Release 4.0.18#41
Merged
Merged
Conversation
Bumps [requests](https://github.com/psf/requests) from 2.32.4 to 2.33.0. - [Release notes](https://github.com/psf/requests/releases) - [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md) - [Commits](psf/requests@v2.32.4...v2.33.0) --- updated-dependencies: - dependency-name: requests dependency-version: 2.33.0 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>
remove find_osrelease_repo_updates which duplicated find_host_repo_updates logic without host-repo filtering. the host_repos_only branch was the only caller differentiator — now handled in a single find_repo_updates.
rename to match codebase convention: get_deb_kernel_flavour, get_running_kernel_flavour, find_rpm_kernel_updates, find_deb_kernel_updates, find_arch_kernel_updates, deb_kernel_prefixes.
repo names are set at creation via get_or_create_repo and should not be overwritten by subsequent client reports. the admin may have renamed the repo in the web ui, and mixed client versions can report different name formats for the same mirror url, causing unique constraint errors.
prevent HWE kernels (e.g. 6.17) from being offered as updates to GA kernel hosts (e.g. 6.8) when both tracks ship in the same repository at the same priority. extract major.minor series from the deb kernel package name and only compare within the same series.
- add PackageUpdateTable with installed/available package links and security badges - add package_update_list view with security type and search filters - add /packages/updates/ url route - add packages submenu in navbar (packages + updates) - add 6 view tests
annotate package querysets with host_count, repo_count, affected_count, fixed_count to replace N+1 template calls. make repositories, hosts, affected, and fixed columns sortable on the package list view. convert package name detail from raw html table to django-tables2. add sortable hosts column to the package name list view.
Bumps [django](https://github.com/django/django) from 4.2.29 to 4.2.30. - [Commits](django/django@4.2.29...4.2.30) --- updated-dependencies: - dependency-name: django dependency-version: 4.2.30 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>
- close stale db connections before each task via task_prerun signal (mirrors what django does for http requests) - add Restart=on-failure to worker and beat systemd services - add --loglevel info to worker service for diagnostics
- override get_new_connection to set journal_mode=wal automatically - eliminates need for manual pragma calls in post-install scripts
first assignment was meant to be verbose_name (singular).
five bulk action views passed raw POST filter_params into redirects without calling sanitize_filter_params(), unlike the rest of the codebase.
find() returns None when the element doesn't exist, causing AttributeError on the subsequent findall() call.
missing return after except meant code fell through to iterate an unassigned variable, causing UnboundLocalError.
- skip references with null urls in parse_osv_dev_cve_data - bail early from fixup_reference when urlparse has no hostname
tqdm.write(file=sys.stdout) replaces logger.info() for info messages so that patchman -lh, -lr etc. can be piped through grep and other standard unix tools. warnings and errors remain on stderr.
- optimize scan_for_security_updates with queryset update and __in filter - add _mark_updates_security helper with bulk update and IntegrityError fallback - optimize parse_osv_dev_data with Q batch filter for affected versions - bulk M2M add for add_fixed_packages/add_affected_packages - add get_matching_packages_q for batch version lookups - batch cve adds in parse_osv_dev_data
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
| if hostname == 'ubuntu.com' and url.path.startswith('/security/notices/USN'): | ||
| ref_type = 'USN' | ||
| if 'launchpad.net' in url.hostname: | ||
| if 'launchpad.net' in hostname: |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
No description provided.