8a5a6eb4d244b8c77f460a1a5955ca2ab authored almost 4 years ago by Damien Carol <[email protected]>
Merge pull request #3806 from madchap/fix-diagram-master

update release diagram

f567f53aeeb33404762fd44a28a7d18362cb9d68 authored almost 4 years ago by Fred Blaise <[email protected]>
update diagram

0baa90acf4a259b13367dd5889c544f6e24192ef authored almost 4 years ago by Fred Blaise <[email protected]>
Merge pull request #3805 from madchap/fix-diagram

updating release diagram

0644e3c79338ec58030bdab69560f7d509f6793b authored almost 4 years ago by Fred Blaise <[email protected]>
updating diagram

f9f399d355d891ef7f43cdc183b95acb09ebf94a authored almost 4 years ago by Fred Blaise <[email protected]>
Merge pull request #3796 from damiencarol/fix_burp_xml

Fix Burp blank response bug #3795

fde67213f09fd32addffb8ce45f33bd0ad9b58c1 authored almost 4 years ago by Fred Blaise <[email protected]>
risk acceptance: fix notes bugs (#3768)

6641af809b4741920c58f10e6adec3fd2570e632 authored almost 4 years ago by valentijnscholten <[email protected]>
Merge pull request #3801 from mtesauro/dev

Updated UI product name max chars to match model and API

ce1e5643183172c29b8beecc5b8b7228ecbd94d9 authored almost 4 years ago by Fred Blaise <[email protected]>
Updated UI product name max chars to match model and API

a9d94f02a8cb6e401f47d4f939a31356d5c2aceb authored almost 4 years ago by Matt Tesauro <[email protected]>
product: prefetch verified count, add missing indexes 🏎️ (#3780)

* product: prefetch verified count

* prod type list: format active/verified count

* findin...

ed1960f97f3071096ba1c0ac359112ae1dcb2878 authored almost 4 years ago by valentijnscholten <[email protected]>
Fix Burp blank response bug #3795

f9f65e5bf4afa92c116c258c49bba96e2df4d28e authored almost 4 years ago by damiencarol <[email protected]>
Multiple Endpoint object query fix (#3700)

* Multiple Endpoint object query fix

* Pass on violations like the previous PR

* Change In...

1238d9b9ea20d17d8dedc482dbeb7a6572abb11d authored almost 4 years ago by Cody Maffucci <[email protected]>
AWS Prowler parser maintenance (#3763)

* AWS Prowler parser maintenance

* Improve severity management

5c9bf309f7970026951fd17179ab77d6b6dba99b authored almost 4 years ago by Damien Carol <[email protected]>
Bump google-auth from 1.24.0 to 1.25.0 (#3793)

Bumps [google-auth](https://github.com/googleapis/google-auth-library-python) from 1.24.0 to 1.2...

7b4aa9732e40bc95ae830c994550a143d2dc33c4 authored almost 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Improve GitLab dependency scanning parser (#3786)

* Improve GitLab dependency scanning parser, adding component name and version for the findings....

6cb5f44e893a109c5fdedcf2406d1d3aff74d201 authored almost 4 years ago by Guilherme Macedo <[email protected]>
Sonarqube HTML reports fix #3725 (#3734)

* Add more unit tests

* Fix #3725

* Update test_sonarqube_parser.py

* Fix teardown error

d7b5f72dc9ca9abcfe3570c5ab2dea66bfc26631 authored almost 4 years ago by Damien Carol <[email protected]>
Merge pull request #3792 from DefectDojo/master-into-dev/1.12.1-1.13.0-dev

Release: Merge back 1.12.1 into dev from: master-into-dev/1.12.1-1.13.0-dev

f93c74fac252e7878e1e67513bd7a3416fe6eb8f authored almost 4 years ago by valentijnscholten <[email protected]>
Merge remote-tracking branch 'upstream/dev' into master-into-dev/1.12.1-1.13.0-dev

cf55716b7d13db8a55c2f52da298a1f1666f3568 authored almost 4 years ago by Valentijn Scholten <[email protected]>
Update versions in application files

b943c4a62d5083d045bb412dd37586dee47ec622 authored almost 4 years ago by DefectDojo release bot <[email protected]>
Update new-release-master-into-dev.yml

e90562e75d334d8c5fddb23bce15398e51c34615 authored almost 4 years ago by valentijnscholten <[email protected]>
Update new-release-master-into-dev.yml

404fc4a241cc4f983a2ec9e238ae64b59b7dd33d authored almost 4 years ago by valentijnscholten <[email protected]>
Update new-release-master-into-dev.yml

0ea5ac4a2020cadd88017b46651d30791d592e09 authored almost 4 years ago by valentijnscholten <[email protected]>
Update new-release-tag-docker.yml

6a946dccdeecf0b5922665fa3fd53210d7531bb7 authored almost 4 years ago by valentijnscholten <[email protected]>
Update new-release-tag-docker.yml

e381c985b1cec1cad1c8de6a90e759d2c28fe1fa authored almost 4 years ago by valentijnscholten <[email protected]>
Update new-release-tag-docker.yml

6d70b914a83df1363d55baa094567b04e3b7ecbc authored almost 4 years ago by valentijnscholten <[email protected]>
Update new-release-tag-docker.yml

163a918eed70b00ff7773bc4273e9a0d4e9ce793 authored almost 4 years ago by valentijnscholten <[email protected]>
Merge pull request #3791 from DefectDojo/release/1.12.1

Release: Merge release into master from: release/1.12.1

6bc794ecc375da8cb995cec01418a20ead31ed47 authored almost 4 years ago by Fred Blaise <[email protected]>
Merge branch 'master' into release/1.12.1

c1e067410a59cff92ec226149b8c5909a3b3744b authored almost 4 years ago by valentijnscholten <[email protected]>
Update versions in application files

f8c3a6af85780757c68a325b3ef07600f3b04624 authored almost 4 years ago by DefectDojo release bot <[email protected]>
Update new-release-pr.yml

eb151cce2387ddbb05f6f25bc2f9c5ce8a7b1a59 authored almost 4 years ago by valentijnscholten <[email protected]>
Security fixes for reports/notes/enpoints via APIv2 (#3790)

* api fixes

* fix for notes

* documentation fix

* reversed changes for import and notes

1709a583e8ffe8bc6ee4e2c8c4b8af376b530c7c authored almost 4 years ago by Stefan Fleckenstein <[email protected]>
add Detect Merge Conflicts workflow (#3789)

566ae459594f3de1de877361b8b68fa37cf25db0 authored almost 4 years ago by valentijnscholten <[email protected]>
add Detect Merge Conflicts workflow

d7cc23e589fe9fc827ddb0fe73f43bf6787568d8 authored almost 4 years ago by valentijnscholten <[email protected]>
Bump bleach from 3.2.2 to 3.3.0 (#3783)

Bumps [bleach](https://github.com/mozilla/bleach) from 3.2.2 to 3.3.0.
- [Release notes](https:...

010f5cfae377d8d3994836d329ba2164c77d4458 authored almost 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Safety parser: fix error in unit tests (#3788)

af065a3f5f60162c2a21b9dc7bd5bcd42bd702a8 authored almost 4 years ago by Damien Carol <[email protected]>
Bump packageurl-python from 0.9.3 to 0.9.4 (#3785)

Bumps [packageurl-python](https://github.com/package-url/packageurl-python) from 0.9.3 to 0.9.4....

0a13bf8d7a72d7d12246e20b8c6e889fc3753f31 authored almost 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Fix helm chart (#3767)

I got some

unknown field "kubernetes.io/ingress.class" in io.k8s.apimachinery.pkg.apis.meta.v...

2edd33d54534ae77d6f813c0034fa518f4dd1a69 authored almost 4 years ago by Fred Blaise <[email protected]>
api: fix authorized product allowance for Test retrieval (#3755)

84a0d77ff9da3adb118f5affc2976f5226ee6777 authored almost 4 years ago by valentijnscholten <[email protected]>
Bump bleach from 3.2.3 to 3.3.0 (#3774)

Bumps [bleach](https://github.com/mozilla/bleach) from 3.2.3 to 3.3.0.
- [Release notes](https:...

fac73ea36f8c682e85dbbe5933cc74dbfd777798 authored almost 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump pytz from 2020.5 to 2021.1 (#3773)

Bumps [pytz](https://github.com/stub42/pytz) from 2020.5 to 2021.1.
- [Release notes](https://g...

bf5680eb78f48493045d307c20ce757e3352e7cf authored almost 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Add metrics queries tests (#3743)

* Add metrics queries tests, and fix undefined endpoint_querys date field reference.

* Closed...

ae99b176767d64f87c1ab703c233ab4da1f50d55 authored almost 4 years ago by Daniel Naab <[email protected]>
Bump sqlalchemy from 1.3.22 to 1.3.23 (#3775)

Bumps [sqlalchemy](https://github.com/sqlalchemy/sqlalchemy) from 1.3.22 to 1.3.23.
- [Release ...

7b8f5c6bd7f536aa403af22ec6dc54eae3b533b6 authored almost 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Allow Findings filter by tags all objects (#3759)

Co-authored-by: Maffooch <[email protected]>

e26d3f5ef485a7ddb25eec591b3a45325dd62499 authored almost 4 years ago by Cody Maffucci <[email protected]>
Fix broken nexpose parser (#2604)

* Fix broken parsers and other bugs
Co-authored-by: Damien Carol <[email protected]>
Co-au...

6c2f19329866fb939306fa2f872dd6119069b8ad authored almost 4 years ago by ProtonFaker <[email protected]>
Bump django-crispy-forms from 1.10.0 to 1.11.0 (#3760)

Bumps [django-crispy-forms](https://github.com/django-crispy-forms/django-crispy-forms) from 1.1...

af5c06baf90d685fc0813578afd1ebde7d7b3e61 authored almost 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump python-gitlab from 2.5.0 to 2.6.0 (#3761)

Bumps [python-gitlab](https://github.com/python-gitlab/python-gitlab) from 2.5.0 to 2.6.0.
- [R...

4d40efce9e96b02fbe5d54aadfb7095283a65e50 authored almost 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Safety parser: fix erro in unit tests (#3764)

309d5e6ea99ebb4ca7c5d4cbe4f85738a4ac8171 authored almost 4 years ago by Damien Carol <[email protected]>
Helm: Chart improvements for running on GKE (#3687)

* Allow CloudSQL proxy logging verbosity to be specified

* Bump CloudSQL proxy version to 1.1...

439f18bde2804e0a5f7c845c1c43472c58439467 authored almost 4 years ago by James Alseth <[email protected]>
cleanup: remove empty unittests_legacy folder (#3752)

a5dcdb1d1c780bb44611936d27ed45c7f3b8b1aa authored almost 4 years ago by valentijnscholten <[email protected]>
Fix IP address/host decoding in Nessus CSV parser (#3655) (#3710)

* Add first unit tests for Nessus parsers

* Add report with default options

* Add more uni...

12aae33f7be134b3ec94709dca865f37382c82d0 authored almost 4 years ago by Damien Carol <[email protected]>