Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore: Prevent user enumeration, cleanup migrations and update workflows. #332

Merged
merged 47 commits into from
Jul 19, 2023
Merged

chore: Prevent user enumeration, cleanup migrations and update workflows. #332

merged 47 commits into from
Jul 19, 2023

Conversation

cafuego
Copy link
Contributor

@cafuego cafuego commented Jul 17, 2023

  • Add username_enumeration_prevention
  • Update theme dependencies
  • Remove migration modules and their config
  • Update the workflows to match current standard practice
  • Remove preserve-paths
  • Update PATCHES dir

unocha-jenkins and others added 30 commits June 15, 2023 07:33
@unocha-jenkins
chore: Update all outdated drupal/* packages.
dfe15d3
@lazysoundsystem
fix: adjust order of use statements for phpcs
dd38794 
Refs: OPS-9379
@lazysoundsystem
Merge pull request #319 from UN-OCHA/update/patch-ceaf4ad
c2de77f 
Automatic Composer Update
@unocha-jenkins
chore: Update all outdated drupal/* packages.
76a13e8
@lazysoundsystem
Merge pull request #320 from UN-OCHA/update/patch-c2de77f
bbf24af 
Automatic Composer Update
@unocha-jenkins
chore: Update all outdated drupal/* packages.
153f255
@lazysoundsystem
Merge pull request #321 from UN-OCHA/update/patch-bbf24af
fc72969 
Automatic Composer Update
@lazysoundsystem
chore: remove preserve-paths package
8fa4914 
Refs: OPS-9348
@lazysoundsystem
chore: redo composer.lock
936a2ef 
Refs: OPS-9348
@lazysoundsystem
chore: try again, with .json file and .lock in sync
6debbb3 
Refs: OPS-9348
@lazysoundsystem
chore: fix access key variable
8f24a9f 
Refs: OPS-9414
@lazysoundsystem
chore: add username_enumeration_prevention module
a6cac08 
Refs: OPS-9394
@lazysoundsystem
fix: complete change in case for patches dir
b2f965d 
Refs: OPS-9394
@lazysoundsystem
chore: enable username_enumeration_prevention module
6648ff6 
Refs: OPS-9394
@lazysoundsystem
chore: include patches directory properly
725e5f5 
Refs: OPS-9394
@unocha-jenkins
chore: Update all outdated drupal/* packages.
3e7ab26
@cafuego
Merge pull request #322 from UN-OCHA/OPS-9348-preserve-paths
a4398a8 
chore: remove preserve-paths package
@cafuego
Merge pull request #323 from UN-OCHA/OPS-9414-access-key-variable
64aa3f8 
Ops 9414 access key variable
@cafuego
Merge branch 'develop' into OPS-9394-username_enumeration_prevention-…
deab95c 
…module
@cafuego
Merge pull request #324 from UN-OCHA/OPS-9394-username_enumeration_pr…
1ca2f67 
…evention-module

chore: add username_enumeration_prevention module
@cafuego
Merge branch 'develop' into update/patch-fc72969
4d1595e
@cafuego
Merge pull request #325 from UN-OCHA/update/patch-fc72969
f06b74f 
Automatic Composer Update
@cafuego
chore: Uninstall unused modules on production and export the config a…
d4ce79f 
…new.

Refs: OPS-9171
@cafuego
fix: Remove permissions that pertain to the domain module, which is n…
c2d3f35 
…ot installed.

Refs: OPS-9171
@cafuego
chore: Remove the now-uninstalled migrate modules.
7a2e28d 
Refs: OPS-9171
@cafuego
chore: Remove the now-uninstalled gms_group_migrate module.
037dfe9 
Refs: OPS-9171
@cafuego
fix: Remove the composer-preserve-paths script permission.
bf061cc 
Refs: OPS-9171
@dependabot
chore(deps): Bump tough-cookie, jsdom and svg-sprite
328b2b7 
Bumps [tough-cookie](https://github.com/salesforce/tough-cookie) to 4.1.3 and updates ancestor dependencies [tough-cookie](https://github.com/salesforce/tough-cookie), [jsdom](https://github.com/jsdom/jsdom) and [svg-sprite](https://github.com/svg-sprite/svg-sprite). These dependencies need to be updated together.


Updates `tough-cookie` from 2.5.0 to 4.1.3
- [Release notes](https://github.com/salesforce/tough-cookie/releases)
- [Changelog](https://github.com/salesforce/tough-cookie/blob/master/CHANGELOG.md)
- [Commits](salesforce/tough-cookie@v2.5.0...v4.1.3)

Updates `jsdom` from 16.5.2 to 16.7.0
- [Release notes](https://github.com/jsdom/jsdom/releases)
- [Changelog](https://github.com/jsdom/jsdom/blob/master/Changelog.md)
- [Commits](jsdom/jsdom@16.5.2...16.7.0)

Updates `svg-sprite` from 1.5.4 to 2.0.2
- [Release notes](https://github.com/svg-sprite/svg-sprite/releases)
- [Changelog](https://github.com/svg-sprite/svg-sprite/blob/main/CHANGELOG.md)
- [Commits](svg-sprite/svg-sprite@v1.5.4...v2.0.2)

---
updated-dependencies:
- dependency-name: tough-cookie
  dependency-type: indirect
- dependency-name: jsdom
  dependency-type: indirect
- dependency-name: svg-sprite
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <[email protected]>
@lazysoundsystem
chore: update lock file
3de7338 
Refs: updates
@lazysoundsystem
Merge pull request #329 from UN-OCHA/updates-composer-lock
3ab7a25 
chore: update lock file
lazysoundsystem and others added 14 commits July 10, 2023 13:46
@lazysoundsystem
Merge branch 'develop' into dependabot/npm_and_yarn/html/themes/custo…
9d1a6d4 
…m/gms_ocha_common/tough-cookie-and-jsdom-and-svg-sprite-4.1.3
@lazysoundsystem
Merge pull request #328 from UN-OCHA/dependabot/npm_and_yarn/html/the…
131a89c 
…mes/custom/gms_ocha_common/tough-cookie-and-jsdom-and-svg-sprite-4.1.3

chore(deps): Bump tough-cookie, jsdom and svg-sprite in /html/themes/custom/gms_ocha_common
@dependabot
chore(deps-dev): Bump stylelint in /html/themes/custom/gms_ocha_common
3288b08 
Bumps [stylelint](https://github.com/stylelint/stylelint) from 13.12.0 to 15.10.1.
- [Release notes](https://github.com/stylelint/stylelint/releases)
- [Changelog](https://github.com/stylelint/stylelint/blob/main/CHANGELOG.md)
- [Commits](stylelint/stylelint@13.12.0...15.10.1)

---
updated-dependencies:
- dependency-name: stylelint
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <[email protected]>
@cafuego
Merge branch 'develop' into cafuego/ops-9171-gms-errors-and-cleanup
51b28e6
@cafuego
Merge pull request #326 from UN-OCHA/cafuego/ops-9171-gms-errors-and-…
1277b6d 
…cleanup

chore: Remove ununsed modules and config.
@cafuego
chore: Delete all migrate fields and clean up entities and permission…
624bfc1 
…s that used them.

Refs: OPS-9171
@cafuego
chore: Oh, keep the search page but drop the migrate nodes.
8fff54b
@cafuego
Merge branch 'develop' into dependabot/npm_and_yarn/html/themes/custo…
20b839d 
…m/gms_ocha_common/stylelint-15.10.1
@cafuego
Merge pull request #330 from UN-OCHA/cafuego/ops-9171-gms-errors-and-…
70d172c 
…cleanup

chore: Clean out more kipple.
@lazysoundsystem
chore: update npm packages
acb0cde 
Refs: OPS-8923
@lazysoundsystem
Merge branch 'develop' into dependabot/npm_and_yarn/html/themes/custo…
74453db 
…m/gms_ocha_common/stylelint-15.10.1
@lazysoundsystem
Merge pull request #327 from UN-OCHA/dependabot/npm_and_yarn/html/the…
85c408b 
…mes/custom/gms_ocha_common/stylelint-15.10.1

chore(deps-dev): Bump stylelint from 13.12.0 to 15.10.1 in /html/themes/custom/gms_ocha_common
@unocha-jenkins
chore: Update all outdated drupal/* packages.
5552821
@lazysoundsystem
Merge pull request #331 from UN-OCHA/update/patch-85c408b
e7bdb3b 
Automatic Composer Update
@github-actions
Copy link
Contributor

Build output

Composer Validate `success`

PHP Lint `success`

Docker Build `success`

Environment Setup `success`

Site Install `success`

PHP Code Sniffer `success`

Software Versions

```PHP 8.0.29 (cli) (built: Jun 8 2023 15:24:43) ( NTS )
Copyright (c) The PHP Group
Zend Engine v4.0.29, Copyright (c) Zend Technologies
with Zend OPcache v8.0.29, Copyright (c), by Zend Technologies
with Xdebug v3.2.1, Copyright (c) 2002-2023, by Derick Rethans
Composer version 2.5.8 2023-06-09 17:13:21
```

Drupal Logs

``````

*Pusher: @cafuego, Action: \`pull_request\`, Workflow: \`Run tests\`*`;

@github-actions
Copy link
Contributor

Coverage Report

Totals Coverage

@cafuego cafuego merged commit a6bfe80 into main Jul 19, 2023
2 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@lazysoundsystem lazysoundsystem lazysoundsystem approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@cafuego @lazysoundsystem @unocha-jenkins