search

nautobot / nautobot-app-ssot

Single Source of Truth for Nautobot
https://docs.nautobot.com/projects/ssot/en/latest/
Other
34 stars 28 forks source link

build(deps): bump nautobot from 2.2.2 to 2.2.3 #445

Closed dependabot[bot] closed 1 month ago

dependabot[bot] commented 1 month ago

Bumps nautobot from 2.2.2 to 2.2.3.

Release notes

Sourced from nautobot's releases.

v2.2.3 - 2024-04-30

What's Changed

Security

  • #5624 - Updated social-auth-app-django dependency to ~5.4.1 to address CVE-2024-32879.
  • #5646 - Fixed a reflected-XSS vulnerability (GHSA-jxgr-gcj5-cqqg) in object-list view rendering of user-provided query parameters.

Added

  • #2946 - Added custom link support for interfaces, console ports, console server ports, power ports, power outlets, front ports, rear ports, device bays, and inventory items.
  • #5034 - Added a view to convert location contact information to contacts or teams.
  • #5537 - Re-added run_job generic Celery task as a wrapper for execution of all Nautobot Jobs.
  • #5560 - Added a template tag which creates a hyperlink that opens in a new tab.
  • #5586 - Added nautobot.apps.jobs.get_jobs() API.

Changed

  • #5498 - Changed the nautobot.extras.jobs.Job class to no longer be a subclass of celery.tasks.Task.

Fixed

  • #5513 - Fixed missing location field in Prefix and VLAN GraphQL schema.
  • #5513 - Restored ability to filter Prefix and VLAN objects at the ORM level by location.
  • #5565 - Fixed optional dependency on social-auth-core by removing an extras related to openidconnect that no longer exists.
  • #5586 - Fixed incorrect rendering of Job variables in the ScheduledJob detail view.
  • #5594 - Fixed Job tiles view not understanding the per_page and page query parameters.
  • #5595 - Fixed bug where API Extra Actions weren't displaying the proper name.
  • #5603 - Fixed config contexts loaded from Git repositories not populating Device Redundancy Group information.
  • #5640 - Fixed bug in generating the URL parameters for cloning objects.
  • #5642 - Fixed some cases where stale Job code might be present when Jobs are sourced from JOBS_ROOT or a Git repository.
  • #5642 - Fixed incorrect handling of Job kwargs when dry-running a job approval request via the REST API.

Documentation

  • #5094 - Added "Reserved Attribute Names" section to the Jobs developer documentation.
  • #5608 - Updated VLAN documentation with a recommendation for modeling of VLANs with respect to Locations.
  • #5626 - Added extras features docs to core developer new model checklist.
  • #5635 - Added borders to tabbed sections of mkdocs.

Housekeeping

  • #4498 - Removed redundant nautobot.extras.plugins.register_jobs function.
  • #5586 - Fixed an intermittent ImportError when running tests with certain options.
  • #5605 - Added prerelease and release workflow to deploy sandbox environments automatically.

Contributors

... (truncated)

Commits
  • f30d160 Merge pull request #5643 from nautobot/release/2.2.3
  • 927412f Update nautobot/docs/release-notes/version-2.2.md
  • 9c31de9 towncrier
  • b1afdea Merge branch 'develop' into release/2.2.3
  • 42440eb Fix quoting of query parameters in list view (#5646)
  • 95dc2cf Update release-note
  • eb60fb4 Merge branch 'develop' into release/2.2.3
  • bf29209 Add more cases where it may be necessary to refresh Job class code on the fly...
  • 0c1bd4e Properly encode URL query parameters when building a cloning URL (#5641)
  • bd27f0d towncrier and version bump
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/nautobot/nautobot-app-ssot/network/alerts).
jdrew82 commented 1 month ago

@dependabot close