GSA/889-tool issues and pull requests

#382 - Bump fastapi from 0.115.0 to 0.115.5

Pull Request - State: open - Opened by dependabot[bot] 2 months ago
Labels: dependencies, python

#381 - Bump eslint from 8.51.0 to 9.15.0 in /front-end

Pull Request - State: open - Opened by dependabot[bot] 2 months ago
Labels: dependencies, javascript

#380 - Gsa/merge main into dev

Pull Request - State: open - Opened by felder101 2 months ago

#379 - Production Release

Pull Request - State: closed - Opened by felder101 3 months ago

#378 - Update to latest version of USWDS 3.10.0

Issue - State: open - Opened by JennaySDavis 3 months ago
Labels: Tech Task

#378 - Update to latest version of USWDS 3.10.0

Issue - State: open - Opened by JennaySDavis 3 months ago
Labels: Tech Task

#377 - Bump werkzeug from 3.0.6 to 3.1.3

Pull Request - State: open - Opened by dependabot[bot] 3 months ago
Labels: dependencies, python

#377 - Bump werkzeug from 3.0.6 to 3.1.3

Pull Request - State: open - Opened by dependabot[bot] 3 months ago
Labels: dependencies, python

#376 - Bump cypress from 13.3.0 to 13.15.2 in /front-end

Pull Request - State: open - Opened by dependabot[bot] 3 months ago
Labels: dependencies, javascript

#376 - Bump cypress from 13.3.0 to 13.15.2 in /front-end

Pull Request - State: open - Opened by dependabot[bot] 3 months ago
Labels: dependencies, javascript

#375 - Bump eslint from 8.51.0 to 9.14.0 in /front-end

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, javascript

#374 - Bump pydantic-settings from 2.4.0 to 2.6.1

Pull Request - State: open - Opened by dependabot[bot] 3 months ago
Labels: dependencies, python

#374 - Bump pydantic-settings from 2.4.0 to 2.6.1

Pull Request - State: open - Opened by dependabot[bot] 3 months ago
Labels: dependencies, python

#373 - Bump werkzeug from 3.0.6 to 3.1.1

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, python

#373 - Bump werkzeug from 3.0.6 to 3.1.1

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, python

#372 - Sprint 42

Pull Request - State: closed - Opened by john-labbate 3 months ago

#371 - Dependabot Alert: Werkzeug safe_join not safe on Windows

Issue - State: open - Opened by JennaySDavis 3 months ago - 2 comments
Labels: Dependabot Alert, Sprint 43

#370 - Dependabot Alert: Werkzeug possible resource exhaustion when parsing file data in forms

Issue - State: open - Opened by JennaySDavis 3 months ago - 2 comments
Labels: Dependabot Alert, Sprint 43

#370 - Dependabot Alert: Werkzeug possible resource exhaustion when parsing file data in forms

Issue - State: open - Opened by JennaySDavis 3 months ago - 2 comments
Labels: Dependabot Alert, Sprint 43

#369 - Bump cypress from 13.3.0 to 13.15.1 in /front-end

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, javascript

#369 - Bump cypress from 13.3.0 to 13.15.1 in /front-end

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, javascript

#368 - Bump fastapi from 0.115.0 to 0.115.4

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, python

#367 - Bump werkzeug from 3.0.3 to 3.0.6 in the pip group

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago
Labels: dependencies, python

#366 - Update uswds version to 3.9.0

Pull Request - State: closed - Opened by john-labbate 3 months ago

#366 - Update uswds version to 3.9.0

Pull Request - State: closed - Opened by john-labbate 3 months ago

#365 - Bump eslint from 8.51.0 to 9.13.0 in /front-end

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, javascript

#365 - Bump eslint from 8.51.0 to 9.13.0 in /front-end

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, javascript

#364 - Bump eslint-config-prettier from 9.0.0 to 9.1.0 in /front-end

Pull Request - State: open - Opened by dependabot[bot] 3 months ago
Labels: dependencies, javascript

#364 - Bump eslint-config-prettier from 9.0.0 to 9.1.0 in /front-end

Pull Request - State: open - Opened by dependabot[bot] 3 months ago
Labels: dependencies, javascript

#363 - Bump uvicorn[standard] from 0.30.6 to 0.32.0

Pull Request - State: open - Opened by dependabot[bot] 3 months ago
Labels: dependencies, python

#363 - Bump uvicorn[standard] from 0.30.6 to 0.32.0

Pull Request - State: open - Opened by dependabot[bot] 3 months ago
Labels: dependencies, python

#362 - Bump pydantic-settings from 2.4.0 to 2.6.0

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, python

#362 - Bump pydantic-settings from 2.4.0 to 2.6.0

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, python

#361 - Production Release (Sprint 41)

Pull Request - State: closed - Opened by felder101 4 months ago

#361 - Production Release (Sprint 41)

Pull Request - State: closed - Opened by felder101 4 months ago

#360 - Bump vite from 5.2.12 to 5.4.9 in /front-end in the npm_and_yarn group

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies, javascript

#360 - Bump vite from 5.2.12 to 5.4.9 in /front-end in the npm_and_yarn group

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies, javascript

#359 - Bump vite from 4.5.5 to 5.1.8 in /front-end in the npm_and_yarn group across 1 directory

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies, javascript

#359 - Bump vite from 4.5.5 to 5.1.8 in /front-end in the npm_and_yarn group across 1 directory

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies, javascript

#358 - Vite Dependabot Vulnerability

Pull Request - State: closed - Opened by felder101 4 months ago

#358 - Vite Dependabot Vulnerability

Pull Request - State: closed - Opened by felder101 4 months ago

#357 - Bump uvicorn[standard] from 0.30.6 to 0.31.1

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, python

#357 - Bump uvicorn[standard] from 0.30.6 to 0.31.1

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, python

#356 - Bump fastapi from 0.115.0 to 0.115.2

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, python

#356 - Bump fastapi from 0.115.0 to 0.115.2

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, python

#355 - USWDS 3.9.0

Issue - State: open - Opened by johnbeallgsa 4 months ago - 2 comments
Labels: Sprint 42

#355 - USWDS 3.9.0

Issue - State: open - Opened by johnbeallgsa 4 months ago - 2 comments
Labels: Sprint 42

#354 - Security Policy violation Branch Protection

Issue - State: open - Opened by ghost 4 months ago
Labels: allstar

#354 - Security Policy violation Branch Protection

Issue - State: open - Opened by ghost 4 months ago
Labels: allstar

#353 - Bump eslint from 8.51.0 to 9.12.0 in /front-end

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, javascript

#353 - Bump eslint from 8.51.0 to 9.12.0 in /front-end

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment
Labels: dependencies, javascript

#352 - Production Release

Pull Request - State: closed - Opened by felder101 4 months ago

#352 - Production Release

Pull Request - State: closed - Opened by felder101 4 months ago

#351 - Fixed accessiblity isse with the pagination buttons

Pull Request - State: closed - Opened by felder101 4 months ago

#351 - Fixed accessiblity isse with the pagination buttons

Pull Request - State: closed - Opened by felder101 4 months ago

#350 - Update the Purpose of Registration indicator to include Financial Assistance Awards Only (Z1)

Issue - State: open - Opened by JennaySDavis 4 months ago - 1 comment
Labels: Enhancement

#350 - Update the Purpose of Registration indicator to include Financial Assistance Awards Only (Z1)

Issue - State: open - Opened by JennaySDavis 4 months ago - 1 comment
Labels: Enhancement

#349 - Bump uvicorn[standard] from 0.30.6 to 0.31.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment

#349 - Bump uvicorn[standard] from 0.30.6 to 0.31.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment

#348 - Bump eslint from 8.51.0 to 9.11.1 in /front-end

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment

#348 - Bump eslint from 8.51.0 to 9.11.1 in /front-end

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment

#347 - Bump cypress from 13.3.0 to 13.15.0 in /front-end

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment

#347 - Bump cypress from 13.3.0 to 13.15.0 in /front-end

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment

#346 - Research SAM.gov to determine why vendors/contractors marked to be shared are not appearing in the 889 Tool

Issue - State: open - Opened by JennaySDavis 4 months ago - 1 comment
Labels: Tech Task, Sprint 40

#346 - Research SAM.gov to determine why vendors/contractors marked to be shared are not appearing in the 889 Tool

Issue - State: open - Opened by JennaySDavis 4 months ago - 1 comment
Labels: Tech Task, Sprint 40

#345 - Integration to Application Security as a Service (APPSECaaS)

Issue - State: open - Opened by JennaySDavis 4 months ago
Labels: Tech Task

#345 - Integration to Application Security as a Service (APPSECaaS)

Issue - State: open - Opened by JennaySDavis 4 months ago
Labels: Tech Task

#344 - Bump jsdom from 22.1.0 to 25.0.1 in /front-end

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago

#344 - Bump jsdom from 22.1.0 to 25.0.1 in /front-end

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago

#343 - Bump sass from 1.77.4 to 1.79.3 in /front-end

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment

#343 - Bump sass from 1.77.4 to 1.79.3 in /front-end

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment

#342 - Bump fastapi from 0.112.0 to 0.115.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment

#342 - Bump fastapi from 0.112.0 to 0.115.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment

#341 - Bump eslint from 8.51.0 to 9.11.0 in /front-end

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment

#341 - Bump eslint from 8.51.0 to 9.11.0 in /front-end

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment

#340 - Bump sass from 1.77.4 to 1.79.2 in /front-end

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 2 comments

#340 - Bump sass from 1.77.4 to 1.79.2 in /front-end

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 2 comments

#339 - Remove dependancy.

Pull Request - State: closed - Opened by john-labbate 4 months ago

#339 - Remove dependancy.

Pull Request - State: closed - Opened by john-labbate 4 months ago

#338 - Bump sass from 1.77.4 to 1.79.1 in /front-end

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment

#338 - Bump sass from 1.77.4 to 1.79.1 in /front-end

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 1 comment

#337 - Bump vite from 3.2.11 to 4.5.5 in /front-end in the npm_and_yarn group

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 4 comments

#337 - Bump vite from 3.2.11 to 4.5.5 in /front-end in the npm_and_yarn group

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago - 4 comments

#336 - Production Release

Pull Request - State: closed - Opened by john-labbate 4 months ago

#336 - Production Release

Pull Request - State: closed - Opened by john-labbate 4 months ago

#335 - Dependabot Alert: Vite's `server.fs.deny` is bypassed when using `?import&raw`

Issue - State: open - Opened by JennaySDavis 4 months ago - 2 comments
Labels: Dependabot Alert, Sprint 41

#335 - Dependabot Alert: Vite's `server.fs.deny` is bypassed when using `?import&raw`

Issue - State: open - Opened by JennaySDavis 4 months ago - 2 comments
Labels: Dependabot Alert, Sprint 41

#334 - Dependabot Alert: Vite DOM Clobbering gadget found in vite bundled scripts that leads to XSS

Issue - State: open - Opened by JennaySDavis 4 months ago - 2 comments
Labels: Dependabot Alert, Sprint 41

#334 - Dependabot Alert: Vite DOM Clobbering gadget found in vite bundled scripts that leads to XSS

Issue - State: open - Opened by JennaySDavis 4 months ago - 2 comments
Labels: Dependabot Alert, Sprint 41

#333 - Dependabot Alert: path-to-regexp outputs backtracking regular expressions

Issue - State: open - Opened by JennaySDavis 4 months ago - 2 comments
Labels: Dependabot Alert, Sprint 40

#333 - Dependabot Alert: path-to-regexp outputs backtracking regular expressions

Issue - State: open - Opened by JennaySDavis 4 months ago - 2 comments
Labels: Dependabot Alert, Sprint 40

#332 - Dependabot Alert: DOMPurify allows tampering by prototype pollution

Issue - State: open - Opened by JennaySDavis 4 months ago - 2 comments
Labels: Dependabot Alert, Sprint 40

#332 - Dependabot Alert: DOMPurify allows tampering by prototype pollution

Issue - State: open - Opened by JennaySDavis 4 months ago - 2 comments
Labels: Dependabot Alert, Sprint 40

#331 - Bump the npm_and_yarn group in /front-end with 2 updates

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago

#331 - Bump the npm_and_yarn group in /front-end with 2 updates

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago

#330 - Bump pydantic-settings from 2.4.0 to 2.5.2

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 2 comments

#330 - Bump pydantic-settings from 2.4.0 to 2.5.2

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 2 comments

#329 - Bump fastapi from 0.112.0 to 0.114.2

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment

#329 - Bump fastapi from 0.112.0 to 0.114.2

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment

#328 - Bump vue-router from 4.2.4 to 4.4.5 in /front-end

Pull Request - State: open - Opened by dependabot[bot] 5 months ago - 1 comment

GitHub / GSA/889-tool issues and pull requests