v0.0.40

What's Changed

• docs: expand on how to add users to projects by @ethomson in #2901
• Add delete provider command by @eleftherias in #2922
• Fix order of instructions in running a server by @lukehinds in #2935
• Support empty profiles by utilizing views by @jhrozek in #2936
• Refactor: Move SetViperStructDefaults to utils by @Vyom-Yadav in #2920
• Fix repository delete by name by @eleftherias in #2941
• Fix mindev ruletype test by @jhrozek in #2939
• Set security_invoker=true to use permissions on the underlying tables when creating new view by @evankanderson in #2942
• Change validation error message to describe max length by @dmjb in #2945
• build(deps): bump golang.org/x/sync from 0.6.0 to 0.7.0 by @dependabot in #2949
• build(deps-dev): bump @docusaurus/module-type-aliases from 3.2.0 to 3.2.1 in /docs by @dependabot in #2953
• build(deps): bump golang.org/x/tools from 0.19.0 to 0.20.0 in /tools by @dependabot in #2952
• build(deps): bump golang.org/x/oauth2 from 0.18.0 to 0.19.0 by @dependabot in #2951
• Claim GitHub App installations on first login if they exist by @evankanderson in #2937
• Bump docusaurus packages to 3.2.1 by @jhrozek in #2957
• build(deps): bump golang.org/x/term from 0.18.0 to 0.19.0 by @dependabot in #2950
• Fix flaky DB list repos test by @eleftherias in #2959

Full Changelog: v0.0.39...v0.0.40

v0.0.39

What's Changed

• Remove provider from ruletypes by @eleftherias in #2843
• Auto-generated DB schema update - 2024-03-28 15:11:39 by @github-actions in #2847
• Add bundle build command to mindev by @dmjb in #2851
• Add tests and remove empty-struct defaults that were previous ignored. by @evankanderson in #2836
• build(deps): bump github.com/openfga/cli from 0.2.7 to 0.3.0 in /tools by @dependabot in #2858
• build(deps): bump github.com/golangci/golangci-lint from 1.57.1 to 1.57.2 in /tools by @dependabot in #2857
• build(deps): bump github.com/open-policy-agent/opa from 0.62.1 to 0.63.0 by @dependabot in #2853
• build(deps): bump github.com/daixiang0/gci from 0.13.2 to 0.13.3 in /tools by @dependabot in #2855
• build(deps): bump mobx from 6.12.1 to 6.12.3 in /docs by @dependabot in #2854
• Add a pending remediation status and support tracking opened PRs by @rdimitrov in #2833
• Auto-generated DB schema update - 2024-03-29 09:59:33 by @github-actions in #2861
• Revert "Add a pending remediation status and support tracking opened PRs" by @rdimitrov in #2862
• Re-applies the pending status change and uses a transaction for 000041 migration by @rdimitrov in #2865
• Auto-generated DB schema update - 2024-03-29 11:22:46 by @github-actions in #2864
• Add initContainers option to the deployment settings in Helm by @JAORMX in #2852
• Upgrade sqlc and regerate sqlc files with the new version by @jhrozek in #2859
• Do not skip action processing decision if evaluation did not changed by @rdimitrov in #2868
• Remediation types other than pull_request don't have a turn-off behaviour, so skip instead by @rdimitrov in #2869
• Fix flagged problems in internal/engine by @evankanderson in #2867
• build(deps): bump github.com/ThreeDotsLabs/watermill-sql/v3 from 3.0.0 to 3.0.1 by @dependabot in #2877
• build(deps): bump github.com/go-git/go-git/v5 from 5.11.0 to 5.12.0 by @dependabot in #2878
• Bump docusaurus from 3.1.1 to 3.2.0 by @eleftherias in #2881
• Disable ingest caching for artifact entities and add a wait period by @rdimitrov in #2883
• Add rpc that checks if enrollment is successful based on state by @eleftherias in #2882
• Auto-generated DB schema update - 2024-04-01 21:51:32 by @github-actions in #2889
• Clean up calls to Keycloak behind config by @evankanderson in #2886
• Make provider an optional filter by @eleftherias in #2871
• Make existing minder CLI work for VerifyProviderToken by @evankanderson in #2884
• Auto-generated cli documentation update - 2024-04-01 15:28:12 by @github-actions in #2890
• Fix documentation format by @eleftherias in #2894
• Add remediation_url to RuleEvaluationStatus by @puerco in #2892
• build(deps): bump github.com/itchyny/gojq from 0.12.14 to 0.12.15 by @dependabot in #2893
• Create ProviderStore interface, migrate controlplane to use it by @dmjb in #2900
• Handle GitHub App installation deleted event by @jhrozek in #2870
• Remove provider from profile by @eleftherias in #2850
• Auto-generated DB schema update - 2024-04-02 13:26:45 by @github-actions in #2903
• Fix auth delete when GitHub App installed by @eleftherias in #2904
• Prevent CLI users from using both github providers by @eleftherias in #2906
• Log the profile list parameters, i.e. labels by @rdimitrov in #2905
• Add unit tests for providers/service.go by @jhrozek in #2885
• Add body for rpc additional_bindings by @eleftherias in #2909
• Use a separate webhook secret for the GH App by @jhrozek in #2910
• helm: Allow for configuring the termination grace period for the main deployment by @JAORMX in #2913
• helm: Allow for configuring the Minder Deployment strategy by @JAORMX in #2912
• Create a new top-level project for users who add a provider via the GitHub App install process by @evankanderson in #2895
• Migrate GH App installations to int64 from string by @jhrozek in #2887
• Nicer error message when creating profile with non-unique rule types missing names by @jhrozek in #2916
• Allow overriding config struct defaults by @evankanderson in #2839
• Don't mark a PR remediation as error if no previous result exists by @jhrozek in #2917
• Refactor engine code to use ProviderStore by @dmjb in #2914
• Add display name to rule eval status by @puerco in #2915
• build(deps): bump github.com/daixiang0/gci from 0.13.3 to 0.13.4 in /tools by @dependabot in #2919
• build(deps): bump github.com/sigstore/protobuf-specs from 0.3.0 to 0.3.1 by @dependabot in #2918
• Move more provider access methods to store by @dmjb in #2911
• Add advisory URL to rule eval status by @puerco in #2891
• Use GitHub app webhook secret from secret store by @eleftherias in #2924
• Fixes a typo in the CLI - s/profile/project by @rdimitrov in #2921
• Skip erroring providers when listing repos by @eleftherias in #2928
• build(deps): bump github.com/bufbuild/buf from 1.30.0 to 1.30.1 in /tools by @dependabot in #2932
• build(deps): bump bufbuild/buf-setup-action from 1.30.0 to 1.30.1 by @dependabot in #2933

Full Changelog: v0.0.38...v0.0.39

v0.0.38

What's Changed

• Add Marketplace interface by @dmjb in #2748
• Return a user-visible error if the project already exists by @JAORMX in #2749
• Add validation for rule type entities by @JAORMX in #2758
• Add Provider Class to data model by @evankanderson in #2681
• Auto-generated DB schema update - 2024-03-22 13:02:25 by @github-actions in #2760
• Remove isOrg from function calls to GitHub Provider by @jhrozek in #2763
• Add provider classes to API by @JAORMX in #2762
• Move stub eventer outside of tests and into dedicated package by @JAORMX in #2761
• build(deps): bump github.com/mikefarah/yq/v4 from 4.42.1 to 4.43.1 in /tools by @dependabot in #2766
• build(deps): bump github/codeql-action from 3.24.8 to 3.24.9 by @dependabot in #2767
• build(deps): bump mobx from 6.12.0 to 6.12.1 in /docs by @dependabot in #2768
• Update setViperStructDefaults to respect '{}' default tag for struct fields by @Vyom-Yadav in #2633
• Show user facing error when credential is invalid by @eleftherias in #2772
• Store labels for profiles in the database by @jhrozek in #2770
• Auto-generated DB schema update - 2024-03-25 20:19:27 by @github-actions in #2775
• build(deps): bump bufbuild/buf-lint-action from 1.1.0 to 1.1.1 by @dependabot in #2777
• build(deps): bump slsa-framework/slsa-verifier from 2.4.1 to 2.5.1 by @dependabot in #2778
• build(deps): bump bufbuild/buf-breaking-action from 1.1.3 to 1.1.4 by @dependabot in #2779
• build(deps): bump github.com/cenkalti/backoff/v4 from 4.2.1 to 4.3.0 by @dependabot in #2780
• build(deps): bump express from 4.18.3 to 4.19.2 in /docs by @dependabot in #2781
• Refactor enrolment to be more flexible with provider class by @eleftherias in #2774
• Auto-generated DB schema update - 2024-03-26 08:08:42 by @github-actions in #2783
• Remove unused server fields by @eleftherias in #2784
• Make repo-lister interface more general by @JAORMX in #2776
• Remove provider requirement when fetching rule type by @JAORMX in #2773
• Remove StubGitHub in favor of our existing mock by @JAORMX in #2785
• Fix error message when instantiating alerter by @JAORMX in #2786
• Move rule type engine code to more descriptive files by @JAORMX in #2787
• Simplify logging evaluation parameters by @JAORMX in #2788
• Modify operations used by marketplace to accept transactions by @dmjb in #2771
• Fix pagination in provider list by @JAORMX in #2791
• Tx changes for marketplace by @dmjb in #2793
• Allow for skipping opening the browser on login by @JAORMX in #2795
• Explicitly coalesce labels on create and update to {} by @jhrozek in #2794
• Allow reading pointer config values from env by @eleftherias in #2799
• Update go-github library to v60 by @JAORMX in #2796
• Make marketplace support multiple sources by @dmjb in #2801
• build(deps): bump github.com/daixiang0/gci from 0.13.1 to 0.13.2 in /tools by @dependabot in #2803
• build(deps): bump anchore/sbom-action from 0.15.9 to 0.15.10 by @dependabot in #2804
• Remove github auth flows from migration by @JAORMX in #2805
• Fix logic for skipping browser on login by @eleftherias in #2806
• Refactor: Move setViperStructDefaults to utils by @Vyom-Yadav in #2807
• Allow ListRemoteRepositoriesFromProvider to gather from multiple providers by @JAORMX in #2802
• Auto-generated cli documentation update - 2024-03-27 10:17:54 by @github-actions in #2810
• Create healthcheck as part of project creation by @dmjb in #2792
• Add label support for ListProfilesByProjectID by @jhrozek in #2789
• Expose and actually fix skip browser by @JAORMX in #2809
• Add comment on inferProvider call by @JAORMX in #2812
• Simplify error return in getProviderFromRequestOrDefault by @JAORMX in #2814
• Read GitHub App secrets from config by @eleftherias in #2811
• Revert "Auto-generated cli documentation update - 2024-03-27 10:17:54… by @eleftherias in #2817
• Auto-generated helm documentation update - 2024-03-27 09:38:17 by @github-actions in #2816
• Fix secret declaration in github app secret by @JAORMX in #2820
• Simplify getNameFilterParam in provider common functions by @JAORMX in #2813
• Add additional info logs by @eleftherias in #2821
• Revert default config by @eleftherias in #2822
• Add display names to rule types by @JAORMX in #2824
• Use conn.PingContext() instead of Ping() to avoid trying to connect with context.Background() by @jhrozek in #2823
• Add helm documentation about GitHub App secrets by @eleftherias in #2828
• Auto-generated DB schema update - 2024-03-27 14:27:54 by @github-actions in #2826
• Auto-generated helm documentation update - 2024-03-27 14:49:50 by @github-actions in #2829
• Ensure repo context is retained in registration by @eleftherias in #2830
• Add enrolment for GitHub App provider by @eleftherias in #2827
• Auto-generated cli documentation update - 2024-03-27 18:06:31 by @github-actions in #2832
• Don't dereference result on error from RegisterRepository by @jhrozek in #2834
• npm vuln check not working by @teodor-yanev in #2818
• build(deps): bump aquasecurity/trivy-action from 0.18.0 to 0.19.0 by @dependabot in #2840

Full Changelog: v0.0.37...v0.0.38

v0.0.37

What's Changed

• Prevent modification/deletion of rules belonging to a subscription by @dmjb in #2680
• Use watermill-sql v3 not v2 by @JAORMX in #2712
• Add rule evaluation ID as a unique reference to RuleEvaluationStatus by @jhrozek in #2716
• build(deps): bump github.com/golangci/golangci-lint from 1.56.2 to 1.57.0 in /tools by @dependabot in #2717
• Fill in GitHub App provider by @eleftherias in #2713
• Add the ruletype severity when returning the list of evaluations by @jhrozek in #2710
• Create interface for reading from mindpak bundles by @dmjb in #2714
• Don't parse the alert metadata if there's no alert opened by @rdimitrov in #2719
• Add GitHub App installations table by @eleftherias in #2720
• Auto-generated DB schema update - 2024-03-20 13:14:37 by @github-actions in #2721
• Add display name for profiles by @JAORMX in #2724
• Auto-generated DB schema update - 2024-03-20 16:57:16 by @github-actions in #2726
• build(deps): bump github.com/docker/docker from 25.0.3+incompatible to 25.0.5+incompatible by @dependabot in #2732
• build(deps): bump github.com/docker/docker from 25.0.4+incompatible to 25.0.5+incompatible in /tools by @dependabot in #2733
• build(deps): bump github.com/golangci/golangci-lint from 1.57.0 to 1.57.1 in /tools by @dependabot in #2738
• Also show display name in GetProfile API by @JAORMX in #2736
• build(deps): bump slsa-framework/slsa-github-generator from 1.9.0 to 1.9.1 by @dependabot in #2737
• build(deps): bump github.com/openfga/openfga from 1.5.0 to 1.5.1 by @dependabot in #2739
• Add credential state to providers proto by @JAORMX in #2728
• Add display name to profile status output by @JAORMX in #2740
• Separate the eventer into interfaces by @JAORMX in #2718
• Add GitHub App data to configuration by @eleftherias in #2730
• Create Subscription service interface by @dmjb in #2729
• Define BundleSource interface by @dmjb in #2731
• Eval Status: Return repository UUID, populate entity info by @puerco in #2741
• Introduce GitHub App installation access token by @eleftherias in #2725
• Add more logging to user/project deletion by @JAORMX in #2744
• fix: homoglyphs status profile by @teodor-yanev in #2743
• Add log message for transaction commit when deleting account by @JAORMX in #2745
• Add bundle ID structure by @dmjb in #2747
• Only run transaction rollback for deleting user when there's an error by @JAORMX in #2746
• Detect project deletion while ListProjects gathers projects by @JAORMX in #2752
• Skip deleted projects while getting user by @JAORMX in #2754
• Add a CLI for rotating webhook secrets by @jhrozek in #2735
• build(deps): bump slsa-framework/slsa-github-generator from 1.9.1 to 1.10.0 by @dependabot in #2753
• build(deps): bump webpack-dev-middleware from 5.3.3 to 5.3.4 in /docs by @dependabot in #2755
• Provide an array of fallback secrets to allow secret migration by @jhrozek in #2734

Full Changelog: v0.0.36...v0.0.37

v0.0.36

What's Changed

• Add project service definition to minder ingress by @JAORMX in #2629
• Move repo deletion into a separate interface by @dmjb in #2608
• Project delete: Check feature flag on parent by @JAORMX in #2631
• Use project ID from entity context for ruletypes by @JAORMX in #2634
• Use project ID from entity context in rule creation by @dmjb in #2636
• Upgrade keycloak to 24.0 by @jhrozek in #2637
• Introduce provider Credential interface by @eleftherias in #2604
• Fix docs formatting to make build pass by @eleftherias in #2641
• Set go version to 1.22, tweak coverage by @dmjb in #2630
• Move repository create to RepositoryService by @dmjb in #2632
• Remove unused ListAllPackages on GitHub provider by @eleftherias in #2642
• Explicitly specify owner when listing packages by @eleftherias in #2643
• Add EvalResultsService to ingress.yaml by @rdimitrov in #2644
• Revert "Move repository create to RepositoryService (#2632)" by @JAORMX in #2645
• Add repo reconcile command to minder CLI by @Vyom-Yadav in #2505
• Explicitly specify owner in all package operations by @eleftherias in #2652
• Auto-generated cli documentation update - 2024-03-14 06:45:00 by @github-actions in #2649
• Small tweaks to repo registration in the CLI by @dmjb in #2647
• Make the parameter of GetRepositoryByName and DeleteRepositoryByName greedy by @jhrozek in #2655
• TEMPORARY: Dump tokeninfo by @jhrozek in #2651
• build(deps): bump docker/build-push-action from 5.2.0 to 5.3.0 by @dependabot in #2666
• build(deps): bump github.com/jackc/pgx/v5 from 5.5.1 to 5.5.4 in /tools by @dependabot in #2660
• build(deps): bump github.com/google/go-containerregistry from 0.19.0 to 0.19.1 by @dependabot in #2664
• Sort the list of profiles before returning to clients by @jhrozek in #2659
• build(deps): bump follow-redirects from 1.15.5 to 1.15.6 in /docs by @dependabot in #2667
• build(deps): bump github.com/openfga/cli from 0.2.6 to 0.2.7 in /tools by @dependabot in #2663
• build(deps): bump github.com/jackc/pgx/v5 from 5.5.3 to 5.5.4 by @dependabot in #2661
• build(deps): bump docker/setup-buildx-action from 3.1.0 to 3.2.0 by @dependabot in #2665
• Allow using empty credential if no token by @eleftherias in #2650
• Move profile create/update to a separate interface by @dmjb in #2653
• use correct project ID when creating profile by @dmjb in #2668
• Update Keycloak to match staging and prod by @eleftherias in #2669
• Allow using an environment variable to override the token from the CLI by @JAORMX in #2671
• Overlay PatchProfile body with the current profile to avoid reverting to default values by @jhrozek in #2673
• Add alert info to RuleEvaluationStatuses by @rdimitrov in #2675
• Define DB schema for bundles and subscriptions by @dmjb in #2670
• Auto-generated DB schema update - 2024-03-15 14:24:23 by @github-actions in #2676
• Add Create/Delete/GetUnclaimedProvider RPCs by @evankanderson in #2640
• Put subscription foreign key on correct table by @dmjb in #2677
• Auto-generated DB schema update - 2024-03-15 17:07:45 by @github-actions in #2679
• Mindpak modules by @puerco in #2639
• Make several more name parameters greedy in the HTTP bindings by @jhrozek in #2689
• build(deps): bump k8s.io/client-go from 0.29.2 to 0.29.3 by @dependabot in #2690
• Minder resource names should be case-insensitive by @evankanderson in #2684
• Auto-generated DB schema update - 2024-03-18 09:41:30 by @github-actions in #2692
• Default explicitly to remediate:off and alert:on by @jhrozek in #2688
• Add debug information for credentials instantiation by @jhrozek in #2695
• Add command line flag to skip browser spawning in provider enroll command by @JAORMX in #2696
• Add "display name" to project's API definition by @JAORMX in #2698
• Use the Login field as the user name, not Username by @jhrozek in #2699
• Revert "TEMPORARY: Dump tokeninfo (#2651)" by @jhrozek in #2700
• Rename GetUsername to GetName, use GetLogin as fallback when opening a PR by @jhrozek in #2701
• Add "public" metadata section in project's metadata and use it for display name by @JAORMX in #2702
• build(deps): bump github/codeql-action from 3.24.7 to 3.24.8 by @dependabot in #2703
• build(deps): bump github.com/styrainc/regal from 0.18.0 to 0.19.0 by @dependabot in #2704
• Implement EvalResultsService/ListEvaluationResults() by @puerco in #2687
• ListEvaluationResults: Retrieve project ID from entity context by @JAORMX in #2706
• Implement API to update projects by @JAORMX in #2705
• Introduce GitHub App provider by @eleftherias in #2678
• Reapply "Move repository create to RepositoryService (#2632)" (#2645) by @dmjb in #2648
• Use correct delegate for GitHub email by @eleftherias in #2711

Full Changelog: v0.0.35...v0.0.36

v0.0.35

What's Changed

• Add buf lint to our lint target by @JAORMX in #2504
• Refactor: Move logging level method to utils by @Vyom-Yadav in #2487
• build(deps): bump golang from 1.22.0 to 1.22.1 by @dependabot in #2508
• build(deps): bump anchore/sbom-action from 0.15.8 to 0.15.9 by @dependabot in #2507
• build(deps): bump github.com/charmbracelet/lipgloss from 0.9.1 to 0.10.0 by @dependabot in #2511
• build(deps): bump google.golang.org/protobuf from 1.32.0 to 1.33.0 by @dependabot in #2510
• build(deps): bump google.golang.org/grpc from 1.62.0 to 1.62.1 by @dependabot in #2509
• Remove helper function duplication in EEA tests by @JAORMX in #2513
• Make GitHub provider interface more generic by @eleftherias in #2514
• Add new endpoint for fetching rule evaluations by @evankanderson in #2470
• Auto-generated cli documentation update - 2024-03-06 06:04:57 by @github-actions in #2523
• Update gitignore to ignore local sigstore artifacts by @rdimitrov in #2527
• Wrap controlplane metrics with interface by @JAORMX in #2516
• Create single status comment and correctly dismiss reviews by @gregfurman in #2171
• Refactor: Move Dockerfile to a separate docker directory by @Vyom-Yadav in #2488
• Move projects to be self-contained trees by @JAORMX in #2275
• build(deps): bump github.com/lestrrat-go/jwx/v2 from 2.0.20 to 2.0.21 by @dependabot in #2532
• Add license information to repositories by @JAORMX in #2515
• Revert "Auto-generated cli documentation update - 2024-03-06 06:04:57" by @JAORMX in #2533
• Revert "Refactor: Move Dockerfile to a separate docker directory" by @JAORMX in #2534
• Add provider authorization flow types to database by @JAORMX in #2535
• Auto-generated DB schema update - 2024-03-07 10:45:02 by @github-actions in #2537
• build(deps): bump github.com/open-policy-agent/opa from 0.62.0 to 0.62.1 by @dependabot in #2531
• Add Project List RPC by @JAORMX in #2536
• Cast sql limit to bigint to force sqlc to generate NullInt64 by @Vyom-Yadav in #2490
• Remove unused 'port' from session state queries by @evankanderson in #2547
• Remove token from builtin rules by @eleftherias in #2550
• Add crypto engine mock by @eleftherias in #2548
• build(deps): bump gopkg.in/go-jose/go-jose.v2 from 2.6.1 to 2.6.3 by @dependabot in #2552
• build(deps): bump github.com/bufbuild/buf from 1.29.0 to 1.30.0 in /tools by @dependabot in #2553
• build(deps): bump redocusaurus from 2.0.1 to 2.0.2 in /docs by @dependabot in #2554
• build(deps): bump bufbuild/buf-setup-action from 1.29.0 to 1.30.0 by @dependabot in #2555
• Move default project creation and add tests by @JAORMX in #2557
• Implement project list CLI subcommand by @JAORMX in #2558
• Hook severity into GHSA generation by @JAORMX in #2560
• Remove unused Git client in pull request remediator by @eleftherias in #2561
• Change name and triggers for documentation test deployment CI by @JAORMX in #2562
• OpenFGA: change playground port to 8085 by @ethomson in #2551
• build(deps): bump docker/build-push-action from 5.1.0 to 5.2.0 by @dependabot in #2569
• Return alert status in profile get by @jhrozek in #2568
• Remove project tree migration code by @JAORMX in #2570
• Make GitHub provider implement Git provider by @eleftherias in #2564
• Reuse token from GitHub client in container verifier by @eleftherias in #2571
• Use basic auth for container verifier by @eleftherias in #2572
• Allow setting project ID via environment variable by @JAORMX in #2574
• Revert "Allow setting project ID via environment variable (#2574)" by @JAORMX in #2577
• Ensure we actually set the default auth flows for the github provider by @JAORMX in #2575
• Implement a mock response for ListEvaluationResults by @rdimitrov in #2549
• Use static token source for GitHub provider by @eleftherias in #2580
• Add test server mindev command by @JAORMX in #2579
• Project providers through the hierarchy by @JAORMX in #2573
• Auto-generated DB schema update - 2024-03-12 05:27:22 by @github-actions in #2583
• Clean up provider enroll, provide error message on failure by @evankanderson in #2567
• Move from docker-compose to docker compose by @Vyom-Yadav in #2538
• build(deps): bump github.com/daixiang0/gci from 0.13.0 to 0.13.1 in /tools by @dependabot in #2588
• Add subproject creation/deletion operations by @JAORMX in #2556
• Wait for OpenFGA to be healthy in tests by @JAORMX in #2586
• Auto-generated cli documentation update - 2024-03-12 05:56:50 by @github-actions in #2584
• Fix docs build by @JAORMX in #2592
• Add authorization flows to the providers API by @JAORMX in #2593
• Use project ID when querying by repo UUID by @dmjb in #2590
• Implement provider get API and CLI by @JAORMX in #2595
• Read database migrations from embedded filesystem and not dynamically by @JAORMX in #2587
• Enforce project boundaries in profile API by @JAORMX in #2597
• Implement a HTTP PATCH method for updating profiles by @jhrozek in #2565
• Disable ingestcache for artifacts by @JAORMX in #2603
• Revert "Disable ingestcache for artifacts (#2603)" by @rdimitrov in #2606
• Assorted refactoring changes by @dmjb in #2596
• Remove unused mock by @dmjb in #2607
• This makes sure that the github providers have the expected auth flows set up by @JAORMX in #2602
• Refactor: Move Dockerfile to a separate docker directory by @Vyom-Yadav in #2589
• build(deps): bump actions/checkout from 4.1.1 to 4.1.2 by @dependabot in #2610
• build(deps): bump github/codeql-action from 3.24.6 to 3.24.7 by @dependabot in #2611
• build(deps): bump peter-evans/create-pull-request from 6.0.1 to 6.0.2 by @dependabot in #2612
• build(deps): bump github.com/grpc-ecosystem/go-grpc-middleware/v2 from 2.0.1 to 2.1.0 by @dependabot in #2614
• Add extra fields to our logging so it's easier to track where issues happen by @JAORMX in #2615
• Actually check for auth flows in provider enrollment by @JAORMX in #2601
• Store expected GitHub userid in database during enroll by @evankanderson in #2566
• Auto-generated DB schema update - 2024-03-13 11:55:22 by @github-actions in #2618
• Remove hardcoded provider check by @JAORMX in #2617
• Suppress the default googlerpc.Status reply from swagger.json by @jhrozek in #2620
• Auto-generated cli documentation update - 2024-03-13 13:10:38 by @github-actions in #2621
• Fix severity handling, default to low for GitHub by @rdimitrov in #2623
• Move rule creation and update into a separate interface by @dmjb in #2622
• Remove the default googlerpcStatus from the PatchProfile rpc method as well by @jhrozek in #2624

Full Changelog: v0.0.34...v0.0.35

v0.0.34

What's Changed

• git ingester: Allow using default branch by @JAORMX in #2496
• minder ruletype lint: Also verify that rule type name matches file name by @JAORMX in #2495
• update doc yarn dependencies by @dmjb in #2498
• add lint-fix command to makefile by @dmjb in #2500
• Allow rule type linting to skip rego and read many rule types by @JAORMX in #2499
• Ensure viper binds to env vars in mindev by @JAORMX in #2501
• Remove replace statement from go.mod by @JAORMX in #2503

Full Changelog: v0.0.33...v0.0.34

v0.0.33

What's Changed

• clean up unused DB queries for repositories by @dmjb in #2483
• Support for offline tokens by @JAORMX in #2468
• Auto-generated cli documentation update - 2024-03-04 19:52:24 by @github-actions in #2485
• Bump OpenFGA in docker-compose to v1.5.0 by @JAORMX in #2484
• Include 'openfga' in the 'depends_on' section of the 'minder' server container by @Vyom-Yadav in #2489
• Upsert provider access tokens instead of Create and Delete by @jhrozek in #2486
• build(deps): bump golang.org/x/crypto from 0.20.0 to 0.21.0 by @dependabot in #2492
• build(deps): bump golang.org/x/oauth2 from 0.17.0 to 0.18.0 by @dependabot in #2491
• build(deps): bump golang.org/x/tools from 0.18.0 to 0.19.0 in /tools by @dependabot in #2494

Full Changelog: v0.0.32...v0.0.33

v0.0.32

What's Changed

• Do not ingest indirect go dependencies by @rdimitrov in #2429
• Fix GHSA fix with respect to int64 update in #2415 by @evankanderson in #2431
• Fix client crash with fix for GHSA-q6h8-4j2v-pjg4 by @evankanderson in #2432
• Improve logging when ProjectsForUser returns an error by @evankanderson in #2435
• Add test coverage for #2432 by @evankanderson in #2434
• Log and report operating project details when return permission denied error by @evankanderson in #2436
• build(deps): bump golang.org/x/crypto from 0.19.0 to 0.20.0 by @dependabot in #2439
• build(deps): bump github.com/daixiang0/gci from 0.12.3 to 0.13.0 in /tools by @dependabot in #2437
• build(deps): bump github.com/puzpuzpuz/xsync/v3 from 3.0.2 to 3.1.0 by @dependabot in #2438
• build(deps): bump github.com/signalfx/splunk-otel-go/instrumentation/github.com/lib/pq/splunkpq from 1.13.0 to 1.14.0 by @dependabot in #2442
• build(deps): bump go.opentelemetry.io/otel/exporters/prometheus from 0.45.2 to 0.46.0 by @dependabot in #2440
• build(deps): bump go.opentelemetry.io/otel/exporters/stdout/stdouttrace from 1.23.1 to 1.24.0 by @dependabot in #2441
• migrate webhook IDs to 64-bit integers by @dmjb in #2444
• Expose more errors as user-visible so users can adjust their queries in a useful way. by @evankanderson in #2448
• build(deps): bump docker/setup-buildx-action from 3.0.0 to 3.1.0 by @dependabot in #2450
• build(deps): bump peter-evans/create-pull-request from 6.0.0 to 6.0.1 by @dependabot in #2449
• build(deps): bump github.com/prometheus/client_golang from 1.18.0 to 1.19.0 by @dependabot in #2451
• Use uber-go/mock instead of the deprecated github.com/golang/mock/gomock by @JAORMX in #2454
• Promote Github PR ID to int64 by @dmjb in #2446
• Print a helpful message in case of unauthenticated grpc code by @rdimitrov in #2455
• Add explicit severity to rule types by @JAORMX in #2452
• Auto-generated DB schema update - 2024-02-28 18:18:45 by @github-actions in #2460
• Add provider callback handler for web app by @eleftherias in #2413
• Auto-generated DB schema update - 2024-02-28 19:08:35 by @github-actions in #2461
• build(deps): bump github.com/fergusstrange/embedded-postgres from 1.25.0 to 1.26.0 by @dependabot in #2463
• build(deps): bump github.com/go-critic/go-critic from 0.11.1 to 0.11.2 in /tools by @dependabot in #2466
• build(deps): bump aquasecurity/trivy-action from 0.17.0 to 0.18.0 by @dependabot in #2464
• bump github.com/openfga/cli from 0.2.5 to 0.2.6 in /tools by @JAORMX in #2467
• Add name validation for profiles and rule types, move static validation first, add tests by @evankanderson in #2462
• Ensure user is logged in upon going through the quickstart flow by @rdimitrov in #2458
• Auto-generated cli documentation update - 2024-02-29 14:10:50 by @github-actions in #2469
• build(deps): bump github.com/open-policy-agent/opa from 0.61.0 to 0.62.0 by @dependabot in #2472
• build(deps): bump github/codeql-action from 3.24.5 to 3.24.6 by @dependabot in #2471
• Catch errors in refresh token fetching by @JAORMX in #2473
• Move webhook create/delete into separate interface by @dmjb in #2459
• Allow for configuring CORS in minder's HTTP server by @JAORMX in #2474
• build(deps): bump github.com/styrainc/regal from 0.17.0 to 0.18.0 by @dependabot in #2480
• build(deps): bump github.com/go-playground/validator/v10 from 10.18.0 to 10.19.0 by @dependabot in #2478
• build(deps): bump github.com/norwoodj/helm-docs from 1.13.0 to 1.13.1 in /tools by @dependabot in #2476
• build(deps): bump github.com/stretchr/testify from 1.8.4 to 1.9.0 by @dependabot in #2477
• build(deps): bump github.com/openfga/openfga from 1.4.3 to 1.5.0 by @dependabot in #2479

Full Changelog: v0.0.31...v0.0.32

v0.0.31

What's Changed

• Fix CLI invocations in first_profile.md by @puerco in #2328
• Run "make gen" for main by @rdimitrov in #2333
• Add Homoglyphs detection in Minder by @teodor-yanev in #2312
• Unname unused params and bump golangci-lint by @puerco in #2335
• build(deps): bump github.com/go-playground/validator/v10 from 10.17.0 to 10.18.0 by @dependabot in #2336
• build(deps): bump github.com/signalfx/splunk-otel-go/instrumentation/github.com/lib/pq/splunkpq from 1.12.0 to 1.13.0 by @dependabot in #2337
• build(deps): bump redocusaurus from 2.0.0 to 2.0.1 in /docs by @dependabot in #2339
• Update docs for getting started and how to by @rdimitrov in #2331
• Fix a few Trusty issues that enable support for Go in Minder by @rdimitrov in #2332
• build(deps): bump golang.org/x/tools from 0.17.0 to 0.18.0 in /tools by @dependabot in #2340
• Use MINDER_CONFIG to simplify selection of local / staging / prod by @evankanderson in #2329
• Enable Coveralls for coverage reporting by @evankanderson in #2342
• Revert "Enable Coveralls for coverage reporting" by @evankanderson in #2344
• build(deps): bump google.golang.org/grpc from 1.61.0 to 1.61.1 by @dependabot in #2347
• build(deps): bump github.com/openfga/go-sdk from 0.3.4 to 0.3.5 by @dependabot in #2346
• build(deps): bump github/codeql-action from 3.24.0 to 3.24.1 by @dependabot in #2345
• build(deps): bump github.com/sigstore/protobuf-specs from 0.2.1 to 0.3.0 by @dependabot in #2341
• build(deps): bump golang from ef61a20 to cefea7f by @dependabot in #2349
• Re-enable coverage reporting to coveralls by @evankanderson in #2351
• Replace unpinned actions with pinned action by @stacklokbot in #2352
• build(deps): bump coverallsapp/github-action from e5e2507fa218d2031f39816cd7d078ebd1f1a6c6 to 3dfc5567390f6fa9267c0ee9c251e4c8c3f18949 by @dependabot in #2356
• build(deps): bump golang from cefea7f to 7b297d9 by @dependabot in #2353
• build(deps): bump k8s.io/apimachinery from 0.29.1 to 0.29.2 by @dependabot in #2354
• build(deps): bump github.com/go-critic/go-critic from 0.11.0 to 0.11.1 in /tools by @dependabot in #2361
• build(deps): bump github/codeql-action from 3.24.1 to 3.24.3 by @dependabot in #2359
• Add coveralls badge, reduce debugging spew by @evankanderson in #2357
• build(deps): bump github.com/golangci/golangci-lint from 1.56.1 to 1.56.2 in /tools by @dependabot in #2360
• build(deps): bump github.com/daixiang0/gci from 0.12.1 to 0.12.3 in /tools by @dependabot in #2362
• build(deps): bump k8s.io/client-go from 0.29.1 to 0.29.2 by @dependabot in #2355
• Add test coverage for internal/util/statuses by @JAORMX in #2364
• Add test coverage for internal/util/rest by @JAORMX in #2363
• Remove unused functions from internal/util/rand by @JAORMX in #2366
• Remove internal/smoke package by @JAORMX in #2367
• Use latest golangci-lint in CI by @JAORMX in #2365
• Drop the artifact_versions table by @jhrozek in #2372
• Auto-generated DB schema update - 2024-02-19 13:19:33 by @github-actions in #2374
• tweak test coverage behaviour by @dmjb in #2373
• Add test coverage for internal/eea FlushAll by @JAORMX in #2375
• Allow golangci-lint to comment on PRs by @JAORMX in #2378
• Elevate the permissions on the linting job in main.yml by @rdimitrov in #2379
• When the context of a request is nil, return InvalidArgument/400 by @dmjb in #2377
• Fix linting permissions for pr.yml and tags.yml workflows by @rdimitrov in #2380
• build(deps): bump github.com/lestrrat-go/jwx/v2 from 2.0.19 to 2.0.20 by @dependabot in #2382
• Add more coverage to internal/eea package by @JAORMX in #2383
• Deprecate the Trusty options from the protobuf by @rdimitrov in #2381
• Handle rate limiting errors for GitHub API by @Vyom-Yadav in #2271
• Deduplicate configuration reading from viper instance by @JAORMX in #2384
• Fix infinite wait for ratecache using non blocking Close() func by @Vyom-Yadav in #2385
• Change the yarn serve port for docs to 3001 by @jhrozek in #2387
• Update artifact provenance documentation by @jhrozek in #2389
• Clean up some JWT code by @evankanderson in #2390
• Revert proto changes from #2381, as they invalidated JSON stored in the Minder database by @evankanderson in #2395
• build(deps): bump github.com/styrainc/regal from 0.16.0 to 0.17.0 by @dependabot in #2398
• build(deps): bump google.golang.org/grpc from 1.61.1 to 1.62.0 by @dependabot in #2397
• Mischief managed, return buf breaking checks to normal. by @evankanderson in #2396
• Standard PR template for Minder and a workflow check by @teodor-yanev in #2399
• Stacklokbot shouldn't run the PR validate workflow by @teodor-yanev in #2401
• add new type of PR for refactoring by @dmjb in #2403
• Replace unpinned actions with pinned action by @stacklokbot in #2400
• Replace unpinned actions with pinned action by @stacklokbot in #2406
• update: stacklokbot without [bot] by @teodor-yanev in #2405
• build(deps): bump github/codeql-action from 3.24.3 to 3.24.4 by @dependabot in #2408
• build(deps): bump actions/github-script from 5c56fde4671bc2d3592fb0f2c5b5bab9ddae03b1 to 60a0d83039c74a4aee543508d2ffcb1c3799cdea by @dependabot in #2407
• Fix TUF root init to bump to sigstore-go to v0.2.0 by @puerco in #2358
• Fix the PR check workflow to take into account the refactoring change type by @rdimitrov in #2410
• Refactor project structure: Move cursor file to utils package and migrate common config struct to common.go by @Vyom-Yadav in #2394
• move profile validation logic out of controlplane by @dmjb in #2402
• Updated Makefile to handle command failure within loops by @Vyom-Yadav in #2416
• Verify the signer identity upon evaluation by @rdimitrov in #2409
• Fix OSV support for Go to properly identify go.mod packages by @rdimitrov in #2417
• Upgrade repoID to int64, because that's the size from GitHub by @evankanderson in #2415
• build(deps): bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc from 0.48.0 to 0.49.0 by @dependabot in #2425
• build(deps): bump github/codeql-action from 3.24.4 to 3.24.5 by @dependabot in #2420
• Hyperlink to trusty page for lower scored packages by @rdimitrov in #2419
• build(deps): bump go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp from 0.48.0 to 0.49.0 by @dependabot in #2422
• build(deps): bump go.opentelemetry.io/otel/sdk/metric from 1.23.1 to 1.24.0 by @dependabot in #2423
• Bump helm-docs to v1.13.0 by @rdimitrov in #2427
• Fix trusty API URL by @rdimitrov in #2428

New Contributors

• @puerco made their first contribution in #2328

Full Changelog: v0.0.30...v0.0.31