Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): bump the all group with 3 updates #130

Closed
wants to merge 1 commit into from
Closed

chore(deps): bump the all group with 3 updates #130

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 4, 2024
edited
Loading

Bumps the all group with 3 updates: infrahub-sdk, hypothesis and ruff.

Updates infrahub-sdk from 0.14.1 to 1.0.0

Release notes

Sourced from infrahub-sdk's releases.

Infrahub - v1.0.0

Release 1.0

We are thrilled to announce the general availability release of Infrahub, version 1.0!

We greatly appreciate all the time and efforts of our dedicated community of developers and beta testers!

Main changes

Infrahub 1.0 is focused on bringing Infrahub to even more organizations and equipping them with a production-ready solution to their infrastructure automation challenges.

There are four key features and changes in Infrahub version 1.0 as outlined below:

  • SSO login capabilities (OIDC/OAUTH2)
  • A new permission framework
  • Performance enhancements to version control actions (diff/merge/rebase)
  • An exciting UI and navigation redesign

In addition to these, there have been many bug-fixes and quality-of-life enhancements shown in the detailed changelog.

Single sign-on and user permissions

Early in the development of Infrahub, we consciously decided to focus on the groundbreaking and critical features that make Infrahub a uniquely world-class Source of Truth. As a result, we set aside some standard enterprise features, such as Single Sign-On, until later, knowing that they would be straightforward to implement in the system.

As we enter a new era with Infrahub 1.0, we have focused on rounding out the enterprise-grade features that our customers require. For example, we added Single Sign-On (SSO) integrations for OIDC/Oauth 2.0 and implemented a robust and granular permissions system. These two features combine to give organizations a level of control that allows them to trust their mission-critical data in Infrahub and bring even closer integration with existing enterprise systems and workflows.

SSO

The new OIDC/OAuth2 capabilities, tested and functioning in the field with many Identity Providers such as Keycloak, Authentik, and Google Auth, allow organizations to manage their users and groups centrally instead of in the Infrahub UI. Subsequent releases of Infrahub will soon include validated support for additional Identity Providers and other authentication methods (such as LDAP).

This functionality goes hand in hand with the feature we will discuss next: our new User Permissions structure.

Documentation

User permissions

As users store more data in Infrahub and more teams interact with that data, it becomes crucial to protect it from accidental changes. By implementing a granular role-based permission system, Infrahub allows organizations to prevent unauthorized changes to the data behind critical infrastructure automation efforts.

In the permission structure introduced in Infrahub 1.0, Users are added to Groups, Groups are given Roles, and Permissions are finally allocated to those Roles. Permissions come in two fundamental varieties: Global Permissions and Object Permissions.

... (truncated)

Changelog

Sourced from infrahub-sdk's changelog.

1.0.0 - 2024-10-30

Removed

  • Remove previously deprecated GET API endpoint "/api/schema/" (#3884)

Deprecated

  • Marked CoreAccount.role as deprecated Due to the new permissions framework the account roles "admin" / "read-only" / "read-write" are deprecated and will be removed in Infrahub 1.1

Added

  • Reworked branch selector:

    • Redesigned the UI
    • Added filter for branch
    • Improved accessibility & keyboard navigation
    • Improved UX on new branch form
    • Added quick link to view all branches

  • Add support to sign in with OAuth2 and Open ID Connect (OIDC) (#1568)

  • Add internal HTTP adapter to allow for generic access from Infrahub (#3302)

  • Add support to search a node by human friendly ID within a GraphQL query (#3908)

  • Added link to our Discord server in the account menu

  • Added permissions framework for global and object kind level permissions

    In this first iteration the object permissions are applied to nodes as a whole, in upcoming versions it will be possible to define attribute level permissions as well.

  • New permissions system in UI:

    • Implemented CRUD views for managing accounts, groups, roles, and permissions
    • Updated all components to support new permission system
    • Added dynamic message display according to user access levels

Fixed

  • The infrahub-git agent service has been renamed to task-worker in docker compose and the command to start it has been updated as well (#1075)
  • Add ability to import repositories with default branch other than 'main' (#3435)
  • Disable approve/merge/close buttons for merged Proposed Changes (#3495)
  • Fixed regex validation for List type attributes (#3929)
  • Allow users to run artifacts and generators on nodes without name attribute (#4062)
  • In the schema, properly delete inherited attribute and relationship on Node when the original attribute or relationship are being deleted on the Generic (#4301)
  • "Retry All" button for checks is bigger (#4315)
  • Add a size restriction on common attribute kinds. Only TextArea and JSON support large values (#4432)
  • The HFID of a related node is properly returned via GraphQL in all scenarios (#4482)
  • Add full validation to BranchMerge and BranchRebase mutations (#4595)
  • Report user-friendly error for invalid uniqueness_constraints when loading schemas (#4677)
  • Fixed pagination query for nodes with order_by clause using non unique attributes (#4700)
  • Fixed schema migration when an attribute previously present on a node is added back (#4727)
  • Add order_weight property to multiple attributes and relationships in the demo schema to improve how some models are displayed in the list views
  • Changed the Python SDK connection timeout to 60s
  • Fix metric missing the query name in Prometheus data
  • Fixes an issue where docker compose would output ANSI control characters that don't support it

... (truncated)

Commits
  • 716bcb2 chore: update docker-compose and helm chart
  • 59dc9fa Merge pull request #4792 from opsmill/release-1.0
  • a719476 Merge pull request #4794 from opsmill/bdl-20241030-stable-merge-conflicts
  • 45113dc Merge branch 'stable' into bdl-20241030-stable-merge-conflicts
  • 3539bf1 v1.0.0 release prep (#4764)
  • f9b4139 edited creating a schema page (#4785)
  • 992ce06 Merge pull request #4786 from opsmill/wvd-20241030-restructure-device-managem...
  • 4a46e5d fixed race condition on test
  • 6868028 fix test
  • 71b7e4c update e2e test
  • Additional commits viewable in compare view

Updates hypothesis from 6.115.5 to 6.116.0

Release notes

Sourced from hypothesis's releases.

Hypothesis for Python - version 6.116.0

Hypothesis now detects if it is running on a CI server and provides better default settings for running on CI in this case.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.115.6

This patch changes the priority order of pretty printing logic so that a user provided pretty printing method will always be used in preference to e.g. printing it like a dataclass.

The canonical version of these notes (with links) is on readthedocs.

Commits
  • d16b183 Bump hypothesis-python version to 6.116.0 and update changelog
  • 4a702a9 Merge pull request #4152 from HypothesisWorks/DRMacIver/ci-config
  • 13c3785 Default to CI-appropriate settings when running on CI
  • 8d88e01 Bump hypothesis-python version to 6.115.6 and update changelog
  • 3c128e7 Merge pull request #4150 from tybug/fix-deploy-docs
  • 3b088c0 simplify
  • 4b9d34e proper bearer token format
  • 9880b85 only build changes.rst when parsing changelog
  • 21502ba Merge pull request #4148 from HypothesisWorks/DRMacIver/use-provided-pretty
  • 558db3c Always use a repr_pretty if provided
  • See full diff in compare view

Updates ruff from 0.7.1 to 0.7.2

Release notes

Sourced from ruff's releases.

0.7.2

Release Notes

Preview features

  • Fix formatting of single with-item with trailing comment (#14005)
  • [pyupgrade] Add PEP 646 Unpack conversion to * with fix (UP044) (#13988)

Rule changes

  • Regenerate known_stdlibs.rs with stdlibs 2024.10.25 (#13963)
  • [flake8-no-pep420] Skip namespace package enforcement for PEP 723 scripts (INP001) (#13974)

Server

  • Fix server panic when undoing an edit (#14010)

Bug fixes

  • Fix issues in discovering ruff in pip build environments (#13881)
  • [flake8-type-checking] Fix false positive for singledispatchmethod (TCH003) (#13941)
  • [flake8-type-checking] Treat return type of singledispatch as runtime-required (TCH003) (#13957)

Documentation

  • [flake8-simplify] Include caveats of enabling if-else-block-instead-of-if-exp (SIM108) (#14019)

Install ruff 0.7.2

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/ruff/releases/download/0.7.2/ruff-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy ByPass -c "irm https://github.com/astral-sh/ruff/releases/download/0.7.2/ruff-installer.ps1 | iex"

Download ruff 0.7.2

File Platform Checksum
ruff-aarch64-apple-darwin.tar.gz Apple Silicon macOS checksum
ruff-x86_64-apple-darwin.tar.gz Intel macOS checksum
ruff-aarch64-pc-windows-msvc.zip ARM64 Windows checksum
ruff-i686-pc-windows-msvc.zip x86 Windows checksum
ruff-x86_64-pc-windows-msvc.zip x64 Windows checksum

... (truncated)

Changelog

Sourced from ruff's changelog.

0.7.2

Preview features

  • Fix formatting of single with-item with trailing comment (#14005)
  • [pyupgrade] Add PEP 646 Unpack conversion to * with fix (UP044) (#13988)

Rule changes

  • Regenerate known_stdlibs.rs with stdlibs 2024.10.25 (#13963)
  • [flake8-no-pep420] Skip namespace package enforcement for PEP 723 scripts (INP001) (#13974)

Server

  • Fix server panic when undoing an edit (#14010)

Bug fixes

  • Fix issues in discovering ruff in pip build environments (#13881)
  • [flake8-type-checking] Fix false positive for singledispatchmethod (TCH003) (#13941)
  • [flake8-type-checking] Treat return type of singledispatch as runtime-required (TCH003) (#13957)

Documentation

  • [flake8-simplify] Include caveats of enabling if-else-block-instead-of-if-exp (SIM108) (#14019)
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the all group with 3 updates
afe023a 
Bumps the all group with 3 updates: [infrahub-sdk](https://github.com/opsmill/infrahub), [hypothesis](https://github.com/HypothesisWorks/hypothesis) and [ruff](https://github.com/astral-sh/ruff).


Updates `infrahub-sdk` from 0.14.1 to 1.0.0
- [Release notes](https://github.com/opsmill/infrahub/releases)
- [Changelog](https://github.com/opsmill/infrahub/blob/develop/CHANGELOG.md)
- [Commits](opsmill/infrahub@infrahub-v0.14.1...infrahub-v1.0.0)

Updates `hypothesis` from 6.115.5 to 6.116.0
- [Release notes](https://github.com/HypothesisWorks/hypothesis/releases)
- [Commits](HypothesisWorks/hypothesis@hypothesis-python-6.115.5...hypothesis-python-6.116.0)

Updates `ruff` from 0.7.1 to 0.7.2
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.7.1...0.7.2)

---
updated-dependencies:
- dependency-name: infrahub-sdk
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all
- dependency-name: hypothesis
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: ruff
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: all
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the changes/patch Maintenance tasks label Nov 4, 2024
@BeArchiTek
Copy link
Contributor

@dependabot rebase

@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Nov 4, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Nov 4, 2024
@dependabot dependabot bot deleted the dependabot/pip/develop/all-87187fa87d branch November 4, 2024 15:22
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
changes/patch Maintenance tasks
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@BeArchiTek