05/30/2024 Production Deploy #1036

ccostino · 2024-05-30T13:20:45Z

A note to PR reviewers: it may be helpful to review our code review documentation to know what to keep in mind while reviewing pull requests.

Description

This is our production deploy for 5/30/2024. Full release notes can be seen here!

Security Considerations

All changes have been reviewed and tested prior to being included here.

Signed-off-by: Carlo Costino <[email protected]>

Code changes for SQLAlchemy 2.0.x upgrade

Bumps [botocore](https://github.com/boto/botocore) from 1.34.101 to 1.34.103. - [Changelog](https://github.com/boto/botocore/blob/develop/CHANGELOG.rst) - [Commits](boto/botocore@1.34.101...1.34.103) --- updated-dependencies: - dependency-name: botocore dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

Bump botocore from 1.34.101 to 1.34.103

Remove log statement from s3.py

extend cache to 7 days

Bumps [freezegun](https://github.com/spulec/freezegun) from 1.5.0 to 1.5.1. - [Release notes](https://github.com/spulec/freezegun/releases) - [Changelog](https://github.com/spulec/freezegun/blob/master/CHANGELOG) - [Commits](spulec/freezegun@1.5.0...1.5.1) --- updated-dependencies: - dependency-name: freezegun dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

Bump freezegun from 1.5.0 to 1.5.1

Signed-off-by: Carlo Costino <[email protected]>

Update pre-commit hooks

Bumps [setuptools](https://github.com/pypa/setuptools) from 69.5.1 to 70.0.0. - [Release notes](https://github.com/pypa/setuptools/releases) - [Changelog](https://github.com/pypa/setuptools/blob/main/NEWS.rst) - [Commits](pypa/setuptools@v69.5.1...v70.0.0) --- updated-dependencies: - dependency-name: setuptools dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>

Bump setuptools from 69.5.1 to 70.0.0

Bumps [botocore](https://github.com/boto/botocore) from 1.34.112 to 1.34.113. - [Changelog](https://github.com/boto/botocore/blob/develop/CHANGELOG.rst) - [Commits](boto/botocore@1.34.112...1.34.113) --- updated-dependencies: - dependency-name: botocore dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

Bump botocore from 1.34.112 to 1.34.113

Bumps [moto](https://github.com/getmoto/moto) from 5.0.7 to 5.0.8. - [Release notes](https://github.com/getmoto/moto/releases) - [Changelog](https://github.com/getmoto/moto/blob/master/CHANGELOG.md) - [Commits](getmoto/moto@5.0.7...5.0.8) --- updated-dependencies: - dependency-name: moto dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

Bump moto from 5.0.7 to 5.0.8

Bumps [botocore](https://github.com/boto/botocore) from 1.34.113 to 1.34.114. - [Changelog](https://github.com/boto/botocore/blob/develop/CHANGELOG.rst) - [Commits](boto/botocore@1.34.113...1.34.114) --- updated-dependencies: - dependency-name: botocore dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

fix query

Bump botocore from 1.34.113 to 1.34.114

Bumps [faker](https://github.com/joke2k/faker) from 25.2.0 to 25.3.0. - [Release notes](https://github.com/joke2k/faker/releases) - [Changelog](https://github.com/joke2k/faker/blob/master/CHANGELOG.md) - [Commits](joke2k/faker@v25.2.0...v25.3.0) --- updated-dependencies: - dependency-name: faker dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

Bump faker from 25.2.0 to 25.3.0

Bumps [boto3](https://github.com/boto/boto3) from 1.34.112 to 1.34.114. - [Release notes](https://github.com/boto/boto3/releases) - [Changelog](https://github.com/boto/boto3/blob/develop/CHANGELOG.rst) - [Commits](boto/boto3@1.34.112...1.34.114) --- updated-dependencies: - dependency-name: boto3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

Bump boto3 from 1.34.112 to 1.34.114

Bumps [requests](https://github.com/psf/requests) from 2.32.2 to 2.32.3. - [Release notes](https://github.com/psf/requests/releases) - [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md) - [Commits](psf/requests@v2.32.2...v2.32.3) --- updated-dependencies: - dependency-name: requests dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

Bump requests from 2.32.2 to 2.32.3

Bumps [botocore](https://github.com/boto/botocore) from 1.34.114 to 1.34.115. - [Changelog](https://github.com/boto/botocore/blob/develop/CHANGELOG.rst) - [Commits](boto/botocore@1.34.114...1.34.115) --- updated-dependencies: - dependency-name: botocore dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

Bump botocore from 1.34.114 to 1.34.115

A-Shumway42

No concerns here!

aanand-gsa and others added 30 commits March 13, 2024 12:42

Initial commit for sqlalchemy2.0 migration

385ec35

merge with main

5d15560

fix for failing tests

8bc1091

sqlalchemy2.0 fix

b338e11

sqlalchemy 2.0 changes

dc9fa52

sqlalchemy 2.0 changes

420291f

nested session issue encountered in sqlalchemy 2.0 upgrade

2d4dbe9

Merge branch 'main' into aanand-sqlalchemy-version-update

bb2819c

Merge branch 'notify-api-869' into aanand-sqlalchemy-version-update

df2a590

Changes for sqlalchemy 2.0

ad55eef

adding back a removed comment while sqlalchemy 2.0 upgrade

f2fb407

Merge branch 'main' into aanand-sqlalchemy-version-update

fe9cbc9

Minor changes accounting for black and isort formatting

5ece190

Signed-off-by: Carlo Costino <[email protected]>

Fixing errant isort formatting

fcad5e4

Signed-off-by: Carlo Costino <[email protected]>

Updated SQLAlchemy to latest release: 2.0.30

0723f54

Signed-off-by: Carlo Costino <[email protected]>

Merge branch 'main' into aanand-sqlalchemy-version-update

f0dc962

Merge branch 'main' into aanand-sqlalchemy-version-update

64ff175

Merge branch 'main' into aanand-sqlalchemy-version-update

a6c2ad6

change debug statement from info to debug

252a5de

remove unnecessary debug stmts

51c9087

fix flake8

bbd1fed

Merge pull request #946 from GSA/aanand-sqlalchemy-version-update

3157e9c

Code changes for SQLAlchemy 2.0.x upgrade

Merge pull request #981 from GSA/dependabot/pip/botocore-1.34.103

36f6621

Bump botocore from 1.34.101 to 1.34.103

extend cache to 7 days

9cfb571

code review feedback

e7183da

Merge pull request #979 from GSA/notify-api-956

e33421b

Remove log statement from s3.py

Merge pull request #982 from GSA/notify-admin-1381b

e8f03f9

extend cache to 7 days

Merge pull request #983 from GSA/dependabot/pip/freezegun-1.5.1

522fe35

Bump freezegun from 1.5.0 to 1.5.1

ccostino and others added 20 commits May 24, 2024 10:27

Removed duplicate pre-commit hooks

64fb311

Signed-off-by: Carlo Costino <[email protected]>

Merge pull request #1011 from GSA/update-pre-commit-hooks

95b4393

Update pre-commit hooks

Merge pull request #1024 from GSA/dependabot/pip/setuptools-70.0.0

8e80450

Bump setuptools from 69.5.1 to 70.0.0

Merge pull request #1025 from GSA/dependabot/pip/botocore-1.34.113

ec0ec1d

Bump botocore from 1.34.112 to 1.34.113

Merge pull request #1026 from GSA/dependabot/pip/moto-5.0.8

97b46ce

Bump moto from 5.0.7 to 5.0.8

fix query

bbeb602

Merge pull request #1028 from GSA/garrgh

b09eb5d

fix query

Merge pull request #1029 from GSA/dependabot/pip/botocore-1.34.114

b7a2186

Bump botocore from 1.34.113 to 1.34.114

Merge pull request #1031 from GSA/dependabot/pip/faker-25.3.0

75f5cba

Bump faker from 25.2.0 to 25.3.0

Merge pull request #1032 from GSA/dependabot/pip/boto3-1.34.114

a9cfd1b

Bump boto3 from 1.34.112 to 1.34.114

Merge pull request #1034 from GSA/dependabot/pip/requests-2.32.3

537b746

Bump requests from 2.32.2 to 2.32.3

Merge pull request #1035 from GSA/dependabot/pip/botocore-1.34.115

61cbec1

Bump botocore from 1.34.114 to 1.34.115

ccostino added the engineering label May 30, 2024

ccostino requested review from xlorepdarkhelm, terrazoon and A-Shumway42 May 30, 2024 13:20

ccostino self-assigned this May 30, 2024

A-Shumway42 approved these changes May 30, 2024

View reviewed changes

ccostino merged commit 000edb6 into production May 30, 2024
18 checks passed

rahearn temporarily deployed to demo May 31, 2024 12:05 — with GitHub Actions Inactive

rahearn temporarily deployed to staging May 31, 2024 12:05 — with GitHub Actions Inactive

rahearn temporarily deployed to production May 31, 2024 12:05 — with GitHub Actions Inactive

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

05/30/2024 Production Deploy #1036

05/30/2024 Production Deploy #1036

ccostino commented May 30, 2024

A-Shumway42 left a comment

05/30/2024 Production Deploy #1036

05/30/2024 Production Deploy #1036

Conversation

ccostino commented May 30, 2024

Description

Security Considerations

A-Shumway42 left a comment

Choose a reason for hiding this comment