From 22d5ae3125ead9fb54dccaad6522263147722a47 Mon Sep 17 00:00:00 2001 From: "dev-mend-for-github.amrom.workers.dev[bot]" <51963704+dev-mend-for-github.amrom.workers.dev[bot]@users.noreply.github.com> Date: Thu, 22 Feb 2024 06:47:28 +0000 Subject: [PATCH 1/6] Add .whitesource configuration file --- .whitesource | 45 +++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 45 insertions(+) create mode 100644 .whitesource diff --git a/.whitesource b/.whitesource new file mode 100644 index 0000000..04109aa --- /dev/null +++ b/.whitesource @@ -0,0 +1,45 @@ +{ + "scanSettings": { + "configMode": "AUTO", + "configExternalURL": "", + "projectToken": "", + "baseBranches": [] + }, + "scanSettingsSAST": { + "enableScan": true, + "scanPullRequests": true, + "incrementalScan": true, + "baseBranches": [], + "snippetSize": 10 + }, + "checkRunSettings": { + "vulnerableCheckRunConclusionLevel": "failure", + "displayMode": "diff", + "useMendCheckNames": true + }, + "checkRunSettingsSAST": { + "checkRunConclusionLevel": "failure", + "severityThreshold": "high" + }, + "issueSettings": { + "minSeverityLevel": "LOW", + "issueType": "DEPENDENCY" + }, + "issueSettingsSAST": { + "minSeverityLevel": "high", + "issueType": "repo" + }, + "remediateSettings": { + "workflowRules": { + "enabled": true + } + }, + "imageSettings":{ + "imageTracing":{ + "enableImageTracingPR": false, + "addRepositoryCoordinate": false, + "addDockerfilePath": false, + "addMendIdentifier": false + } + } +} \ No newline at end of file From acab7c020183d1e5e1c4a921267d27784a8af22c Mon Sep 17 00:00:00 2001 From: "dev-mend-for-github.amrom.workers.dev[bot]" <51963704+dev-mend-for-github.amrom.workers.dev[bot]@users.noreply.github.com> Date: Thu, 22 Feb 2024 06:50:30 +0000 Subject: [PATCH 2/6] Update dependency Pillow to v9 --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 555c8c7..0811a82 100644 --- a/requirements.txt +++ b/requirements.txt @@ -6,7 +6,7 @@ django-crispy-forms==1.8.1 django-registration-redux==2.6 idna==2.8 oauthlib==3.1.0 -Pillow==6.2.1 +Pillow==9.3.0 PyJWT==1.7.1 python3-openid==3.1.0 pytz==2019.3 From 973dd4dda058c3200cc47a9eaf5f620d53a779f2 Mon Sep 17 00:00:00 2001 From: Bunin <105357020+BuninEk@users.noreply.github.com> Date: Thu, 22 Feb 2024 12:47:10 +0200 Subject: [PATCH 3/6] Update requirements-1.txt --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 555c8c7..8317b50 100644 --- a/requirements.txt +++ b/requirements.txt @@ -16,5 +16,5 @@ six==1.14.0 social-auth-app-django==3.1.0 social-auth-core==3.2.0 sqlparse==0.3.0 -urllib3==1.25.7 +urllib3==2.0.1 virtualenv==16.7.7 From 693665803c22341df08f02324f93de7c02d7a82a Mon Sep 17 00:00:00 2001 From: Bunin <105357020+BuninEk@users.noreply.github.com> Date: Thu, 22 Feb 2024 13:10:16 +0200 Subject: [PATCH 4/6] Update requirements.txt --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 5fedd7c..8317b50 100644 --- a/requirements.txt +++ b/requirements.txt @@ -6,7 +6,7 @@ django-crispy-forms==1.8.1 django-registration-redux==2.6 idna==2.8 oauthlib==3.1.0 -Pillow==9.3.0 +Pillow==6.2.1 PyJWT==1.7.1 python3-openid==3.1.0 pytz==2019.3 From fecbe943f0099c973971c8257e443bb9755bef1c Mon Sep 17 00:00:00 2001 From: Bunin <105357020+BuninEk@users.noreply.github.com> Date: Thu, 22 Feb 2024 13:20:51 +0200 Subject: [PATCH 5/6] Update requirements Pillow 7.1.0.txt --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 8317b50..5af26f3 100644 --- a/requirements.txt +++ b/requirements.txt @@ -6,7 +6,7 @@ django-crispy-forms==1.8.1 django-registration-redux==2.6 idna==2.8 oauthlib==3.1.0 -Pillow==6.2.1 +Pillow==7.1.0 PyJWT==1.7.1 python3-openid==3.1.0 pytz==2019.3 From ff521e1017733fdbb22a6241ba94f27d90245161 Mon Sep 17 00:00:00 2001 From: "dev-mend-for-github.amrom.workers.dev[bot]" <51963704+dev-mend-for-github.amrom.workers.dev[bot]@users.noreply.github.com> Date: Thu, 22 Feb 2024 11:23:07 +0000 Subject: [PATCH 6/6] Update dependency Pillow to v9 --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 5af26f3..5fedd7c 100644 --- a/requirements.txt +++ b/requirements.txt @@ -6,7 +6,7 @@ django-crispy-forms==1.8.1 django-registration-redux==2.6 idna==2.8 oauthlib==3.1.0 -Pillow==7.1.0 +Pillow==9.3.0 PyJWT==1.7.1 python3-openid==3.1.0 pytz==2019.3