authentik icon indicating copy to clipboard operation
authentik copied to clipboard

Published 20 hours ago verified publisher icon goauthentik

core: bump django from 5.1.9 to 5.2.1

Open dependabot[bot] opened this issue 6 months ago • 5 comments

Bumps django from 5.1.9 to 5.2.1.

Commits
  • bc833e8 [5.2.x] Bumped version for 5.2.1 release.
  • c9731dc [5.2.x] Fixed CVE-2025-32873 -- Mitigated potential DoS in strip_tags().
  • ae6b5df [5.2.x] Simplified artifact building steps in docs/internals/howto-release-dj...
  • 44bda7a [5.2.x] Refs #36052, #32234 -- Fixed inspectdb tests for CompositePrimaryKey ...
  • 3c887e5 [5.2.x] Fixed #17461 -- Doc'd the presumed order of foreign keys on the inter...
  • 57c2451 [5.2.x] Made cosmetic edits and added upcoming security release to release no...
  • 1367a19 [5.2.x] Fixed #36357 -- Skipped unique_together in inspectdb output for compo...
  • ec73fd6 [5.2.x] Fixed #36358 -- Corrected introspection of composite primary keys on ...
  • 5d03c71 [5.2.x] Refs #36052, #32234 -- Removed create_test_table_with_composite_prima...
  • 7f6a5fb [5.2.x] Fixed #36360 -- Fixed QuerySet.update() crash when referring annotati...
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

dependabot[bot] avatar May 27 '25 04:05 dependabot[bot]

Deploy Preview for authentik-docs canceled.

Name Link
Latest commit 5610bc5efc0cd84141efbcd98ecb758c1291a02b
Latest deploy log https://app.netlify.com/projects/authentik-docs/deploys/6888cddc85e83c0008142bb4

netlify[bot] avatar May 27 '25 04:05 netlify[bot]

Deploy Preview for authentik-storybook canceled.

Name Link
Latest commit 5610bc5efc0cd84141efbcd98ecb758c1291a02b
Latest deploy log https://app.netlify.com/projects/authentik-storybook/deploys/6888cddcadf91c000897cf81

netlify[bot] avatar May 27 '25 04:05 netlify[bot]

Automatic models import in the shell

this is now something integrated in django, we can probably remove our custom code that does that

rissson avatar May 27 '25 11:05 rissson

Codecov Report

:white_check_mark: All modified and coverable lines are covered by tests. :white_check_mark: Project coverage is 92.40%. Comparing base (47a5582) to head (5610bc5). :warning: Report is 548 commits behind head on main.

Additional details and impacted files 
@@            Coverage Diff             @@
##             main   #14709      +/-   ##
==========================================
- Coverage   92.75%   92.40%   -0.35%     
==========================================
  Files         831      831              
  Lines       44469    44473       +4     
==========================================
- Hits        41245    41094     -151     
- Misses       3224     3379     +155
Flag Coverage Δ
e2e 45.30% <0.00%> (-1.56%) :arrow_down:
integration 23.61% <0.00%> (+<0.01%) :arrow_up:
unit 90.83% <100.00%> (+<0.01%) :arrow_up:

Flags with carried forward coverage won't be shown. Click here to find out more.

:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Have feedback on the report? Share it here.

codecov[bot] avatar May 27 '25 16:05 codecov[bot]

A newer version of django exists, but since this PR has been edited by someone other than Dependabot I haven't updated it. You'll get a PR for the updated version as normal once this PR is merged.

dependabot[bot] avatar Jun 05 '25 04:06 dependabot[bot]

@dependabot recreate

rissson avatar Jul 29 '25 13:07 rissson

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot rebase.

dependabot[bot] avatar Jul 29 '25 13:07 dependabot[bot]

Deploy Preview for authentik-integrations canceled.

Name Link
Latest commit 5610bc5efc0cd84141efbcd98ecb758c1291a02b
Latest deploy log https://app.netlify.com/projects/authentik-integrations/deploys/6888cddcc065d6000865beee

netlify[bot] avatar Jul 29 '25 13:07 netlify[bot]

closed in favour of #16324

BeryJu avatar Sep 11 '25 18:09 BeryJu

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

dependabot[bot] avatar Sep 11 '25 18:09 dependabot[bot]