Ecosyste.ms: OpenCollective

An open API service for software projects hosted on Open Collective.

github.com/DefectDojo/django-DefectDojo

DevSecOps, ASPM, Vulnerability Management. All on one platform.
https://github.com/DefectDojo/django-DefectDojo

Fix import: binary analysis in MobSF scans #3134 (#3429)

56be9ec1ce4b893d492cd205322da6009807ca3f authored about 4 years ago by Damien Carol <[email protected]>
reports: fix performance and small bugs (#3432)

1a8f69d22b9bf5284eeb1835804154d6ca26064f authored about 4 years ago by valentijnscholten <[email protected]>
chore(deps): update rabbitmq:3.8.9 docker digest to 39a4fca (docker-compose.yml) (#3430)

Co-authored-by: Renovate Bot <[email protected]>

7091953e0462d5d0b25565b3c14bd4a3cfe0764e authored about 4 years ago by renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
celery imports for dojo.tools.tool_issue_updater (#3414)

* celery imports for dojo.tools.tool_issue_updater

* Update tool_issue_updater.py

Co-autho...

3f1e59a207a38b142a4cb367ed86ab13413b38a7 authored about 4 years ago by valentijnscholten <[email protected]>
Add duplicate finding support to API v2. (#3325)

* Add duplicate finding APIs.

* Add unit tests for duplicate functionality.

Co-authored-by...

e1f0b9d12cdf105e1d005f07aa5789a96fa925aa authored about 4 years ago by Ian Walton <[email protected]>
[feat/login-form] Allowing login forms to be hidden (#3423)

* feat(Login): Allowing login form to be hidden
* feat(Login): Make SHOW_LOGIN_FORM configurabl...

58643e6211cf05888592df906df5c0c2e174f613 authored about 4 years ago by Nate Bhurinat Wangsutthitham <[email protected]>
[APIv2] Update put semantic and doc for endpoint /finding/{id}/metadata (#3408)

* Improve doc and change put semantic to be update or create

* Change error message for creat...

997310cea3dae20863cf58738c16603fceecad8d authored about 4 years ago by Romain <[email protected]>
Fix finding export for non-staff users. (#3286)

Co-authored-by: Ian Walton <[email protected]>

0c86175e762b0c8809638d11e404bd6c12e29d09 authored about 4 years ago by Ian Walton <[email protected]>
Merge pull request #3420 from DefectDojo/master-into-dev/1.11.0-dev

Release: Merge 1.10.4 back into dev from: master-into-dev/1.11.0-dev

f910bc1d2944b610f40980f750b8ba801490e975 authored about 4 years ago by valentijnscholten <[email protected]>
update pr name for merge back into dev

5221b9f2884900ac47c370f70e7053a0ee9bd6b0 authored about 4 years ago by valentijnscholten <[email protected]>
update pr name for merge back into dev

7f8a27ea9bc231fbabd97de5e86eb0921270ac07 authored about 4 years ago by valentijnscholten <[email protected]>
Update versions in application files

6aa2c032360a051302b9f605ac2115af6f0bfedf authored about 4 years ago by DefectDojo release bot <[email protected]>
Merge pull request #3419 from DefectDojo/release/1.10.4

Release: Merge release into master from: release/1.10.4

09cf49203aaf4f25533f601da9e47ab3791450f4 authored about 4 years ago by valentijnscholten <[email protected]>
Update versions in application files

aee29736f45c564755b23e9c4aad7c6c51c2d8d7 authored about 4 years ago by DefectDojo release bot <[email protected]>
another bugfix for reports (#3417)

ab6a6f87d3090fe5efd91101542096426d5177c3 authored about 4 years ago by Stefan Fleckenstein <[email protected]>
Update helper.py (#3353)

notification to debug to reduce lots of noise in logs.

Co-authored-by: valentijnscholten <val...

76c072a97c82fc72b1c9f7109be05e723b3753f9 authored about 4 years ago by Fred Blaise <[email protected]>
Merge pull request #3412 from DefectDojo/master-into-dev/1.11.0-dev

Release: Merge back 1.10.3 from: master-into-dev/1.11.0-dev into dev

a368be1bd550a42a2db80fcf8035acc3392f0b51 authored about 4 years ago by valentijnscholten <[email protected]>
Update versions in application files

824bc693b1e6419133bc5743546939e098536cd8 authored about 4 years ago by DefectDojo release bot <[email protected]>
Merge pull request #3411 from DefectDojo/release/1.10.3

Release: Merge release into master from: release/1.10.3

b48df9e1c40ea8f6ef579eeb610026943d644635 authored about 4 years ago by valentijnscholten <[email protected]>
Update versions in application files

768b906a0cdcb576ac319b2a3bd55867afc3b210 authored about 4 years ago by DefectDojo release bot <[email protected]>
security: do not reveal products, product types and findings in metrics and reports to unauthorized users (#3410)

* several issues in metrics and reports

* one user too many

* EndpointFilter with user fro...

ff0583ed0949db52285fa7793b61436fd863ef6b authored about 4 years ago by Stefan Fleckenstein <[email protected]>
Merge pull request #3406 from DefectDojo/dependabot/pip/dev/django-debug-toolbar-3.2

build(deps): bump django-debug-toolbar from 3.1.1 to 3.2

070ba1026dfa846e307947b6595d5e4554d1716f authored about 4 years ago by Fred Blaise <[email protected]>
build(deps): bump django-debug-toolbar from 3.1.1 to 3.2

Bumps [django-debug-toolbar](https://github.com/jazzband/django-debug-toolbar) from 3.1.1 to 3.2...

6d3ecff76661b420d85333d50f49ab0eb310b682 authored about 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Merge pull request #3399 from DefectDojo/valentijnscholten-slack

support: make Slack more prominent as first line of support

43142b2e269f86851e5c0c023261f2276bb4f89c authored about 4 years ago by Greg Anderson <[email protected]>
Merge pull request #3404 from mgm-sp/close-engagement-error

Fix Internal Server Error when closing engagements

7eab116bd4aadb933947fe27eac7661ad4f11cb1 authored about 4 years ago by Greg Anderson <[email protected]>
Fix Internal Server Error when closing engagements

bba8d7a774fc983066ff65065e84fc16b8a1a590 authored about 4 years ago by Robert Knauer <[email protected]>
Dockerfile: don't upgrade pip (#3394)

* Dockerfile: don't upgrade pip

* Dockerfile: don't upgrade pip

* Update Dockerfile.django...

22841d6527f8ffc18fa40f10aac2f019eb5814f0 authored about 4 years ago by valentijnscholten <[email protected]>
Adding volume for threat image in dev (#3374)

* Adding volume for threat image in dev

* Adding volume for threat image in dev

Co-authore...

cd201b1bb7c15c84c6e6c70222c44598f15a33cf authored about 4 years ago by Sever <[email protected]>
Include local_settings in celery containers if present (#3386)

* include extra_settings in celery containers

* copy local_settings if present

f645abce43f5fe6b36719cc7a825f1ca87897797 authored about 4 years ago by Fred Blaise <[email protected]>
Update requirements.lock (#3391)

024211890ced8c0d8606e41e89f3b7d4052b2100 authored about 4 years ago by Fred Blaise <[email protected]>
Remove comment to fix #3392 (#3393)

* Remove comment to fix #3392

* Re-add comment after the uwsgi command

Co-authored-by: Ber...

2365368932f712e845f1a9cfa8d8455e9c720170 authored about 4 years ago by bgoareguer <[email protected]>
Update manusa/actions-setup-minikube action from v2.0.1 to v2.1.0 (.github/workflows/k8s-testing.yml) (#3365)

Co-authored-by: Renovate Bot <[email protected]>

503e35006cf112ac3e593ea9d076cd278f9b132d authored about 4 years ago by renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
build(deps): bump busybox from 1.31.1-musl to 1.32.0-musl (#3396)

Bumps busybox from 1.31.1-musl to 1.32.0-musl.

Signed-off-by: dependabot[bot] <support@github...

c9de4f9bd79a1ba8602d6167d3bc18d9ad4f9d71 authored about 4 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Update bug_report.md

b6fe3aa4e8ee77128ffabc2a39766580a1ce6d83 authored about 4 years ago by valentijnscholten <[email protected]>
Update README.md

e626bd7fafa3f84c4d7898660ccede5da426d6ae authored about 4 years ago by valentijnscholten <[email protected]>
Make Slack more prominent as support channel

779201b078cabf919797a6452ed20c24eddc312a authored about 4 years ago by valentijnscholten <[email protected]>
build(deps): bump pygithub from 1.53 to 1.54 (#3372)

Bumps [pygithub](https://github.com/PyGithub/PyGithub) from 1.53 to 1.54.
- [Release notes](htt...

f13903e978b00f178d43034b5216b40fff6e3fe7 authored about 4 years ago by dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
build(deps): bump nginx from 1.19.4-alpine to 1.19.5-alpine (#3373)

Bumps nginx from 1.19.4-alpine to 1.19.5-alpine.

Signed-off-by: dependabot-preview[bot] <supp...

4b18874f858555cc74a9cf0137559262c6740d0d authored about 4 years ago by dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
build(deps): bump datatables.net-colreorder in /components (#3389)

Bumps [datatables.net-colreorder](https://github.com/DataTables/Dist-DataTables-ColReorder) from...

ec858acd18a3f3d5c0e9a4f5d004195fac5586b1 authored about 4 years ago by dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Merge pull request #3395 from DefectDojo/dependabot/add-v2-config-file

Update Dependabot config file

6bcdb77e5fed6449aa31a143bb53f9a8d43c3dc6 authored about 4 years ago by valentijnscholten <[email protected]>
Update Dependabot config file

4563179bc55d63b5480739f49e079e6063580d43 authored about 4 years ago by dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Merge pull request #3390 from mgm-sp/apiv2-testtypes-filter

APIv2: allow filtering of test types by name

7f6efcf2c920528c724d3176cf30fcfca8cca154 authored about 4 years ago by Fred Blaise <[email protected]>
APIv2: allow filtering of test types by name

20edb816b60d7410bc483450dc5bf7ffb727de70 authored about 4 years ago by Robert Knauer <[email protected]>
chore(deps): update rabbitmq:3.8.9 docker digest to e5f0744 (docker-compose.yml) (#3326)

Co-authored-by: Renovate Bot <[email protected]>

477ee0b4c5470f66e851503dcdffe41f4a6822d4 authored about 4 years ago by renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Merge pull request #3383 from DefectDojo/master

GHA: disable login for PR related workflows (#3382)

5ad2a1d787df374eb34e7d7489066cc0a4ae5eca authored about 4 years ago by valentijnscholten <[email protected]>
GHA: disable login for PR related workflows (#3382)

48512cdf77a0ce0c308f13517126171cead6e884 authored about 4 years ago by valentijnscholten <[email protected]>
Merge pull request #3381 from DefectDojo/master-into-dev/1.11.0-dev/2020-11-30T17h55m34s

Release: Merge back master into dev from: master-into-dev/1.11.0-dev/2020-11-30T17h55m34s

0f24e16558758d3d1cb6e57296fecfd9d29ac560 authored about 4 years ago by valentijnscholten <[email protected]>
Update versions in application files

fa5bfe54a9cd719537361591c0e1748cdde9e3d5 authored about 4 years ago by DefectDojo release bot <[email protected]>
Update new-release-master-into-dev.yml

952c314c007587a9ef53ce8f5101fb8765144e09 authored about 4 years ago by valentijnscholten <[email protected]>
Update new-release-master-into-dev.yml

814b173e0ce667da9cdbf56535c40049749d0f85 authored about 4 years ago by valentijnscholten <[email protected]>
Update new-release-master-into-dev.yml

18baffacdf7bdcfbbd0c84c2f9e7050b3f5cb588 authored about 4 years ago by valentijnscholten <[email protected]>
Merge pull request #3380 from DefectDojo/release/1.10.2

Release: Merge release into master from: release/1.10.2

c7ac4a54ac1abc61aec41051d61da33970d347f9 authored about 4 years ago by valentijnscholten <[email protected]>
Update versions in application files

4eddaf136a01e48d75622580de810aada303de23 authored about 4 years ago by DefectDojo release bot <[email protected]>
pip: use old legacy resolver (#3379)

4534831aac67a37f2ced63fc04ffd3ac73cc95a9 authored about 4 years ago by valentijnscholten <[email protected]>
master into dev: workflow updates (#3377)

* Update integration-tests.yml

* Update integration-tests.yml

eb3706183a08965f6216a36ed77b83f356ffb680 authored about 4 years ago by valentijnscholten <[email protected]>
Update integration-tests.yml

f64f12ff7ce3fabe102e8a1df7b38dbe4026a086 authored about 4 years ago by valentijnscholten <[email protected]>
Update integration-tests.yml

09942839ac18746cdfe47555b59b10a11b4a5aae authored about 4 years ago by valentijnscholten <[email protected]>
Merge pull request #3338 from DefectDojo/dependabot/pip/dev/django-slack-5.16.0

build(deps): bump django-slack from 5.15.3 to 5.16.0

6e5c72b7dad93fbc8d1fd816d18ba48a07a242f4 authored about 4 years ago by Fred Blaise <[email protected]>
Merge pull request #3371 from DefectDojo/master-into-dev/1.11.0-dev

Release: Merge back master into dev from: master-into-dev/1.11.0-dev

bc57b8d428173ef9395493985ca50f90eefba269 authored about 4 years ago by Fred Blaise <[email protected]>
Update versions in application files

3631e955a708bee5b1075111e2ebac650b601788 authored about 4 years ago by DefectDojo release bot <[email protected]>
Merge pull request #3370 from DefectDojo/release/1.10.1

Release: Merge release into master from: release/1.10.1

a585f90f38e9984083450e906e30eb65784848c4 authored about 4 years ago by Fred Blaise <[email protected]>
Update versions in application files

a029313c6bbe4054fb4449528f4afb1e442406a3 authored about 4 years ago by DefectDojo release bot <[email protected]>
jira: fix add/edit product jira logic (#3366)

* jira: fix add/edit product jira logic

* jira: fix empty configs for products/engagements

...

83825b47e5ee1a2c4e5327e7005284acddaca01f authored about 4 years ago by valentijnscholten <[email protected]>
build(deps): bump lxml from 4.6.1 to 4.6.2 (#3367)

Bumps [lxml](https://github.com/lxml/lxml) from 4.6.1 to 4.6.2.
- [Release notes](https://githu...

36df9a3512d6bfb68319320e435030d1db59963f authored about 4 years ago by dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
FIX APIv2 : Add exception when parser fail to avoid error 500 without error info (#3362)

* Add exception when parser fail to avoid error 500 without error info
* Add exception when par...

7af9cf878d90081a1a4998c237c4bef11889fc8f authored about 4 years ago by Romain <[email protected]>
build(deps): bump django-slack from 5.15.3 to 5.16.0

Bumps [django-slack](https://github.com/lamby/django-slack) from 5.15.3 to 5.16.0.
- [Release no...

64101886f5c5cb34cf6e5eac54a5f4b769430b0c authored about 4 years ago by dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
build(deps): bump django-extensions from 3.0.9 to 3.1.0 (#3357)

Bumps [django-extensions](https://github.com/django-extensions/django-extensions) from 3.0.9 to ...

18c7d75f11c086877720878313f1901af1312ae2 authored about 4 years ago by dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Fix Nikto Port replacement (#3341)

* Fix nikto port replacement

This fix changes the way the nikto parser removes the ports from...

fbfe3cf41bef4fc89db70b8caeee5a4048d0492c authored about 4 years ago by FallenAtticus <[email protected]>
postgresql helm fix for already existing passwords (#3350)

2abe421daacbf95c69bc88324801f00293395b7a authored about 4 years ago by Fred Blaise <[email protected]>
helm rabbitmq change auth key (#3347)

a6b01ca3ddd69d223daba14be36b2b248cdfe2e3 authored about 4 years ago by Fred Blaise <[email protected]>
Align Qualys WAS severities with the those in the UI (#3348)

* Align Qualys WAS severities with the those in the UI

* update unit test

Co-authored-by: ...

6b1d1a6ed5669fb1219ac457f11a9d5410d6753d authored about 4 years ago by Cody Maffucci <[email protected]>
jira: fix link existing JIRA issues (#3355)

371725f257cdb965a63844abe96fe5257470e43c authored about 4 years ago by valentijnscholten <[email protected]>
Merge pull request #3364 from DefectDojo/master

master -> dev: K8s additional checks 26 11 (#3363)

4295b278f6a62e444f02b74dc96a9961c92a119e authored about 4 years ago by valentijnscholten <[email protected]>
K8s additional checks 26 11 (#3363)

* Commenting branches

* Check for errors

* Returning branches again

* Fix: indent

Co...

1433c1e0d63fba46474abdc7c76cb6ba8f33f4af authored about 4 years ago by Sever <[email protected]>
Aqua parser - correct missing values (#3359)

When a score is 4 or 7, it becomes "Critical" as those values were not caught

c9047e296188038b03a76e3963a239cd2e00b814 authored about 4 years ago by Wadeck Follonier <[email protected]>
Merge pull request #3345 from DefectDojo/master-into-dev/1.11.0-dev

Release: Merge back master into dev from: master-into-dev/1.11.0-dev

20c958643c800decf9e23527c8cf75d43b8fa438 authored about 4 years ago by Cody Maffucci <[email protected]>
Update versions in application files

1b40faa25830b57e8bfc1e1bc711adf769648af5 authored about 4 years ago by DefectDojo release bot <[email protected]>
fix release from dev vs hotfix

3d4d6a1f32b8ecdec1754124609117e0d53b5368 authored about 4 years ago by valentijnscholten <[email protected]>
Merge pull request #3344 from DefectDojo/release/1.10.0

Release: Merge release into master from: release/1.10.0

746f1fa0a94cd0d69fcdc6435ad34fb9ad54db81 authored about 4 years ago by Cody Maffucci <[email protected]>
Update versions in application files

a022af5f3d90fd7c0b0d406b4fdbfd19d781a622 authored about 4 years ago by DefectDojo release bot <[email protected]>
Fix NoneType error on Metrics page (#3323)

ae114d90a87ff69b606cfb04ceb30d82735daa7d authored about 4 years ago by Daniel Naab <[email protected]>
apiv2: set mitigated date if applicable (#3285)

8e1327ecabb26cbf0f812e4050e54e9c20a99d5d authored about 4 years ago by Jonathan Walker (Keenan) <[email protected]>
Acunetix parser: Import all affected items + technical details (#2289)

b9200357a9dceff2224f5fe60b19da64fafee36d authored about 4 years ago by Steeve Barbeau <[email protected]>
Update CONTRIBUTING.md (#3314)

099f468be9419fc544886275a3e0859bf84ac3b8 authored about 4 years ago by Fred Blaise <[email protected]>
Correct filter for findings for non-staff users (#3339)

858924a6626cd828ccecc8cac41c13e3d09da141 authored about 4 years ago by Stefan Fleckenstein <[email protected]>
jira: fix add/edit engagent if no jira config used (#3335)

317881ad4d1bf7677425c170a2ddf131f310faf9 authored about 4 years ago by valentijnscholten <[email protected]>
fix importing aws securityhub timestamp (#3329)

451f80b7a53d73920ae828df185172540e10186e authored about 4 years ago by Fábio Dias <[email protected]>
Update SPONSORING.md (#3316)

5a86f829bcccaf7af1d32e90a19d9a0769182354 authored about 4 years ago by Fred Blaise <[email protected]>
Update MAINTAINERS.md (#3315)

* add breaking changes section

* Update MAINTAINERS.md

d28548f8bf228b74f06f8ef84045f80979171fc0 authored about 4 years ago by Fred Blaise <[email protected]>
Update CONTRIBUTING.md (#3317)

ac2e0308c1939364eeefc03ee427a06310329d2d authored about 4 years ago by Fred Blaise <[email protected]>
Fix Product Metrics template redirect. (#3334)

This was erroneously redirecting for a product's metrics page to
False Positives, not Total Pos...

ce50864cd927464324487d3bc6349508e41218c7 authored about 4 years ago by Alexander Stein <[email protected]>
build(deps): bump django-celery-results from 1.2.1 to 2.0.0 (#3311)

Bumps [django-celery-results](https://github.com/celery/django-celery-results) from 1.2.1 to 2.0...

85f6439ac161e202468e6216604aa4d6dbaf95d2 authored about 4 years ago by dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
jira_webhook: improve error handling (#3321)

* jira_webhook: improve error handling
* jira_webhook: support jira running under a path

ddaaf90d1f5dd7951329e83f46c697b9d99d5f2d authored about 4 years ago by valentijnscholten <[email protected]>
Nikto quick fix (#3318)

* quick fix

15e1cf2c9b8dd102a007bef2b4555eaac20892bc authored about 4 years ago by Fred Blaise <[email protected]>
reimport: don't try to set component_name for absent findings (#3331)

08a25d33d09d488d3a7bb6e3f6723e1c96b7e6f5 authored about 4 years ago by valentijnscholten <[email protected]>
tags: add testcases (#3324)

* tags: add testcases

cf2291762b89f181919ac4042aef9bdc79352583 authored about 4 years ago by valentijnscholten <[email protected]>
Move charts to bitnami's repo (#2859)

* moving rabbitmq and redis to bitnami

da162e32151404f852679307216c4fdcf5a0e64b authored about 4 years ago by Fred Blaise <[email protected]>
chore(deps): update mysql:5.7.32 docker digest to ec6742a (docker-compose.yml) (#3300)

Co-authored-by: Renovate Bot <[email protected]>

e14fe95bc45a3ccf142085511a5be58e76ca7418 authored about 4 years ago by renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
chore(deps): update rabbitmq:3.8.9 docker digest to b05476a (docker-compose.yml) (#3301)

Co-authored-by: Renovate Bot <[email protected]>

a73a6cbd7d78fc01d35a6afba34901c7cd3935ef authored about 4 years ago by renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
debug_toolbar: add known issue + fix for static files (#3309)

48719d2848351be5a59a47e3312686480f4ffa43 authored about 4 years ago by valentijnscholten <[email protected]>