Skip to content

Feature/517 release prepare report resolved security issues#797

Open
ckunki wants to merge 40 commits intomainfrom
feature/517-release_prepare_report_resolved_security_issues
Open

Feature/517 release prepare report resolved security issues#797
ckunki wants to merge 40 commits intomainfrom
feature/517-release_prepare_report_resolved_security_issues

Conversation

@ckunki
Copy link
Copy Markdown
Contributor

@ckunki ckunki commented Apr 20, 2026
edited
Loading

Closes #517

Checklist

Note: If any of the items in the checklist are not relevant to your PR, just check the box.

For any Pull Request

Is the following correct:

  • the title of the Pull Request?
  • the title of the corresponding issue?
  • there are no other open Pull Requests for the same update/change?
  • that the issue which this Pull Request fixes ("Fixes...") is mentioned?

When Changes Were Made

Did you:

  • update the changelog?
  • update the cookiecutter-template?
  • update the implementation?
  • check coverage and add tests: unit tests and, if relevant, integration tests?
  • update the User Guide & other documentation?
  • resolve any failing CI criteria (incl. Sonar quality gate)?

When Preparing a Release

Have you:

  • thought about version number (major, minor, patch)?
  • checked Exasol packages for updates and resolved open vulnerabilities, if easily possible?

ckunki added 21 commits April 7, 2026 14:54
@ckunki
merged changes from issue 402 and changes-file
3e3077a
@ckunki
Prepared using changes_file
753fa25
@ckunki
merged latest changes from changes-file
bbe64e1
@ckunki
First steps towards using Markdown
84b75e7
@ckunki
merged latest changes from changes-file (2)
e6fc28d
@ckunki
Finalized implementation
d0610ec 
(vulnerabilities currently commented-out, yet)
@ckunki
Fixed and refactored tests
dcb7428
@ckunki
merged latest changes from markdown (3)
27c7fb3
@ckunki
Activated reporting vulnerablities
1527212 
Fixed tests
@ckunki
Simplified tests
4755e20
@ckunki
Added tests for changelog incl. vulnerabilities
5867a7f
@ckunki
Refactored tests
65212ff 
added test for inserted vulnerabilities
@ckunki
merged latest changes from markdown (4)
8033dd2
@ckunki
Updated user guide
9a1d02f
@ckunki
merged changes from markdown.py
0ace33f
@ckunki
merged changes from markdown.py
b8b0a0f
@ckunki
merged changes from markdown.py
4fa56b8
@ckunki
merged changes from markdown.py
daea685
@ckunki
Merge branch 'main' into sec-3-update-changelog
2930d18
@ckunki
simplified set comparisson
47af6f3
@ckunki
updated changelog
0960edb
ckunki
ckunki commented Apr 20, 2026
View reviewed changes
Comment thread doc/changes/unreleased.md
Comment thread exasol/toolbox/util/release/changelog.py
ArBridgeman
ArBridgeman reviewed Apr 21, 2026
View reviewed changes
Comment thread exasol/toolbox/util/release/changelog.py Outdated
Comment thread exasol/toolbox/util/release/changelog.py Outdated
Comment thread exasol/toolbox/util/release/changelog.py Outdated
Comment thread test/unit/util/dependencies/track_vulnerabilities_test.py
@ckunki @ArBridgeman
Apply suggestions from code review
9a80e90 
Co-authored-by: Ariel Schulz <43442541+ArBridgeman@users.noreply.github.com>
@ckunki ckunki temporarily deployed to manual-approval April 21, 2026 09:46 — with GitHub Actions Inactive
@ckunki ckunki enabled auto-merge (squash) April 21, 2026 09:48
@ckunki ckunki disabled auto-merge April 21, 2026 09:53
@ckunki ckunki temporarily deployed to manual-approval April 21, 2026 09:58 — with GitHub Actions Inactive
@ckunki ckunki temporarily deployed to manual-approval April 21, 2026 12:31 — with GitHub Actions Inactive
ArBridgeman
ArBridgeman reviewed Apr 21, 2026
View reviewed changes
Comment thread test/integration/project-template/conftest.py
config = {**defaults, **kwargs}

return subprocess.run(command, **config)
p = subprocess.run(command, **config)
Copy link
Copy Markdown
Collaborator

@ArBridgeman ArBridgeman Apr 21, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

did you want check to not be updated with the **config? it seems like the logic in line 101 indicates that.

Copy link
Copy Markdown
Contributor Author

@ckunki ckunki Apr 21, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I wanted to use check=False by default but still allow use cases to specify check=True.
But I agree, maybe the current impl. it not 100% correct.

@ckunki ckunki deployed to manual-approval April 21, 2026 13:34 — with GitHub Actions Active
ckunki
ckunki commented Apr 21, 2026
View reviewed changes
Comment thread project-template/{{cookiecutter.repo_name}}/pyproject.toml
]

[tool.poetry.requires-plugins]
poetry-plugin-export = ">=1.8"
Copy link
Copy Markdown
Contributor Author

@ckunki ckunki Apr 21, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Seems to be required to run poetry export in the integration tests.

@sonarqubecloud
Copy link
Copy Markdown

sonarqubecloud Bot commented Apr 21, 2026

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
94.7% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ArBridgeman ArBridgeman ArBridgeman left review comments

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Modify nox session release:prepare to add a summary section with resolved security issues

2 participants

@ckunki @ArBridgeman