From c035763ad5560ea9c43ae6ea3da76cdee4588247 Mon Sep 17 00:00:00 2001 From: Felipe Rios Date: Mon, 23 Mar 2026 16:24:06 -0300 Subject: [PATCH 1/2] chore(bump): bumped version to 1.2.0 Signed-off-by: Felipe Rios --- CHANGELOG.md | 28 +++++++++++++++------------- database_sync/__init__.py | 2 +- 2 files changed, 16 insertions(+), 14 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index debf697..2213fe4 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -17,27 +17,34 @@ Exceptions are acceptable depending on the circumstances (critical bug fixes tha ## [Unreleased] +## [1.2.0] - 2026-03-23 + ### Added -- added required versions of jinja2 `3.1.6` and cryptography `44.0.1` to avoid vulnerabilities - added `Makefile` integrating `rios0rios0/pipelines` for standardized `make lint`, `make test`, and `make sast` targets -- added multi-stage `app.Dockerfile` at `.ci/stages/40-delivery/` for Docker delivery with semver tagging - added full CI pipeline (`python.yaml`) with code checks, security scanning, and tests to the GitHub Actions workflow +- added multi-stage `app.Dockerfile` at `.ci/stages/40-delivery/` for Docker delivery with semver tagging +- added required versions of jinja2 `3.1.6` and cryptography `44.0.1` to avoid vulnerabilities ### Changed - changed CI workflow to use a single `pdm-docker.yaml` call instead of separate `python.yaml` + `python-docker.yaml` jobs, matching the standard pipeline composition pattern -- updated required Python version from `3.9` to `3.13.12` -- updated safety version from `3.0.1` to `3.5.1` to address vulnerabilities -- updated build backend from deprecated `pdm-pep517` to `pdm-backend` - renamed `safety-check` script to `safety-scan` to match the pipelines convention - updated PR templates to reference `make lint`, `make test`, and `make sast` instead of manual `pdm run` commands +- updated build backend from deprecated `pdm-pep517` to `pdm-backend` +- updated required Python version from `3.9` to `3.13.12` +- updated safety version from `3.0.1` to `3.5.1` to address vulnerabilities ### Fixed -- fixed Trivy DS-0026 by adding `HEALTHCHECK` to `app.Dockerfile` and removing the old Dockerfile at `.ci/40-delivery/` -- fixed missing exclude table command for the id_seq of the table ignored -- fixed dropping the id_seq table for the ignored table +- fixed Trivy `DS-0026` by adding `HEALTHCHECK` to `app.Dockerfile` and removing the old Dockerfile at `.ci/40-delivery/` +- fixed dropping the `id_seq` table for the ignored table +- fixed missing exclude table command for the `id_seq` of the table ignored + +### Removed + +- removed `export` script from `pyproject.toml` (inlined into `safety-scan`) +- removed not used `ignore-vulnerabilities` from Safety policy ### Security @@ -50,11 +57,6 @@ Exceptions are acceptable depending on the circumstances (critical bug fixes tha - updated `marshmallow` from `3.22.0` to `4.0.1` to fix known vulnerability - updated `regex` from `2024.11.6` to `2026.1.15` to fix known vulnerability -### Removed - -- removed not used `ignore-vulnerabilities` from safety policy -- removed `export` script from `pyproject.toml` (inlined into `safety-scan`) - ## [1.1.0] - 2024-10-01 ### Added diff --git a/database_sync/__init__.py b/database_sync/__init__.py index 6849410..c68196d 100644 --- a/database_sync/__init__.py +++ b/database_sync/__init__.py @@ -1 +1 @@ -__version__ = "1.1.0" +__version__ = "1.2.0" From 966e1fd1b18a0b5a1df144b9e7bfc59281977127 Mon Sep 17 00:00:00 2001 From: Felipe Rios Date: Mon, 23 Mar 2026 16:35:55 -0300 Subject: [PATCH 2/2] fix(pr-review): addressed PR review comments - reworded changelog entry for `id_seq` exclude-table fix - reworded changelog entry for removed Safety policy entry Co-Authored-By: Claude Opus 4.6 (1M context) --- CHANGELOG.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 2213fe4..571aa68 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -39,12 +39,12 @@ Exceptions are acceptable depending on the circumstances (critical bug fixes tha - fixed Trivy `DS-0026` by adding `HEALTHCHECK` to `app.Dockerfile` and removing the old Dockerfile at `.ci/40-delivery/` - fixed dropping the `id_seq` table for the ignored table -- fixed missing exclude table command for the `id_seq` of the table ignored +- ensured the `id_seq` sequence for the ignored table is also excluded by adding the corresponding exclude-table command ### Removed - removed `export` script from `pyproject.toml` (inlined into `safety-scan`) -- removed not used `ignore-vulnerabilities` from Safety policy +- removed the unused `ignore-vulnerabilities` entry from the Safety policy ### Security