JankySolutions/infra
2
0
Fork 0
Code Issues Pull requests 5 Projects Releases Packages 12 Wiki Activity Actions

chore(deps): update snipe/snipe-it docker tag to v7.1.14 #58

Merged
finn merged 1 commit from renovate/snipe-snipe-it-7.x into main 2024-11-14 01:03:31 +00:00
Conversation 0 Commits 1 Files changed 1 +1 -1
renovatebot commented 2024-11-14 01:01:52 +00:00
Member
Copy link

This PR contains the following updates:

Package Update Change
snipe/snipe-it minor v7.0.13 -> v7.1.14

⚠️ Warning

Some dependencies could not be looked up. Check the warning logs for more information.

Release Notes

snipe/snipe-it (snipe/snipe-it)

v7.1.14: - Security Release

Compare Source

[!CAUTION]
This is a security release. All Snipe-IT users are strongly encouraged to upgrade.

liz-lemon-wednesday

We seem to be getting a lot of mileage from that gif these days. 🫠

This is a security release that handles several CVEs, including CVE-2024-52301, which was just patched in the Laravel core yesterday.

While hosted customers were NOT affected (we do not have register_argc_argv enabled on any of our servers), self-hosted community users and support-only customers are encouraged to upgrade as soon as possible, or at the very least make sure that setting is not enabled in your php.ini.

In addition to the security patches, we have also added some new features, such as:

  • Ability to import Asset Models (without accompanying assets) via the Importer
  • Ability to override or null out the EOL date for assets via the asset bulk edit screen
  • Optimized some queries and indexes to speed things up a bit
  • Fixed a bug where OU was accidentally required to create locations via the GUI
  • Miscellaneous UI improvements and fixes
  • Full changelog can be found below

As always, still lots more on deck.

PS - we will likely be discontinuing posting updates on our Twitter account moving forward. Instead, find us in these other places:

What's Changed

New Contributors

Full Changelog: https://github.com/snipe/snipe-it/compare/v7.0.13...v7.1.14

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

This PR contains the following updates: | Package | Update | Change | |---|---|---| | [snipe/snipe-it](https://github.com/snipe/snipe-it) | minor | `v7.0.13` -> `v7.1.14` | --- > ⚠️ **Warning** > > Some dependencies could not be looked up. Check the warning logs for more information. --- ### Release Notes <details> <summary>snipe/snipe-it (snipe/snipe-it)</summary> ### [`v7.1.14`](https://github.com/snipe/snipe-it/releases/tag/v7.1.14): - Security Release [Compare Source](https://github.com/snipe/snipe-it/compare/v7.0.13...v7.1.14) > \[!CAUTION] > **This is a security release. All Snipe-IT users are strongly encouraged to upgrade.** ![liz-lemon-wednesday](https://github.com/user-attachments/assets/59e484d8-8245-4827-adc0-e5fd24949fd5) We seem to be getting a lot of mileage from that gif these days. 🫠 This is a security release that handles several CVEs, including [CVE-2024-52301](https://www.securityhive.io/blog/understanding-cve-2024-52301-why-you-must-upgrade-your-laravel-application), which was just patched in the Laravel core yesterday. **While hosted customers were NOT affected (we do not have `register_argc_argv` enabled on any of our servers), self-hosted community users and support-only customers are encouraged to upgrade as soon as possible, or at the very least [make sure that setting is not enabled](https://www.php.net/manual/en/ini.core.php) in your `php.ini`.** In addition to the security patches, we have also added some new features, such as: - Ability to import Asset Models (without accompanying assets) via the Importer - Ability to override or null out the EOL date for assets via the asset bulk edit screen - Optimized some queries and indexes to speed things up a bit - Fixed a bug where OU was accidentally required to create locations via the GUI - Miscellaneous UI improvements and fixes - Full changelog can be found below As always, still lots more on deck. PS - we will likely be discontinuing posting updates on our Twitter account moving forward. Instead, find us in these other places: - [Join our Discord](https://discord.gg/yZFtShAcKk)! - Bluesky at [@&#8203;snipeitapp.com](https://bsky.app/profile/snipeitapp.com) - Mastodon at [@&#8203;grokability](https://github.com/grokability)[@&#8203;hachyderm](https://github.com/hachyderm).io - Our blog at [Grokstar.Dev](https://grokstar.dev) - Subscribe here on Github for notifications about new releases. (Click on "Watch" on the main repo page, then go to "Custom" and check the box that says "Releases".) #### What's Changed - Fixed numeric sort 'ambiguous order clause' error by [@&#8203;uberbrady](https://github.com/uberbrady) in https://github.com/snipe/snipe-it/pull/15610 - Fixed print assigned in profile by [@&#8203;snipe](https://github.com/snipe) in https://github.com/snipe/snipe-it/pull/15612 - Smarter word-wrapping on long text by [@&#8203;snipe](https://github.com/snipe) in https://github.com/snipe/snipe-it/pull/15613 - Add Import data tests by [@&#8203;bryanlopezinc](https://github.com/bryanlopezinc) in https://github.com/snipe/snipe-it/pull/15579 - Removed duplicate JS and removed line break before user section by [@&#8203;snipe](https://github.com/snipe) in https://github.com/snipe/snipe-it/pull/15624 - Docker Env: Change trusted proxies to RFC1918 by [@&#8203;sniff122](https://github.com/sniff122) in https://github.com/snipe/snipe-it/pull/15621 - Added `Model::reguard()` to importer by [@&#8203;marcusmoore](https://github.com/marcusmoore) in https://github.com/snipe/snipe-it/pull/15603 - Improve importer tests by [@&#8203;marcusmoore](https://github.com/marcusmoore) in https://github.com/snipe/snipe-it/pull/15616 - Only show EULA when available on print users page by [@&#8203;marcusmoore](https://github.com/marcusmoore) in https://github.com/snipe/snipe-it/pull/15630 - Add importer tests by [@&#8203;marcusmoore](https://github.com/marcusmoore) in https://github.com/snipe/snipe-it/pull/15631 - Fix bulk checkout to users, assets, and locations by [@&#8203;uberbrady](https://github.com/uberbrady) in https://github.com/snipe/snipe-it/pull/15642 - Fixed badge counter showing deleted assets on user detail page by [@&#8203;akemidx](https://github.com/akemidx) in https://github.com/snipe/snipe-it/pull/15637 - Fixed [#&#8203;15439](https://github.com/snipe/snipe-it/issues/15439) - check database on healthcheck by [@&#8203;snipe](https://github.com/snipe) in https://github.com/snipe/snipe-it/pull/15601 - Updated livewire to 3.5.2 by [@&#8203;snipe](https://github.com/snipe) in https://github.com/snipe/snipe-it/pull/15648 - Switched to form requests for settings to better indicate invalid data by [@&#8203;snipe](https://github.com/snipe) in https://github.com/snipe/snipe-it/pull/15644 - Fixed [#&#8203;15651](https://github.com/snipe/snipe-it/issues/15651) - admin user now displaying on maintenances page by [@&#8203;snipe](https://github.com/snipe) in https://github.com/snipe/snipe-it/pull/15653 - Added tests for accessory api controller by [@&#8203;marcusmoore](https://github.com/marcusmoore) in https://github.com/snipe/snipe-it/pull/15533 - Fixes [#&#8203;15654](https://github.com/snipe/snipe-it/issues/15654) Fix asset creation with API and FullMultipleCompanySupport by [@&#8203;Toreg87](https://github.com/Toreg87) in https://github.com/snipe/snipe-it/pull/15655 - Refactor asset creation with API by [@&#8203;Toreg87](https://github.com/Toreg87) in https://github.com/snipe/snipe-it/pull/15660 - Added LLM note by [@&#8203;snipe](https://github.com/snipe) in https://github.com/snipe/snipe-it/pull/15666 - Fixed [#&#8203;15663](https://github.com/snipe/snipe-it/issues/15663) - remove requiredness for OU by [@&#8203;snipe](https://github.com/snipe) in https://github.com/snipe/snipe-it/pull/15669 - Fixed `updated_at` for sort in users API by [@&#8203;snipe](https://github.com/snipe) in https://github.com/snipe/snipe-it/pull/15671 - Clean up how we use the `$location` in LDAP sync command by [@&#8203;uberbrady](https://github.com/uberbrady) in https://github.com/snipe/snipe-it/pull/15672 - Fix outdated comment in CompanyableTrait by [@&#8203;Toreg87](https://github.com/Toreg87) in https://github.com/snipe/snipe-it/pull/15683 - Bulk checkout to bulk actions for assets by [@&#8203;uberbrady](https://github.com/uberbrady) in https://github.com/snipe/snipe-it/pull/15680 - Removed second icon in accessory file list by [@&#8203;marcusmoore](https://github.com/marcusmoore) in https://github.com/snipe/snipe-it/pull/15704 - Added test to ensure icon component does not end in newline by [@&#8203;marcusmoore](https://github.com/marcusmoore) in https://github.com/snipe/snipe-it/pull/15705 - Removed brianium/paratest by [@&#8203;marcusmoore](https://github.com/marcusmoore) in https://github.com/snipe/snipe-it/pull/15693 - Linked accessory files in activity report by [@&#8203;marcusmoore](https://github.com/marcusmoore) in https://github.com/snipe/snipe-it/pull/15703 - Fix user creation with FullMultipleCompanySupport enabled over API by [@&#8203;Toreg87](https://github.com/Toreg87) in https://github.com/snipe/snipe-it/pull/15676 - Fixed custom field existence validation Issue by [@&#8203;spencerrlongg](https://github.com/spencerrlongg) in https://github.com/snipe/snipe-it/pull/15598 - Improve import performance by [@&#8203;bryanlopezinc](https://github.com/bryanlopezinc) in https://github.com/snipe/snipe-it/pull/15649 - Better handle inline files in file listing by [@&#8203;snipe](https://github.com/snipe) in https://github.com/snipe/snipe-it/pull/15689 - Fixed Status Labels Error Message by [@&#8203;Godmartinz](https://github.com/Godmartinz) in https://github.com/snipe/snipe-it/pull/15566 - Fixed [#&#8203;15686](https://github.com/snipe/snipe-it/issues/15686): Corrected capitalization for dashboard section titles by removing `strtolower()` by [@&#8203;NebelKreis](https://github.com/NebelKreis) in https://github.com/snipe/snipe-it/pull/15687 - Updated `Company::getIdForCurrentUser()` to return null in certain scenarios by [@&#8203;marcusmoore](https://github.com/marcusmoore) in https://github.com/snipe/snipe-it/pull/15691 - Fixes [#&#8203;15701](https://github.com/snipe/snipe-it/issues/15701) - load avif files properly in lightbox by [@&#8203;snipe](https://github.com/snipe) in https://github.com/snipe/snipe-it/pull/15710 - Fixed custom field checkboxes on asset edit page by [@&#8203;marcusmoore](https://github.com/marcusmoore) in https://github.com/snipe/snipe-it/pull/15711 - Fixed [#&#8203;15717](https://github.com/snipe/snipe-it/issues/15717) - Added ability to checkout consumables in variable qty via API by [@&#8203;snipe](https://github.com/snipe) in https://github.com/snipe/snipe-it/pull/15719 - Fixed [#&#8203;15695](https://github.com/snipe/snipe-it/issues/15695) - Added manufacturer and model_number to components by [@&#8203;snipe](https://github.com/snipe) in https://github.com/snipe/snipe-it/pull/15720 - Fixed Component Factory: use manufacturer factory for `manufactuer_id` by [@&#8203;Godmartinz](https://github.com/Godmartinz) in https://github.com/snipe/snipe-it/pull/15722 - Upgraded `livewire v3.5.9 => v3.5.12` by [@&#8203;Godmartinz](https://github.com/Godmartinz) in https://github.com/snipe/snipe-it/pull/15712 - Fixed multi create partial failure (fixes: \[RB-18591]) by [@&#8203;uberbrady](https://github.com/uberbrady) in https://github.com/snipe/snipe-it/pull/15550 - Added the display of logs when tests fail in GitHub Actions by [@&#8203;marcusmoore](https://github.com/marcusmoore) in https://github.com/snipe/snipe-it/pull/15744 - Separated Notifications and Emails: Check ins and Check outs by [@&#8203;Godmartinz](https://github.com/Godmartinz) in https://github.com/snipe/snipe-it/pull/15681 - changes `admin_cc_email` validation to allow an array by [@&#8203;Godmartinz](https://github.com/Godmartinz) in https://github.com/snipe/snipe-it/pull/15756 - Fixed `${var}` deprecation warning in License model by [@&#8203;jerm](https://github.com/jerm) in https://github.com/snipe/snipe-it/pull/15758 - Fixed MS Team Notifications to utilize workflows after deprecation by [@&#8203;Godmartinz](https://github.com/Godmartinz) in https://github.com/snipe/snipe-it/pull/15731 - Fixed emails not being sent if target has no email or if not instance of User. Cc_emails will still be sent. by [@&#8203;Godmartinz](https://github.com/Godmartinz) in https://github.com/snipe/snipe-it/pull/15763 - Added missing Livewire file by [@&#8203;marcusmoore](https://github.com/marcusmoore) in https://github.com/snipe/snipe-it/pull/15765 - Revert "Added the display of logs when tests fail in GitHub Actions" by [@&#8203;marcusmoore](https://github.com/marcusmoore) in https://github.com/snipe/snipe-it/pull/15771 - Fixed notifications for licenses and asset to asset checkoutables by [@&#8203;Godmartinz](https://github.com/Godmartinz) in https://github.com/snipe/snipe-it/pull/15773 - Fixed CVE-2024-50342, CVE-2024-50345, CVE-2024-51736 by [@&#8203;joelpittet](https://github.com/joelpittet) in https://github.com/snipe/snipe-it/pull/15779 - Added Checkout ID column to user accessory table by [@&#8203;marcusmoore](https://github.com/marcusmoore) in https://github.com/snipe/snipe-it/pull/15774 - Add new indexes to locations and users for faster manager lookups by [@&#8203;uberbrady](https://github.com/uberbrady) in https://github.com/snipe/snipe-it/pull/15780 - Added EOL date to bulk asset edit by [@&#8203;snipe](https://github.com/snipe) in https://github.com/snipe/snipe-it/pull/15792 - Added ability to specify null for calculation or explicit on bulk asset edit by [@&#8203;snipe](https://github.com/snipe) in https://github.com/snipe/snipe-it/pull/15793 - Check that the file exists before trying to download stored EULA by [@&#8203;snipe](https://github.com/snipe) in https://github.com/snipe/snipe-it/pull/15794 - Fixes Assets location not being resynced when Users location is updated via LDAP by [@&#8203;Godmartinz](https://github.com/Godmartinz) in https://github.com/snipe/snipe-it/pull/14441 - Updated deprecated trigger for ms teams by [@&#8203;Godmartinz](https://github.com/Godmartinz) in https://github.com/snipe/snipe-it/pull/15799 - Updated Laravel, additional packages for [CVE-2024-52301](https://www.securityhive.io/blog/understanding-cve-2024-52301-why-you-must-upgrade-your-laravel-application) by [@&#8203;snipe](https://github.com/snipe) in https://github.com/snipe/snipe-it/pull/15804 - Fixed license serial gate in markdown by [@&#8203;Godmartinz](https://github.com/Godmartinz) in https://github.com/snipe/snipe-it/pull/15805 - Added ability to import asset models (separate from assets) by [@&#8203;snipe](https://github.com/snipe) in https://github.com/snipe/snipe-it/pull/15802 - Fixed dark background to fieldsets and right border by [@&#8203;Godmartinz](https://github.com/Godmartinz) in https://github.com/snipe/snipe-it/pull/15784 - Fixed login button disappearing under some circumstances with custom CSS by [@&#8203;akemidx](https://github.com/akemidx) in https://github.com/snipe/snipe-it/pull/15730 - Fixed checkin/checkout email boolean check for Licenses by [@&#8203;Godmartinz](https://github.com/Godmartinz) in https://github.com/snipe/snipe-it/pull/15808 - Patch for whitespace causing HTTP 500 errors. by [@&#8203;DarrenRainey](https://github.com/DarrenRainey) in https://github.com/snipe/snipe-it/pull/15807 - Fixed Microsoft Teams notifications by [@&#8203;marcusmoore](https://github.com/marcusmoore) in https://github.com/snipe/snipe-it/pull/15809 #### New Contributors - [@&#8203;sniff122](https://github.com/sniff122) made their first contribution in https://github.com/snipe/snipe-it/pull/15621 - [@&#8203;NebelKreis](https://github.com/NebelKreis) made their first contribution in https://github.com/snipe/snipe-it/pull/15687 - [@&#8203;DarrenRainey](https://github.com/DarrenRainey) made their first contribution in https://github.com/snipe/snipe-it/pull/15807 **Full Changelog**: https://github.com/snipe/snipe-it/compare/v7.0.13...v7.1.14 </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4wLjAiLCJ1cGRhdGVkSW5WZXIiOiIzOS4wLjAiLCJ0YXJnZXRCcmFuY2giOiJtYWluIiwibGFiZWxzIjpbXX0=-->
renovatebot added 1 commit 2024-11-14 01:01:53 +00:00
chore(deps): update snipe/snipe-it docker tag to v7.1.14
All checks were successful
/ diff-and-deploy (push) Successful in 2m2s
Details
decb20dab6
finn merged commit decb20dab6 into main 2024-11-14 01:03:31 +00:00
finn deleted branch renovate/snipe-snipe-it-7.x 2024-11-14 01:03:31 +00:00
Sign in to join this conversation.
Reviewers
No reviewers
Labels
Clear labels
No items
No labels
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: JankySolutions/infra#58
No description provided.
Delete branch "renovate/snipe-snipe-it-7.x"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?