External-Mirrors/awx
2
0
Fork 0
mirror of https://github.com/ansible/awx.git synced 2026-01-09 23:12:08 -03:30
Code Issues Packages Projects Releases Wiki Activity
33,574 Commits 54 Branches 19 Tags
Commit Graph

598 Commits

Author SHA1 Message Date
Hao Liu
a88e47930c
Update django version to address CVE-2023-41164 (#14460) 2023-09-27 09:36:02 -04:00
Alan Rominger
770cc10a78
Get rid of names_digest hack no longer needed (#14459) 2023-09-26 12:09:30 -04:00
Alan Rominger
951bd1cc87
Re-run the updater script after upstream removal of future (#14265) 2023-08-29 15:36:42 -04:00
Hao Liu
ffa59864ee
Fix CVE-2023-40267 (#14388) 
CVE-2023-40267 GitPython: Insecure non-multi options in clone and clone_from is not blocked https://bugzilla.redhat.com/show_bug.cgi?id=2231474

GitPython before 3.1.32 does not block insecure non-multi options in clone and clone_from. NOTE: this issue exists because of an incomplete fix for CVE-2022-24439.

References:
gitpython-developers/GitPython@ca965ec gitpython-developers/GitPython#1609
 2023-08-28 15:35:32 -04:00
Rick Elrod
4dd823121a
Update cryptography for CVE-2023-38325 (#14358) 
Signed-off-by: Rick Elrod <rick@elrod.me>
 2023-08-23 10:54:20 -05:00
delinea-sagar
c75757bf22
Update python-tss-sdk dependency (#14207) 
Signed-off-by: delinea-sagar <sagar.wani@c.delinea.com>
 2023-08-16 20:07:35 +00:00
Alan Rominger
284bd8377a
Integrate scheduler into dispatcher main loop (#14067) 
Dispatcher refactoring to get pg_notify publish payload
  as separate method

Refactor periodic module under dispatcher entirely
  Use real numbers for schedule reference time
  Run based on due_to_run method

Review comments about naming and code comments
 2023-08-10 14:43:07 -04:00
Seth Foster
601b62deef
bump python-daemon package (#14301) 2023-08-01 01:39:17 +00:00
Rick Elrod
445d892050
Drop unused django-taggit dependency (#14241) 
This drops the django-taggit dependency and drops the relevant fields
from old migrations.

Signed-off-by: Rick Elrod <rick@elrod.me>
 2023-07-31 10:05:27 -05:00
Satoe Imaishi
8e2a5ed8ae
Require pyyaml >= 6.0.1 (#14262) 2023-07-18 16:25:14 -05:00
Rick Elrod
8cfb704f86
Migrate from django-redis to Django's built-in Redis caching support (#14210) 
Signed-off-by: Rick Elrod <rick@elrod.me>
 2023-07-13 12:16:16 -05:00
John Westcott IV
efcac860de
Upgrade django to 4.2.3 (#14228) 2023-07-13 08:52:50 -04:00
Alan Rominger
c736986023
Try to fix CI by adding dropped coreapi lib (#14165) 2023-06-26 15:11:12 -04:00
Gabriel Muniz
9676a95e05
Add AWS Secretsmanager plugin (#13778) 
Co-authored-by: Jessica Steurer <70719005+jay-steurer@users.noreply.github.com>
 2023-06-15 10:12:02 -04:00
John Westcott IV
dfe8b3b16b Removes psycopg2 in favor of psycopg3 2023-06-14 17:40:15 -04:00
Shane McDonald
aafd4df288
Fix /api/swagger endpoint (available only in development mode) (#13197) 
Co-authored-by: John Westcott IV <john.westcott.iv@redhat.com>
 2023-06-02 12:58:21 -04:00
John Westcott IV
098861d906
Updated sqlparse library (#13962) 
Co-authored-by: Jessica Steurer <70719005+jay-steurer@users.noreply.github.com>
 2023-05-24 08:09:29 -03:00
John Westcott IV
8d6f50fae8 Upgrading djgno to 4.2 LTS 2023-05-11 11:45:15 -04:00
John Westcott IV
ecfbcb641e Adding upgrade to django-oauth-toolkit pre-migraiton 2023-05-11 11:43:33 -04:00
John Westcott IV
7e4da7efa2
Updated pycryptography (#13964) 
Co-authored-by: Jessica Steurer <70719005+jay-steurer@users.noreply.github.com>
 2023-05-11 09:25:56 -03:00
Rick Elrod
74c46568c1
[wsrelay] switch from psycopg 3 to asyncpg (#13965) 
Due to dependency issues specifically around upgrading to Django 4.2, we
cannot feasibly have a dependency on psycopg2 and psycopg3. The only
place that was currently using psycopg3 was wsrelay.

Change wsrelay to use the asyncpg library and psycopg2 instead.

Tested locally on kind with a dev build of awx.

Signed-off-by: Rick Elrod <rick@elrod.me>
 2023-05-10 09:10:35 -05:00
John Westcott IV
6c9e2502a5 Unpinning future 2023-04-10 12:25:15 -04:00
Hao Liu
328880609b Fix importlib-metadata dependency conflict 
rerun requirements/updator.sh to regenerate requirements.txt fix conflict introduced by https://github.com/ansible/ansible-runner/pull/1224
 2023-04-07 11:48:34 -04:00
Rick Elrod
513f433f17 Add comment for new psycopg dep 
Signed-off-by: Rick Elrod <rick@elrod.me>
 2023-03-29 22:09:18 -04:00
Rick Elrod
a9e7508e92 WIP: Make wsrelay listen for pg_notify heartbeat 
Signed-off-by: Rick Elrod <rick@elrod.me>
 2023-03-29 22:09:18 -04:00
Lila
47176cb31b regenerated .txt file. 2023-01-25 10:16:40 -05:00
Lila
bb387f939b Ran updater script to generate new requirements.txt file. 2023-01-23 11:58:26 -05:00
Satoe Imaishi
bda806fd03 Merge pull request #6276 from simaishi/43_bump_deps 
[4.3] Bump python dependencies for security fixes
 2023-01-23 11:43:20 -05:00
Seth Foster
0c980fa7d5
Merge pull request #13366 from fosterseth/bump_receptorctl_1.3.0 
bump receptorctl version to 1.3.0
 2022-12-21 16:27:25 -05:00
Seth Foster
3543644e0e
bump receptorctl version to 1.3.0 2022-12-21 13:36:11 -05:00
Dimitri Savineau
239827a9cf
Pin hiredis to 2.0.0 
The hiredis 2.1.0 release doesn't provide source distribution on PyPi so
users can't build that python package from sources.

Signed-off-by: Dimitri Savineau <dsavinea@redhat.com>
 2022-12-21 11:57:41 -05:00
Rick Elrod
5dd0eab806
Pin channels-redis to 4.3.1 to fix an async issue (#13348) 
Refs django/channels_redis#332
Refs #13313

Signed-off-by: Rick Elrod <rick@elrod.me>
 2022-12-20 17:05:44 -06:00
Satoe Imaishi
e363ddf470 Add back pkgconfig for offline build 2022-12-15 20:49:28 -05:00
John Westcott IV
7129f3e8cd
Updating python3-saml (#13263) 
Moved to forked version to get latest lxml to allow other pacakges to update
 2022-12-15 12:15:09 -03:00
John Westcott IV
ec7e2284df Pinning django-split-settings per build issue 2022-12-02 08:27:32 -05:00
John Westcott IV
b36fa93005 Changing wording of README to better reflect how to test the offline build 2022-11-29 10:42:23 -05:00
John Westcott IV
fe48dc412f Cleaning up requirements.in 
Removing all >= dependencies as these were upgraded past the >= version with the last update.

The following libraries were secondary imports and were removed from the requirements.in as we are past the version required to fix their CVEs:
    * autobhan
    * kubernetes
    * pyjwt
    * sqlparse
 2022-11-28 15:23:50 -05:00
John Westcott IV
3a25c4221f Pinning xmlsec to allow for lxml 4.7.0 2022-11-28 15:23:50 -05:00
John Westcott IV
c7692f5c56 Pinning pyparsing due to testing issues 2022-11-28 15:23:50 -05:00
John Westcott IV
a1edc75c11 General lib upgrades 2022-11-28 15:23:50 -05:00
Shane McDonald
eedd146643
Merge pull request #13109 from TheRealHaoLiu/move-licenses 
move license directory out of docs
 2022-11-17 08:18:15 -05:00
Lila Yasin
a3b21b261c
Merge pull request #13178 from john-westcott-iv/update_django_patch 
Updating the patch release of django per dependabot alerts
 2022-11-16 10:58:38 -05:00
John Westcott IV
1106367962 Doing a hard pin on django 2022-11-11 13:37:15 -05:00
Jeff Bradberry
721e19e1c8
Merge pull request #13181 from jbradberry/remove-qsstats 
Replace the querysets provided by django-qsstats-magic
 2022-11-11 10:58:51 -05:00
Jeff Bradberry
e029cf7196 Remove the django-qsstats-magic dependency 2022-11-10 15:37:44 -05:00
John Westcott IV
b269ed48ee Updating the patch release of django per dependabot alerts 2022-11-09 10:24:16 -05:00
John Westcott IV
fe1b37afaf Updating README and update.sh usage 2022-11-09 10:15:36 -05:00
Hao Liu
0db75fdbfd move license directory out of docs 
Signed-off-by: Hao Liu <haoli@redhat.com>
 2022-11-04 11:43:41 -04:00
Hao Liu
0b1891d82a generate complete install bundle 
```
➜  34.213.5.206_install_bundle git:(instance-install-bundle-content) ✗ tree
.
├── install_receptor.yml
├── inventory.yml
├── receptor
│   ├── tls
│   │   ├── ca
│   │   │   └── receptor-ca.crt
│   │   ├── receptor.crt
│   │   └── receptor.key
│   └── work-public-key.pem
└── requirements.yml
```

Signed-off-by: Hao Liu <haoli@redhat.com>
 2022-09-23 09:46:13 -04:00
Shane McDonald
9b034ad574 generate control node receptor.conf 
when a new remote execution/hop node is added
regenerate the receptor.conf for all control node to
peer out to the new remote execution node

Signed-off-by: Hao Liu <haoli@redhat.com>
Co-Authored-By: Seth Foster <fosterseth@users.noreply.github.com>
Co-Authored-By: Shane McDonald <me@shanemcd.com>
 2022-09-23 09:46:12 -04:00