Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Release: Merge back 2.39.2 into bugfix from: master-into-bugfix/2.39.2-2.40.0-dev #11113

Merged
merged 3 commits into from
Oct 21, 2024
Merged

Release: Merge back 2.39.2 into bugfix from: master-into-bugfix/2.39.2-2.40.0-dev #11113

merged 3 commits into from
Oct 21, 2024

Conversation

github-actions[bot]
Copy link
Contributor

Release triggered by rossops

DefectDojo release bot and others added 3 commits October 21, 2024 15:05
@dryrunsecurity DryRunSecurity
Copy link

dryrunsecurity bot commented Oct 21, 2024
edited
Loading

DryRun Security Summary

The provided code changes consist of a minor version update to the dojo/__init__.py file and an update to the Helm chart for the DefectDojo application, both of which appear to be routine updates that do not raise any immediate security concerns.

Expand for full summary

Summary:

The provided code changes consist of two separate updates:

  1. A minor version update to the dojo/__init__.py file, where the version number has been updated from "2.39.1" to "2.39.2". This type of version update typically includes bug fixes, improvements, or small feature additions, and does not appear to introduce any significant security concerns.

  2. An update to the Helm chart for the DefectDojo application, where the version field in the Chart.yaml file has been updated from 1.6.155-dev to 1.6.156-dev. This is a routine change to keep the Helm chart up-to-date with the latest versions of the underlying components. While this change does not directly impact the security of the DefectDojo application, it is important to regularly review the dependencies and configurations of the Helm chart to ensure that they are up-to-date and secure.

Overall, these code changes appear to be routine updates and do not raise any immediate security concerns. However, it is always important to review the release notes or change logs to understand the nature of the changes and any potential security implications.

Files Changed:

  1. dojo/__init__.py: The version number has been updated from "2.39.1" to "2.39.2". This is a minor version update that typically includes bug fixes, improvements, or small feature additions, and does not appear to introduce any significant security concerns.
  2. helm/defectdojo/Chart.yaml: The version field has been updated from 1.6.155-dev to 1.6.156-dev, indicating a new version of the Helm chart. This is a routine change to keep the Helm chart up-to-date with the latest versions of the underlying components. While this change does not directly impact the security of the DefectDojo application, it is important to regularly review the dependencies and configurations of the Helm chart to ensure that they are up-to-date and secure.

Code Analysis

We ran 9 analyzers against 2 files and 0 analyzers had findings. 9 analyzers had no findings.

Riskiness

🟢 Risk threshold not exceeded.

View PR in the DryRun Dashboard.

@rossops rossops closed this Oct 21, 2024
@rossops rossops reopened this Oct 21, 2024
@github-actions github-actions bot added the helm label Oct 21, 2024
@rossops rossops merged commit 9d95977 into bugfix Oct 21, 2024
70 of 71 checks passed
@rossops rossops deleted the master-into-bugfix/2.39.2-2.40.0-dev branch October 21, 2024 16:00
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
helm
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@rossops