Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Update Helm release mysql (helm/defectdojo/Chart.yaml) - abandoned #10513

Closed
wants to merge 2 commits into from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Jul 3, 2024

Mend Renovate

This PR contains the following updates:

Package Update Change
mysql (source) minor ~9.19.0 -> ~9.23.0
mysql major 5.7.44 -> 9.0.0

Release Notes

bitnami/charts (mysql)

v9.23.0

  • [bitnami/mysql] feat: ✨ 🔒 Add automatic adaptation for Openshift restricted-v2 SCC (#​2 (51beaf0), closes #​24128

v9.22.0

v9.21.2

v9.21.1


Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.


  • If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

@renovate renovate bot added the dependencies Pull requests that update a dependency file label Jul 3, 2024
Copy link

dryrunsecurity bot commented Jul 3, 2024

Hi there 👋, @DryRunSecurity here, below is a summary of our analysis and findings.

DryRun Security Status Findings
Configured Codepaths Analyzer 0 findings
IDOR Analyzer 0 findings
Sensitive Files Analyzer 0 findings
Server-Side Request Forgery Analyzer 0 findings
SQL Injection Analyzer 0 findings
Authn/Authz Analyzer 0 findings
Secrets Analyzer 0 findings

Note

🟢 Risk threshold not exceeded.

Change Summary (click to expand)

The following is a summary of changes in this pull request made by me, your security buddy 🤖. Note that this summary is auto-generated and not meant to be a definitive list of security issues but rather a helpful summary from a security perspective.

Summary:

The provided code changes include updates to the DefectDojo Helm chart dependencies, as well as an update to the MySQL database version used in the Docker Compose configuration. From an application security perspective, these changes are generally positive, as they often include security fixes and improvements. However, it's important to carefully review the implications of these updates to ensure that there are no known security vulnerabilities or breaking changes that could impact the application's functionality and security posture.

The Helm chart dependency updates include version bumps for MySQL, PostgreSQL, RabbitMQ, and Redis. While these updates are typically a good practice, it's crucial to review the release notes and change logs of the new versions to identify any potential security-related changes or issues. Additionally, the application should be thoroughly tested with the new dependency versions to ensure compatibility and proper functionality.

The update to the MySQL database version from 5.7.44 to 9.0.0 in the Docker Compose configuration is a significant version jump and warrants additional review. The new version may include security patches and improvements, but it's essential to understand any changes in security features, bug fixes, or potential breaking changes that could impact the application. Additionally, the secure management of the DD_CREDENTIAL_AES_256_KEY used for encrypting sensitive data should be reviewed to ensure the confidentiality of the application's data.

Files Changed:

  1. helm/defectdojo/Chart.yaml: This file has been updated to use a newer version of the MySQL Helm chart dependency, from ~9.19.0 to ~9.23.0. This is generally a positive change, but the release notes and change logs of the new version should be reviewed to ensure that there are no known security vulnerabilities or breaking changes.

  2. helm/defectdojo/Chart.lock: This file has been updated to reflect the changes in the Helm chart dependencies, including updates to the MySQL, PostgreSQL, RabbitMQ, and Redis versions. These version updates should be carefully reviewed to ensure compatibility and identify any potential security implications.

  3. docker-compose.yml: The MySQL database image version has been updated from 5.7.44 to 9.0.0, which is a significant version jump. The release notes and documentation for the new version should be reviewed to understand any changes in security features, bug fixes, or potential breaking changes. Additionally, the secure management of the DD_CREDENTIAL_AES_256_KEY used for encrypting sensitive data should be reviewed.

Powered by DryRun Security

Signed-off-by: DefectDojo <[email protected]>
Copy link

sonarqubecloud bot commented Jul 3, 2024

Copy link
Contributor

@cneill cneill left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I hoped we could close this and Renovate wouldn't pop another PR until we got #10512 merged, but no such luck.. Requesting changes to block merging

Copy link
Contributor Author

renovate bot commented Jul 3, 2024

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.

@renovate renovate bot changed the title Update Helm release mysql (helm/defectdojo/Chart.yaml) Update Helm release mysql (helm/defectdojo/Chart.yaml) - abandoned Jul 8, 2024
Copy link
Contributor Author

renovate bot commented Jul 8, 2024

Autoclosing Skipped

This PR has been flagged for autoclosing. However, it is being skipped due to the branch being already modified. Please close/delete it manually or report a bug if you think this is in error.

@mtesauro
Copy link
Contributor

mtesauro commented Jul 8, 2024

PR #10512 is merged so closing this.

@mtesauro mtesauro closed this Jul 8, 2024
@Maffooch Maffooch deleted the renovate/mysql-9.x branch July 9, 2024 21:30
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file docker helm
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants