From 0086c0b9cede1f7b846f76e4f621ef6e85c0eb4c Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 19 Sep 2024 08:21:42 +0000 Subject: [PATCH 1/7] Bump ruff from 0.6.4 to 0.6.5 Bumps [ruff](https://github.com/astral-sh/ruff) from 0.6.4 to 0.6.5. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/0.6.4...0.6.5) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements-dev.in | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements-dev.in b/requirements-dev.in index 22b7c061..3e7b5cb9 100644 --- a/requirements-dev.in +++ b/requirements-dev.in @@ -6,5 +6,5 @@ pytest-timeout==2.3.1 pylint==3.2.7 randomname==0.2.1 requests-mock==1.12.1 -ruff==0.6.4 +ruff==0.6.5 parameterized==0.9.0 From 0252f257954a81343a354187c9bc2f019b63684d Mon Sep 17 00:00:00 2001 From: thoHeinze Date: Fri, 23 Aug 2024 09:24:35 +0200 Subject: [PATCH 2/7] Add warning about pinned AWS root CAs * in the mendix buildpack the supported RDS certificates are hardcoded in the directory /etc * the existing AWS RDS certificates `rds-ca-2019` has expired on 22th August 2024: https://aws.amazon.com/de/blogs/aws/rotate-your-ssl-tls-certificates-now-amazon-rds-and-amazon-aurora-expire-in-2024/ * the new certificates were the first time introduced in https://github.com/mendix/cf-mendix-buildpack/pull/668 * as result, all buildpacks prior to version v5.0.5 are known to no longer work with AWS RDS --- README.md | 2 ++ 1 file changed, 2 insertions(+) diff --git a/README.md b/README.md index 553837b8..408ed0ce 100644 --- a/README.md +++ b/README.md @@ -198,6 +198,8 @@ cf set-env DATABASE_CONNECTION_PARAMS '{"tcpKeepAlive": "true", "conn To allow connection to an AWS RDS database the buildpack selects the regional CA certificate stored in [`rds-certificates`](etc/rds-certificates). If the region's certificate doesn't exist, the buildpack will fail with an error `Could not find database CA certificate in map`. +*:warning: After the root CA rotation of AWS RDS on 22nd August 2024, only buildpacks v5.0.5 or higher will continue to work, all older buildpacks only import no longer valid certificates and no longer can establish a connection to AWS RDS.* + #### Supported VCAP Schemas Cloud Foundry database services are detected from Cloud Foundry service bindings ([VCAP](https://docs.cloudfoundry.org/devguide/deploy-apps/environment-variable.html#VCAP-SERVICES)) and translated into Mendix Runtime configuration. In case no database service is bound, the fallback is the environment variable `DATABASE_URL`. From 1db1e42f6204fa337085d6d2ea2832d2ef93b358 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 23 Sep 2024 14:25:41 +0000 Subject: [PATCH 3/7] Bump pylint from 3.2.7 to 3.3.0 Bumps [pylint](https://github.com/pylint-dev/pylint) from 3.2.7 to 3.3.0. - [Release notes](https://github.com/pylint-dev/pylint/releases) - [Commits](https://github.com/pylint-dev/pylint/compare/v3.2.7...v3.3.0) --- updated-dependencies: - dependency-name: pylint dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements-dev.in | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements-dev.in b/requirements-dev.in index 3e7b5cb9..d72b7104 100644 --- a/requirements-dev.in +++ b/requirements-dev.in @@ -3,7 +3,7 @@ idna==3.8 pytest==8.3.3 pytest-timer==1.0.0 pytest-timeout==2.3.1 -pylint==3.2.7 +pylint==3.3.0 randomname==0.2.1 requests-mock==1.12.1 ruff==0.6.5 From f1cf27878efbbce83068d287d62db67fddd5048c Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 23 Sep 2024 19:52:25 +0000 Subject: [PATCH 4/7] Bump idna from 3.8 to 3.10 Bumps [idna](https://github.com/kjd/idna) from 3.8 to 3.10. - [Release notes](https://github.com/kjd/idna/releases) - [Changelog](https://github.com/kjd/idna/blob/master/HISTORY.rst) - [Commits](https://github.com/kjd/idna/compare/v3.8...v3.10) --- updated-dependencies: - dependency-name: idna dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements-dev.in | 2 +- requirements.txt | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/requirements-dev.in b/requirements-dev.in index d72b7104..26069063 100644 --- a/requirements-dev.in +++ b/requirements-dev.in @@ -1,5 +1,5 @@ click==8.1.7 -idna==3.8 +idna==3.10 pytest==8.3.3 pytest-timer==1.0.0 pytest-timeout==2.3.1 diff --git a/requirements.txt b/requirements.txt index 02ceb37f..9b12d18c 100644 --- a/requirements.txt +++ b/requirements.txt @@ -22,7 +22,7 @@ distro==1.9.0 # via -r requirements.in httplib2==0.22.0 # via -r requirements.in -idna==3.7 +idna==3.10 # via requests jinja2==3.1.4 # via -r requirements.in From 9403826393c6d328e0e0d70a56f43e488ce973ba Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 23 Sep 2024 20:06:16 +0000 Subject: [PATCH 5/7] Bump ruff from 0.6.5 to 0.6.7 Bumps [ruff](https://github.com/astral-sh/ruff) from 0.6.5 to 0.6.7. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/0.6.5...0.6.7) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements-dev.in | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements-dev.in b/requirements-dev.in index 26069063..9079faa6 100644 --- a/requirements-dev.in +++ b/requirements-dev.in @@ -6,5 +6,5 @@ pytest-timeout==2.3.1 pylint==3.3.0 randomname==0.2.1 requests-mock==1.12.1 -ruff==0.6.5 +ruff==0.6.7 parameterized==0.9.0 From 5a28db4d5d317c9fd6101fd06c52148fa1f35a21 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 30 Sep 2024 14:51:36 +0000 Subject: [PATCH 6/7] Bump ruff from 0.6.7 to 0.6.8 Bumps [ruff](https://github.com/astral-sh/ruff) from 0.6.7 to 0.6.8. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/0.6.7...0.6.8) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements-dev.in | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements-dev.in b/requirements-dev.in index 9079faa6..24b880fe 100644 --- a/requirements-dev.in +++ b/requirements-dev.in @@ -6,5 +6,5 @@ pytest-timeout==2.3.1 pylint==3.3.0 randomname==0.2.1 requests-mock==1.12.1 -ruff==0.6.7 +ruff==0.6.8 parameterized==0.9.0 From 11cdff71e811ffb0e15f0d42fb2d28cfa2962435 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 1 Oct 2024 10:39:03 +0000 Subject: [PATCH 7/7] Bump pylint from 3.3.0 to 3.3.1 Bumps [pylint](https://github.com/pylint-dev/pylint) from 3.3.0 to 3.3.1. - [Release notes](https://github.com/pylint-dev/pylint/releases) - [Commits](https://github.com/pylint-dev/pylint/compare/v3.3.0...v3.3.1) --- updated-dependencies: - dependency-name: pylint dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements-dev.in | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements-dev.in b/requirements-dev.in index 24b880fe..6db32384 100644 --- a/requirements-dev.in +++ b/requirements-dev.in @@ -3,7 +3,7 @@ idna==3.10 pytest==8.3.3 pytest-timer==1.0.0 pytest-timeout==2.3.1 -pylint==3.3.0 +pylint==3.3.1 randomname==0.2.1 requests-mock==1.12.1 ruff==0.6.8