Skip to content

Releases: InseeFrLab/onyxia-api

v4.7.0

06 Jun 10:04
@github-actions github-actions
v4.7.0
b47eece
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v4.7.0 Latest
Latest

Changes

📦 Dependencies

  • chore(deps): update dependency com.diffplug.spotless:spotless-maven-plugin to v2.44.5 (#591) @renovate[bot]
  • fix(deps): update dependency org.springframework.boot:spring-boot-starter-parent to v3.5.0 (#590) @renovate[bot]

Contributors

olevitt
Assets 2
Loading

v4.6.0

21 May 13:08
@github-actions github-actions
v4.6.0
132d3ad
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v4.6.0

🚀 Features

📦 Dependencies

  • fix(deps): update dependency com.github.erosb:everit-json-schema to v1.14.6 (#587) @renovate[bot]
  • fix(deps): update fabric8-kubernetes-client monorepo to v7.3.1 (#588) @renovate[bot]
  • fix(deps): update dependency org.springframework.boot:spring-boot-starter-parent to v3.4.5 (#583) @renovate[bot]
  • fix(deps): update fabric8-kubernetes-client monorepo to v7.2.0 (#584) @renovate[bot]
  • fix(deps): update dependency org.springdoc:springdoc-openapi-starter-webmvc-ui to v2.8.8 (#585) @renovate[bot]
  • chore(deps): update eclipse-temurin docker tag to v21.0.7_6-jre (#582) @renovate[bot]

Contributors

olevitt and fcomte
Loading

v4.5.0

09 Apr 09:23
@github-actions github-actions
v4.5.0
54e664e
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v4.5.0

Changes

  • Add path style access and working directory path in s3 schema (#572) @ihiverlet

🚀 Features

📦 Dependencies

  • chore(deps): update dependency com.diffplug.spotless:spotless-maven-plugin to v2.44.4 (#578) @renovate[bot]
  • fix(deps): update dependency org.springframework.boot:spring-boot-starter-parent to v3.4.4 (#574) @renovate[bot]
  • fix(deps): update dependency org.springdoc:springdoc-openapi-starter-webmvc-ui to v2.8.6 (#576) @renovate[bot]

Contributors

olevitt and ihiverlet
Loading

v4.4.0

03 Mar 11:12
@github-actions github-actions
v4.4.0
643e941
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v4.4.0

Changes

📦 Dependencies

  • chore(deps): update crazy-max/ghaction-docker-meta action to v5.7.0 (#567) @renovate[bot]
  • fix(deps): update dependency org.springframework.boot:spring-boot-starter-parent to v3.4.3 (#564) @renovate[bot]
  • fix(deps): update dependency org.springframework.boot:spring-boot-starter-parent to v3.4.3 (#564) @renovate[bot]
  • chore(deps): update dependency com.diffplug.spotless:spotless-maven-plugin to v2.44.3 (#565) @renovate[bot]
  • chore(deps): update dependency org.apache.maven.plugins:maven-compiler-plugin to v3.14.0 (#566) @renovate[bot]

Contributors

olevitt
Loading

v4.3.0

19 Feb 13:51
@github-actions github-actions
v4.3.0
4b27594
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v4.3.0

Upgrade note

While adding new configuration options for OIDC we took the opportunity to remove oidc.jwk-uri that was added back then as a workaround for Google OAuth. If you are using oidc.jwk-uri you should migrate to oidc.issuer-uri.

Changes

Contributors

olevitt
Loading

v4.2.1

17 Feb 10:06
@github-actions github-actions
v4.2.1
6f2cca2
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v4.2.1

Changes

🪲 Fixes

📦 Dependencies

  • Bump helm to 3.17.1 (#560) @olevitt
  • fix(deps): update dependency org.springdoc:springdoc-openapi-starter-webmvc-ui to v2.8.5 (#559) @renovate[bot]
  • fix(deps): update dependency com.github.erosb:everit-json-schema to v1.14.5 (#557) @renovate[bot]
  • Bump helm to v3.17.0 (#555) @olevitt
  • fix(deps): update dependency org.springframework.boot:spring-boot-starter-parent to v3.4.2 (#552) @renovate[bot]
  • chore(deps): update dependency com.diffplug.spotless:spotless-maven-plugin to v2.44.2 (#550) @renovate[bot]
  • chore(deps): update eclipse-temurin docker tag to v21.0.6_7-jre (#554) @renovate[bot]
  • fix(deps): update fabric8-kubernetes-client monorepo to v7.1.0 (#553) @renovate[bot]
  • fix(deps): update dependency org.springdoc:springdoc-openapi-starter-webmvc-ui to v2.8.4 (#549) @renovate[bot]
  • fix(deps): update dependency org.springframework.boot:spring-boot-starter-parent to v3.4.1 (#543) @renovate[bot]
  • fix(deps): update dependency org.springdoc:springdoc-openapi-starter-webmvc-ui to v2.8.1 (#545) @renovate[bot]
  • chore(deps): update dependency com.diffplug.spotless:spotless-maven-plugin to v2.44.1 (#546) @renovate[bot]

Contributors

olevitt, Gaspi, and ddecrulle
Loading

v4.2.0

19 Dec 10:12
@github-actions github-actions
v4.2.0
bc9627a
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v4.2.0

This release contains multiple fixes for security issues related to helm command injection.
Those fixes have been backported to previous Onyxia-API major versions
Read more here : https://docs.onyxia.sh/vulnerability-disclosure

Security ⚠️

  • Sanitize helm names and namespace (#542) @olevitt
  • Fix arbitrary Helm list parameter injection in GET /my-lab/app (#540) @nicolst
  • Fix command injection vulnerability in HelmInstallService (#539) @nicolst

Changes

🐎 Performance

📦 Dependencies

  • Fabric8 k8s client : revert to OkHTTPClient (#535) @olevitt
  • fix(deps): update fabric8-kubernetes-client monorepo to v7.0.1 (#538) @renovate
  • chore(deps): update fabric8-kubernetes-client monorepo to v7 (major) (#531) @renovate

Contributors

renovate, olevitt, and 2 other contributors
Loading

v3.1.1

19 Dec 10:08
@olevitt olevitt
v3.1.1
8881ad4
Compare
Choose a tag to compare
v3.1.1

This release contains multiple fixes for security issues related to helm command injection.
This is a backport of those fixes.
Read more here : https://docs.onyxia.sh/vulnerability-disclosure

Users are strongly encouraged to use this version instead of v3.1.0 (this can be done by overriding api.image.tag in your helm values) or upgrade to more recent Onyxia releases.

Loading

v2.8.2

19 Dec 10:04
@olevitt olevitt
v2.8.2
af5a45b
Compare
Choose a tag to compare
v2.8.2

This release contains multiple fixes for security issues related to helm command injection.
This is a backport of those fixes.
Read more here : https://docs.onyxia.sh/vulnerability-disclosure

Users are strongly encouraged to use this version instead of v2.8.1 (this can be done by overriding api.image.tag in your helm values) or upgrade to more recent Onyxia releases.

Loading

v4.1.0

26 Nov 13:26
@github-actions github-actions
v4.1.0
7c6675a
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v4.1.0

Changes

🪲 Fixes

  • Refactor catalog refresh to make it more resilient (#516) @olevitt

📚 Documentation

📦 Dependencies

  • Upgrade spring-boot to 3.4 (#523) @olevitt
  • Bump helm version to v3.16.3 (#530) @olevitt
  • fix(deps): update dependency org.springdoc:springdoc-openapi-starter-webmvc-ui to v2.7.0 (#529) @renovate
  • chore(deps): update crazy-max/ghaction-docker-meta action to v5.6.1 (#528) @renovate
  • chore(deps): update eclipse-temurin docker tag to v21.0.5_11-jre (#527) @renovate

Contributors

renovate, olevitt, and 3 other contributors
Loading