Ecosyste.ms: OpenCollective

An open API service for software projects hosted on Open Collective.

github.com/DefectDojo/django-DefectDojo

DevSecOps, ASPM, Vulnerability Management. All on one platform.
https://github.com/DefectDojo/django-DefectDojo

Display Active and Verified counts (#3590)

* active and verified counts

fbd8928f9940bd3254724122ac0418d37e6a4183 authored almost 4 years ago by Fred Blaise <[email protected]>
Bump python-gitlab from 2.4.0 to 2.5.0 (#3627)

Bumps [python-gitlab](https://github.com/python-gitlab/python-gitlab) from 2.4.0 to 2.5.0.
- [R...

364e7b294abba3e0252cfe5cebfbfdc85e8f91d6 authored almost 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Added OSSIndex Devaudit scanner import functionality (#3570)

Added OSSIndex Devaudit scanner import functionality

108005842902f2fbf0682624e70b82e38cb80490 authored almost 4 years ago by BP <[email protected]>
Merge pull request #3621 from damiencarol/improve_webinspect

Improve Micro Focus Webinspect parser

7241437b510898effb4773282a885946fd6f346a authored almost 4 years ago by Saurabh <[email protected]>
APIv1: disable by default (#3608)

* APIv1: Disable by default

b9a79d12af5b7c0d0f4fe522faefba960916e1d2 authored almost 4 years ago by valentijnscholten <[email protected]>
Update to release workflow (#3591)

* update to branch

* text amendments

Signed-off-by: Fred Blaise <[email protected]...

a3f7ae5e2fd15e9b0db648db0f284f2561a69852 authored almost 4 years ago by Fred Blaise <[email protected]>
Import Gitlab projects as DefectDojo products fix Issue #1984 (#2211)

* Update pipeline.py to fix Issue #1984

* Param to enable Gitlab project import as product

...

a62349e9c729daaff7f0c7c98b7ba1736276db65 authored almost 4 years ago by christophe226 <[email protected]>
Merge pull request #3626 from DefectDojo/master

release drafter changes

55e2407a3d29e59fdc20af7528e1f41fca9fca23 authored almost 4 years ago by valentijnscholten <[email protected]>
pin release drafter

b1ef546a6a2aaf029fab594f9b68db1be83947ba authored almost 4 years ago by valentijnscholten <[email protected]>
allow manual run release drafter

696bf3c7eeb4bc368c5cb084fca7f9968b46552a authored almost 4 years ago by valentijnscholten <[email protected]>
pin release drafter

93d5a292e2c3d815ce90d6b0442f769649e78536 authored almost 4 years ago by valentijnscholten <[email protected]>
Merge pull request #3625 from DefectDojo/master-into-dev/1.12.0-dev

Release: Merge back 1.11.1 into dev from: master-into-dev/1.12.0-dev

c9e4201c32c6f2638ea22e4b6ca87d5f708d2956 authored almost 4 years ago by valentijnscholten <[email protected]>
Fix unit tests

7f74a3d8bfae9c578a3ec4cfee53b19550728cac authored almost 4 years ago by Damien Carol <[email protected]>
Update versions in application files

feb4371772a0f255208bd1a6b4dd093d323e46af authored almost 4 years ago by DefectDojo release bot <[email protected]>
Merge pull request #3624 from DefectDojo/release/1.11.1

Release: Merge release into master from: release/1.11.1

9731bab3e37ca0aeb8d3713f2d02cdefb0d7528f authored almost 4 years ago by valentijnscholten <[email protected]>
Update versions in application files

80509b1db03acb262ef4afd285568d99b65afa70 authored almost 4 years ago by DefectDojo release bot <[email protected]>
Security: Prevent XEE in parsers, Prevent open redirect (#3622)

* security: fix xee, identifyview, openredirect

480503c3156e2143a4d088f63b2a8e3f1df3b37d authored almost 4 years ago by valentijnscholten <[email protected]>
Add Scantist Vulnerability Scan Parser (#3610)

* renovate: allow automatic creation of PRs

* updating to add scanting parser

* updating t...

29b9b248f3d2b7a7e08e0b354b9b97e69b6bb890 authored almost 4 years ago by mohcer <[email protected]>
Fix endpoints

dc26cbfcc942a00e3229efd598bed508b74425dd authored almost 4 years ago by Damien Carol <[email protected]>
Add more tests

99d17d27acf7ac32b52bfe1614228f5a5b2fbebd authored almost 4 years ago by Damien Carol <[email protected]>
Snyk parser fixes (#3615)

* Snyk parser: [Bugfix] unique_id var can generate duplications

* Snyk parser: [Bugfix] fixed...

8984ea7c222632790fe70475cb5db2e8b8dde3cc authored almost 4 years ago by Roi Moldes <[email protected]>
Update parser.py

c41a5cdf3f6df89f4616be78c435cfedc6e2903a authored almost 4 years ago by Damien Carol <[email protected]>
Update test_microfocus_webinspect_parser.py

8cf228d43ed1b69908fad1390b73d682a326c869 authored almost 4 years ago by Damien Carol <[email protected]>
Update parser.py

6a8dea3c70b6ec6087dd4c5921a19647cedd1e2b authored almost 4 years ago by Damien Carol <[email protected]>
Fix error in imports

37a202047e6f64088c273550fbb9b234b2b09fb2 authored almost 4 years ago by Damien Carol <[email protected]>
Add more tests

8774884405b9f41d516c1b8637409b67fc3cf8f3 authored almost 4 years ago by Damien Carol <[email protected]>
Add unique_id_from_tool management

50cce7961405b537447eef70d2c3d3e3ca607827 authored almost 4 years ago by Damien Carol <[email protected]>
Improve Micro Focus Webinspect parser

1789827114b284e51d207e972eaf3e7f031be7bf authored almost 4 years ago by Damien Carol <[email protected]>
chore(deps): update mysql:5.7.32 docker digest from 5.7.32 to 5.7.32 (docker-compose.yml) (#3617)

Co-authored-by: Renovate Bot <[email protected]>

4366ab0aaffd78826bd5682547e81bd8fde6af6a authored almost 4 years ago by renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
chore(deps): update styfle/cancel-workflow-action action from 0.6.0 to v0.7.0 (.github/workflows/cancel-outdated-workflow-runs.yml) (#3620)

Co-authored-by: Renovate Bot <[email protected]>

27a10a994f30524b5fea1fa936af6b754b62259e authored almost 4 years ago by renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
sync master to dev: workflow changes + renovate settings (#3618)

* renovate: allow automatic creation of PRs

* Adding retry into the k8s workflow (#3614)

C...

7406128a3b67c5ab05abe2cc2aa12e7699fc4538 authored almost 4 years ago by valentijnscholten <[email protected]>
Adding retry into the k8s workflow (#3614)

Co-authored-by: Dubravko Sever <[email protected]>

3ed4ebb31c930744780539d16a4b5b22c5735ffd authored almost 4 years ago by Sever <[email protected]>
Initial parser doc (#3603)

0290a38a74d2539d9497538bac44bf93d90f6780 authored almost 4 years ago by Fred Blaise <[email protected]>
feat(clair parser): parse componet name and version (#3600)

On behalf of DB Systel GmbH

584f7f237df0196555b5778b7d3726af193f0e66 authored almost 4 years ago by alles-klar <[email protected]>
fix(qualys-parser): map qid to vuln_id_from_tool (#3601)

The qid in Qualys is not unique.

On behalf of DB Systel GmbH

d2361b6644b31085025d0585a5c5a68ba1b1b30c authored almost 4 years ago by alles-klar <[email protected]>
system settings through apiv2 (#3562)

34ac233107efa88dcca55b0fc91e7d01457390da authored almost 4 years ago by manuel-sommer <[email protected]>
Parameter confidence is optional and CWE's are not always numerical in GitLab SAST (#3567)

f925e67e94aad18da3aa4bcaf4b3e9dbb7060d7b authored almost 4 years ago by Stefan Fleckenstein <[email protected]>
Update sample data fixture file (#3580)

1e5b7bd476e0c66355d7fb46530d728b2ee3d490 authored almost 4 years ago by Cody Maffucci <[email protected]>
Send status changes from re-import to jira (#3592)

* Send status changes from re-import to jira

When re-uploading scan files, changes in status ...

c88007952e10506b209e2bde54d62513a7c2fbf3 authored almost 4 years ago by Cody Maffucci <[email protected]>
tags: preserve on reimport scan/test (#3596)

5b73dc97939268c5e614759061c11f0cd056a80b authored almost 4 years ago by valentijnscholten <[email protected]>
feat(alerts): automated cleanup of alerts per user (#3598)

* feat(alerts): automated cleanup of alerts per user

Some users receives a lot of alerts but ...

ad19380ba531c4a7b4bbc9f8e875c724094b5eaf authored almost 4 years ago by alles-klar <[email protected]>
Update rabbitmq:3.8.9 Docker digest from 3.8.9 to 3.8.9 (docker-compose.yml) (#3595)

Co-authored-by: Renovate Bot <[email protected]>

e949857b8cca23ffe6d2fa3bcff701a05bc00e57 authored almost 4 years ago by renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
renovate: allow automatic creation of PRs

358d580cb1bdec885f4dc5485d01cb43f63d2bdc authored almost 4 years ago by valentijnscholten <[email protected]>
Add the close_old_findings parameter also to reimport API (#3572)

* Add the close_old_findings parameter also to reimport API
* Introduce the close_old_findings ...

0ff8643904165c9d46ee973050ffd7d876d39e96 authored almost 4 years ago by Cosmin Cojocar <[email protected]>
Component enhancements (#3578)

70c649cd7799ae9269a8d71e992ebc91eaac41cd authored almost 4 years ago by Ricardo Meulendijks <[email protected]>
Swtich to official django-tagulous release (#3579)

80c6cc0b9d88ebb9b4104642bab4a6f5b4841cfc authored almost 4 years ago by valentijnscholten <[email protected]>
pin sqlalchemy (#3583)

41c2622fc6bebe948909e67a646ee49d801e896c authored almost 4 years ago by valentijnscholten <[email protected]>
remove unused custom_field dependency (#3574)

da14d9160ba1a2a931185d7f71c6448bed98a27f authored almost 4 years ago by valentijnscholten <[email protected]>
Bump jsonlines from 1.2.0 to 2.0.0 (#3581)

Bumps [jsonlines](https://github.com/wbolster/jsonlines) from 1.2.0 to 2.0.0.
- [Release notes]...

8a2f885ddcade05ec551944ef6cbb32b20fe5d8f authored almost 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Add unit tests for Bandit parser (#3568)

7a2943252f5f945ed78718c3c5ba08b227d7ee24 authored almost 4 years ago by Damien Carol <[email protected]>
Bump pillow from 8.0.1 to 8.1.0 (#3575)

Bumps [pillow](https://github.com/python-pillow/Pillow) from 8.0.1 to 8.1.0.
- [Release notes](...

586abb1cec4d01840400335ec960fdcc03f8f58e authored almost 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump mysqlclient from 2.0.2 to 2.0.3 (#3576)

Bumps [mysqlclient](https://github.com/PyMySQL/mysqlclient) from 2.0.2 to 2.0.3.
- [Release not...

1e65a8ee58bd4dfadddd986ab885cdf8898dff5a authored almost 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump busybox from 1.32.0-musl to 1.33.0-musl (#3577)

Bumps busybox from 1.32.0-musl to 1.33.0-musl.

Signed-off-by: dependabot[bot] <support@github...

b7c18308adfd0ba420b1276927971760b94d27c9 authored almost 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Merge pull request #3565 from DefectDojo/master-into-dev/1.12.0-dev

Release: Merge back 1.11.0 into dev from: master-into-dev/1.12.0-dev

5caf63d1c92db7f6b194d89bd564bca590ac08cf authored almost 4 years ago by Fred Blaise <[email protected]>
Update versions in application files

aa07e41969e6139badd3da85ed4dba4954e7f5a6 authored almost 4 years ago by DefectDojo release bot <[email protected]>
Update new-release-master-into-dev.yml

22a038cdec10047607c5937a58d60a9609f81dab authored almost 4 years ago by Fred Blaise <[email protected]>
Merge pull request #3564 from DefectDojo/release/1.11.0

Release: Merge release into master from: release/1.11.0

b08723ded1491d82910e51810de27963ee6ccca2 authored almost 4 years ago by Fred Blaise <[email protected]>
Update versions in application files

0b61a1c88ed90220f8b7582041d23acaeef14a40 authored almost 4 years ago by DefectDojo release bot <[email protected]>
Add redis transit encryption (#3473)

12984f36819e01f0d26b8ca5f34adc8d5edc6395 authored almost 4 years ago by Karsten Siemer <[email protected]>
Add support for GitLab Dependency Scanning reports (#3534)

72a1b8d022d35aafed33d0c7eeb42915f1d4ce46 authored almost 4 years ago by Guilherme Macedo <[email protected]>
Fix(helm-unittests): add secret key and credential key (#3489)

* refacotor(helm-tests): create the name in the same manner than the other templates
* fix(helm...

0328eb9755c26ffeb13dfcbf3eea4659cce7ac37 authored almost 4 years ago by alles-klar <[email protected]>
Update release-drafter.yml

0c02ef9f0df01ae5637763fe6974ca4d2435f1be authored almost 4 years ago by Fred Blaise <[email protected]>
Update release-drafter.yml

5bd03352a3c1c3513b500ba9feb62483ceba6cd5 authored almost 4 years ago by Fred Blaise <[email protected]>
Update release-drafter.yml

ea8821a1a7f2a5f1659e94a4f9830432046391bd authored almost 4 years ago by Fred Blaise <[email protected]>
Update release-drafter.yml

d374a2ad8a17f457865f3b99127f78b97bddc344 authored almost 4 years ago by Fred Blaise <[email protected]>
Update release-drafter.yml

adding documentation

ab804781dac5dcade232d1ab624de0ac1ae4c1ee authored almost 4 years ago by Fred Blaise <[email protected]>
Update release-drafter.yml

adding apiv2 label

973013a9290508685bdfc5afb5451f5ab3081a6f authored almost 4 years ago by Fred Blaise <[email protected]>
Only mitigate finding if previously active (#3523)

6e34a71ef7c4997d82029d8f5b52d5661fc440a2 authored almost 4 years ago by Fred Blaise <[email protected]>
fix(risk_acceptance): remove hard coded user_id (#3469)

* fix(risk_acceptance): remove hard coded user_id

Code will cause an error if user with id do...

48eaaddabd2bcd4912c882c1266d465494317ca6 authored almost 4 years ago by alles-klar <[email protected]>
Reupload bug fixes (#3531)

* Bugfix for reimport non file selection and multiple endpoints

* Bugfix for reimport non fil...

6bd5600baddc87a888e95f6634c95b7bd9ec055d authored almost 4 years ago by Aaron Weaver <[email protected]>
Fix issue 3527 while importing some Twistlock scans (#3532)

16a7688d198dbf2e520002abe9810d916a3378c4 authored almost 4 years ago by Guilherme Macedo <[email protected]>
(product) metrics: fixes and speedup (#3549)

195cca3f97968fa6b7a3deb2a47c0ff7e2b45b5e authored almost 4 years ago by valentijnscholten <[email protected]>
Test suite and scripts cleanup (#3500)

9c35b41d4127a5db6fc826fe41a9362d6140d8fb authored almost 4 years ago by valentijnscholten <[email protected]>
celery entrypoints: support all settings related mounts (#3545)

b74a77a41604c3c65539ee5b7eb480be1d6ea4b7 authored almost 4 years ago by valentijnscholten <[email protected]>
calendar: speedup and security fix (#3543)

b34e4cc236aa50a4743a29d696043fe59abcdedb authored almost 4 years ago by valentijnscholten <[email protected]>
Add JIRA_Issue in related fields of Finding (#3407)

1599dabb7e7186b0e5bc1e1ca6b449597c25c6eb authored almost 4 years ago by Romain <[email protected]>
calculate sla the same (#3525)

e2c3c1b8e0f999d0c624092550d72e4617145431 authored almost 4 years ago by Fred Blaise <[email protected]>
add note about initializer duration (#3499)

b655d509f9a076e3c226c07a9560247bb02bae67 authored almost 4 years ago by valentijnscholten <[email protected]>
Add missing modifications for SARIF format (#3559)

e37dfe7ac7232df103298dd3c5534e815c450cc0 authored almost 4 years ago by Damien Carol <[email protected]>
Bump pdfmake from 0.1.68 to 0.1.69 in /components (#3558)

Bumps [pdfmake](https://github.com/bpampuch/pdfmake) from 0.1.68 to 0.1.69.
- [Release notes](h...

e75b680be6bf2df05c824dddc835ca7d38ae65da authored almost 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
adaptation to release drafter notes (#3560)

700c2e7f21d65c0d8d046207641cef756b9496d4 authored almost 4 years ago by Fred Blaise <[email protected]>
adaptations (#3561)

b661d7ad90cd4ec6de775a1d68057c50552a4205 authored almost 4 years ago by Fred Blaise <[email protected]>
Use full absolute url in notifications (#3538)

51557d7db6943ff54790bc8fb15df627704ed6c9 authored almost 4 years ago by Marcos Valle <[email protected]>
chore(deps): update rabbitmq:3.8.9 docker digest from 3.8.9 to 3.8.9 (docker-compose.yml) (#3553)

Co-authored-by: Renovate Bot <[email protected]>

2936182d71f39d714bb1e984cf98d579e0f8fcb1 authored almost 4 years ago by renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Bump pygithub from 1.54 to 1.54.1 (#3551)

Bumps [pygithub](https://github.com/PyGithub/PyGithub) from 1.54 to 1.54.1.
- [Release notes](h...

51bad7fb42330ef89cd842141ecae2d1c12719a5 authored almost 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump pytz from 2020.4 to 2020.5 (#3552)

Bumps [pytz](https://github.com/stub42/pytz) from 2020.4 to 2020.5.
- [Release notes](https://g...

138ad494659b517459233b10ef9e0a8d6fc73df1 authored almost 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Various Bug Fixes. Make 'Active' Default On Scan Import Forms (#3521)

* Various Bug Fixes. Make 'Active' Default On Scan Import Forms

* Bug Fixes for Reupload & Dupl...

2095c69bd4092892502df8a55d0a77a6d64b7f3d authored almost 4 years ago by Greg Anderson <[email protected]>
chore(deps): update manusa/actions-setup-minikube action from v2.2.0 to v2.3.0 (.github/workflows/k8s-testing.yml) (#3541)

Co-authored-by: Renovate Bot <[email protected]>

0a1f025f63f80927a33b5a3096e12650ec829c4a authored almost 4 years ago by renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
chore(deps): update mysql:5.7.32 docker digest from 5.7.32 to 5.7.32 (docker-compose.yml) (#3540)

Co-authored-by: Renovate Bot <[email protected]>

f15f8438fded5c740aae86fe4054771f3447d0ee authored almost 4 years ago by renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Add PyJWT to requirements.txt (#3536)

* Add PyJWT to requirements.txt

PyJWT 2.0.0 renamed some of the exceptions, which breaks soci...

3e6369ae657388f694278211718ff4f5f06c762b authored almost 4 years ago by Jake <[email protected]>
product list: fix last assessed displaying (#3493)

ab53f26aefc034656d55f5e5f9eb0761cb8ac29c authored about 4 years ago by valentijnscholten <[email protected]>
[fix/helm-rabbitMQ]: Fix incorrect YAML key for RabbitMQ chart (#3508)

* fix: Remove tailing whitespaces
* fix: RabbitMQ chart now using replicaCount (https://github....

09dac545e5e7967b2819ded58b0d4984b3317087 authored about 4 years ago by Nate Wangsutthitham <[email protected]>
Merge pull request #3519 from DefectDojo/master

k8s testing workflow: remove docker secrets

d61bf4c471225fc34607c7d5d443d6b25c6f1f05 authored about 4 years ago by valentijnscholten <[email protected]>
Update k8s-testing.yml

06e657b9b628a6fc36d41aa466ffca32a497ef14 authored about 4 years ago by valentijnscholten <[email protected]>
Merge pull request #3518 from valentijnscholten/safer-prs-gha

k8s testing workflow: remove docker secrets

9cfe1b33ac17bf763c9c9fe20b6218c37a14e038 authored about 4 years ago by valentijnscholten <[email protected]>
k8s testing workflow: remove docker secrets

54f394c85c4a772c8b842012e57af622620bf641 authored about 4 years ago by Valentijn Scholten <[email protected]>
Merge remote-tracking branch 'upstream/master' into safer-prs-gha

794dfbab327beb9b720c06c22d6fb41aff081d64 authored about 4 years ago by Valentijn Scholten <[email protected]>
Merge pull request #3517 from DefectDojo/master

Update k8s-testing.yml

688045877bf5c0132ef8b1576b3603a2422bcc0b authored about 4 years ago by valentijnscholten <[email protected]>
Update k8s-testing.yml

54bd6d43673b7e658a33148e4955bf366509db60 authored about 4 years ago by valentijnscholten <[email protected]>
Merge pull request #3464 from damiencarol/add_sarif_importer

Importer: Add OASIS SARIF format #3445

ee8b0bdc87b47594c045baa6ecbc909ed70dddb3 authored about 4 years ago by valentijnscholten <[email protected]>