Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Release: Merge back 2.36.1 into bugfix from: master-into-bugfix/2.36.1-2.37.0-dev #10537

Merged
merged 3 commits into from
Jul 8, 2024
Merged

Release: Merge back 2.36.1 into bugfix from: master-into-bugfix/2.36.1-2.37.0-dev #10537

merged 3 commits into from
Jul 8, 2024

Conversation

github-actions[bot]
Copy link
Contributor

@github-actions github-actions bot commented Jul 8, 2024

Release triggered by blakeaowens
DefectDojo release bot and others added 3 commits July 8, 2024 17:19
@dryrunsecurity DryRunSecurity
Copy link

dryrunsecurity bot commented Jul 8, 2024
edited
Loading

DryRun Security Summary

The provided text summarizes a code change to the Helm chart for the DefectDojo application, a web-based tool for managing software vulnerabilities, which includes a minor version update and a review of the chart's dependencies for any security updates or vulnerabilities.

Expand for full summary

Summary:

This code change is an update to the Helm chart for the DefectDojo application, a web-based tool for managing software vulnerabilities. The key changes include a minor version update from 1.6.138-dev to 1.6.139-dev, likely containing bug fixes or small feature improvements. While the Chart.yaml file itself does not directly contain any security-sensitive information, it's important to review the changes carefully, as the DefectDojo application is a security-focused tool. Additionally, the Helm chart includes several dependencies, such as MySQL, PostgreSQL, RabbitMQ, and Redis, which should also be reviewed for any security updates or vulnerabilities that could impact the overall security of the DefectDojo deployment.

Files Changed:

  • helm/defectdojo/Chart.yaml: This file is being updated to reflect a minor version change in the Helm chart, from 1.6.138-dev to 1.6.139-dev. The contents of this file primarily define the metadata and dependencies for the Helm chart, and do not directly contain any security-sensitive information. However, as the DefectDojo application is a security-focused tool, it's important to review the changes to the Helm chart and its dependencies to ensure that they do not introduce any security vulnerabilities or regressions.

Code Analysis

We ran 7 analyzers against 1 file and 0 analyzers had findings. 7 analyzers had no findings.

Riskiness

🟢 Risk threshold not exceeded.

View PR in the DryRun Dashboard.
@blakeaowens blakeaowens closed this Jul 8, 2024
@blakeaowens blakeaowens reopened this Jul 8, 2024
@github-actions github-actions bot added the helm label Jul 8, 2024
@sonarcloud SonarCloud
Copy link

sonarcloud bot commented Jul 8, 2024

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud
@blakeaowens blakeaowens merged commit 0b105db into bugfix Jul 8, 2024
122 checks passed
@Maffooch Maffooch deleted the master-into-bugfix/2.36.1-2.37.0-dev branch July 9, 2024 21:30
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
helm
1 participant
@blakeaowens