Skip to content

Release v10.5.2#2784

Merged
jtherrmann merged 18 commits intomainfrom
develop
May 30, 2025
Merged

Release v10.5.2#2784
jtherrmann merged 18 commits intomainfrom
develop

Conversation

@williamh890
Copy link
Copy Markdown
Contributor

@williamh890 williamh890 commented May 30, 2025

No description provided.

jtherrmann and others added 16 commits May 23, 2025 14:48
@jtherrmann
update deployment docs for EDC
4b5c9f8
@jtherrmann
revise edc disclaimer
816803f
@jtherrmann
revise
e290c20
@jtherrmann
formatting
2045d09
@jtherrmann
clarify EDC uat/prod for SSL
b5b56c1
@jtherrmann
link to edc sandbox api article
c97bcc3
@dependabot
Bump ASFHyP3/actions from 0.19.0 to 0.20.0
038a254 
Bumps [ASFHyP3/actions](https://github.com/asfhyp3/actions) from 0.19.0 to 0.20.0.
- [Release notes](https://github.com/asfhyp3/actions/releases)
- [Changelog](https://github.com/ASFHyP3/actions/blob/develop/CHANGELOG.md)
- [Commits](ASFHyP3/actions@v0.19.0...v0.20.0)

---
updated-dependencies:
- dependency-name: ASFHyP3/actions
  dependency-version: 0.20.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@jtherrmann
Group dependabot updates
db02744
@jtherrmann
Merge pull request #2781 from ASFHyP3/dependabot-groups
d2bcd6d 
Group dependabot updates
@dependabot
Bump the pip-deps group with 7 updates
52ee636 
Bumps the pip-deps group with 7 updates:

| Package | From | To |
| --- | --- | --- |
| [jsonschema](https://github.com/python-jsonschema/jsonschema) | `4.23.0` | `4.24.0` |
| [boto3](https://github.com/boto/boto3) | `1.38.19` | `1.38.24` |
| [moto[dynamodb]](https://github.com/getmoto/moto) | `5.1.4` | `5.1.5` |
| [ruff](https://github.com/astral-sh/ruff) | `0.11.10` | `0.11.11` |
| [setuptools](https://github.com/pypa/setuptools) | `80.7.1` | `80.9.0` |
| [cfn-lint](https://github.com/aws-cloudformation/cfn-lint) | `1.35.1` | `1.35.3` |
| [cryptography](https://github.com/pyca/cryptography) | `45.0.2` | `45.0.3` |


Updates `jsonschema` from 4.23.0 to 4.24.0
- [Release notes](https://github.com/python-jsonschema/jsonschema/releases)
- [Changelog](https://github.com/python-jsonschema/jsonschema/blob/main/CHANGELOG.rst)
- [Commits](python-jsonschema/jsonschema@v4.23.0...v4.24.0)

Updates `boto3` from 1.38.19 to 1.38.24
- [Release notes](https://github.com/boto/boto3/releases)
- [Commits](boto/boto3@1.38.19...1.38.24)

Updates `moto[dynamodb]` from 5.1.4 to 5.1.5
- [Release notes](https://github.com/getmoto/moto/releases)
- [Changelog](https://github.com/getmoto/moto/blob/master/CHANGELOG.md)
- [Commits](getmoto/moto@5.1.4...5.1.5)

Updates `ruff` from 0.11.10 to 0.11.11
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.11.10...0.11.11)

Updates `setuptools` from 80.7.1 to 80.9.0
- [Release notes](https://github.com/pypa/setuptools/releases)
- [Changelog](https://github.com/pypa/setuptools/blob/main/NEWS.rst)
- [Commits](pypa/setuptools@v80.7.1...v80.9.0)

Updates `cfn-lint` from 1.35.1 to 1.35.3
- [Release notes](https://github.com/aws-cloudformation/cfn-lint/releases)
- [Changelog](https://github.com/aws-cloudformation/cfn-lint/blob/main/CHANGELOG.md)
- [Commits](aws-cloudformation/cfn-lint@v1.35.1...v1.35.3)

Updates `cryptography` from 45.0.2 to 45.0.3
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](pyca/cryptography@45.0.2...45.0.3)

---
updated-dependencies:
- dependency-name: jsonschema
  dependency-version: 4.24.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip-deps
- dependency-name: boto3
  dependency-version: 1.38.24
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-deps
- dependency-name: moto[dynamodb]
  dependency-version: 5.1.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-deps
- dependency-name: ruff
  dependency-version: 0.11.11
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-deps
- dependency-name: setuptools
  dependency-version: 80.9.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip-deps
- dependency-name: cfn-lint
  dependency-version: 1.35.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-deps
- dependency-name: cryptography
  dependency-version: 45.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-deps
...

Signed-off-by: dependabot[bot] <support@github.com>
@jtherrmann
Merge pull request #2782 from ASFHyP3/dependabot/pip/pip-deps-797ff3aeea
5be8a29 
Bump the pip-deps group with 7 updates
@jtherrmann
Merge pull request #2780 from ASFHyP3/dependabot/github_actions/ASFHy…
8daca3d 
…P3/actions-0.20.0

Bump ASFHyP3/actions from 0.19.0 to 0.20.0
@jtherrmann
Merge branch 'develop' into edc-deployment-docs
ed3e05c
@jtherrmann
Merge pull request #2773 from ASFHyP3/edc-deployment-docs
12539fe 
Update deployment docs for EDC
@williamh890
Update opera rtc to use ghcr image
669679e
@williamh890
Merge pull request #2783 from ASFHyP3/opera-rtc-ghcr
4d0c32f 
Update opera rtc to use ghcr image
@williamh890 williamh890 added the patch Bump the patch version number of this project label May 30, 2025
@williamh890 williamh890 requested review from a team as code owners May 30, 2025 19:39
github-advanced-security[bot]
github-advanced-security AI found potential problems May 30, 2025
View reviewed changes
Comment thread .github/workflows/changelog.yml
jobs:
call-changelog-check-workflow:
uses: ASFHyP3/actions/.github/workflows/reusable-changelog-check.yml@v0.19.0
uses: ASFHyP3/actions/.github/workflows/reusable-changelog-check.yml@v0.20.0

Check warning

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block, using the following as a minimal starting point: {}

Copilot Autofix

AI 11 months ago

To fix the issue, we need to add a permissions block to the workflow. This block should specify the least privileges required for the workflow to function correctly. Since the workflow is calling a reusable workflow for changelog checks, it likely only needs read access to the repository contents. We will add permissions: contents: read at the root level of the workflow to apply this restriction to all jobs.

Suggested changeset 1
.github/workflows/changelog.yml

Autofix patch

Autofix patch
Run the following command in your local git repository to apply this patch
cat << 'EOF' | git apply
diff --git a/.github/workflows/changelog.yml b/.github/workflows/changelog.yml
--- a/.github/workflows/changelog.yml
+++ b/.github/workflows/changelog.yml
@@ -2,2 +2,5 @@
 
+permissions:
+  contents: read
+
 on:
EOF
@@ -2,2 +2,5 @@

permissions:
contents: read

on:
Copilot is powered by AI and may make mistakes. Always verify output.
Unable to commit as this autofix suggestion is now outdated
Comment thread .github/workflows/labeled-pr.yml
jobs:
call-labeled-pr-check-workflow:
uses: ASFHyP3/actions/.github/workflows/reusable-labeled-pr-check.yml@v0.19.0
uses: ASFHyP3/actions/.github/workflows/reusable-labeled-pr-check.yml@v0.20.0

Check warning

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block, using the following as a minimal starting point: {}

Copilot Autofix

AI 11 months ago

To fix the issue, add a permissions block to the workflow to explicitly define the least privileges required for the GITHUB_TOKEN. Since the workflow interacts with pull requests (e.g., labeled, unlabeled, synchronized), it likely requires contents: read and pull-requests: write permissions. These permissions should be added at the root level of the workflow to apply to all jobs unless overridden.

Suggested changeset 1
.github/workflows/labeled-pr.yml

Autofix patch

Autofix patch
Run the following command in your local git repository to apply this patch
cat << 'EOF' | git apply
diff --git a/.github/workflows/labeled-pr.yml b/.github/workflows/labeled-pr.yml
--- a/.github/workflows/labeled-pr.yml
+++ b/.github/workflows/labeled-pr.yml
@@ -2,2 +2,6 @@
 
+permissions:
+  contents: read
+  pull-requests: write
+
 on:
EOF
@@ -2,2 +2,6 @@

permissions:
contents: read
pull-requests: write

on:
Copilot is powered by AI and may make mistakes. Always verify output.
Unable to commit as this autofix suggestion is now outdated
@github-actions
Copy link
Copy Markdown

github-actions Bot commented May 30, 2025
edited by jtherrmann
Loading

Developer checklist

  • Indicated the level of changes to this package by affixing one of these labels:
    • major -- Major changes to the API that may break current workflows
    • minor -- Minor changes to the API that do not break current workflows
    • patch -- Patches and bugfixes for the current version that do not break current workflows
    • bumpless -- Changes to documentation, CI/CD pipelines, etc. that don't affect the software's version
  • (If applicable) Updated the dependencies and indicated any downstream changes that are required
  • Added/updated documentation for these changes
  • Added/updated tests for these changes
  • Verified changes in test deployment and summarized results, e.g. in PR description or comments on the related issue(s)
  • If the step function code has changed, have you drained the job queue before merging?
    • For example, if the interface for a Lambda function has changed to expect different input,
      then currently running jobs (which use the old step function definition) will call the new
      function with the old input. So we must drain the job queue before deployment, so that the new
      function is only called by the new step function definition.

Reviewer checklist

  • Have all dependencies been updated?
  • Is the level of changes labeled appropriately?
  • Are all the changes described appropriately in CHANGELOG.md?
  • Has the documentation been adequately updated?
  • Are the tests adequate?
  • Have the changes been verified in the test deployment?

@jtherrmann jtherrmann temporarily deployed to hyp3-lavas-test May 30, 2025 19:44 — with GitHub Actions Inactive
@jtherrmann jtherrmann temporarily deployed to hyp3-tibet-jpl-test May 30, 2025 19:44 — with GitHub Actions Inactive
@jtherrmann jtherrmann temporarily deployed to hyp3-a19-jpl-test May 30, 2025 19:44 — with GitHub Actions Inactive
@jtherrmann jtherrmann temporarily deployed to hyp3-its-live-test May 30, 2025 19:44 — with GitHub Actions Inactive
@jtherrmann jtherrmann merged commit 1165a14 into main May 30, 2025
23 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jtherrmann jtherrmann jtherrmann approved these changes

Assignees

No one assigned

Labels

patch Bump the patch version number of this project

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@williamh890 @jtherrmann @github-advanced-security