Skip to content

Bump aws-sdk from 2.1087.0 to 2.1528.0 in /hub-search-proxy #448

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
dependabot wants to merge 2,154 commits into
base: master
Choose a base branch
from
Open

Bump aws-sdk from 2.1087.0 to 2.1528.0 in /hub-search-proxy #448

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2154 commits
Select commit Hold shift + click to select a range
17f18a1
workaround for 404 page flashing when viewing protected content
Trombach Nov 18, 2021
6837b6c
redirect to list page if no slug is present
Trombach Nov 18, 2021
e2aa65d
Merge branch 'master' into content-pages-refactor
Trombach Nov 18, 2021
71b6b9e
unit tests WIP
rosemcc Nov 19, 2021
a4b7875
unit tests wip
rosemcc Nov 19, 2021
0627388
error handling
rosemcc Nov 21, 2021
cc31dff
more error handling
rosemcc Nov 21, 2021
1d468df
removing icons
rosemcc Nov 21, 2021
0cc3aa5
delete unneeded module
rosemcc Nov 22, 2021
4c60400
unit tests clean ups and mock breadcrumbs
rosemcc Nov 22, 2021
bc98231
breadcrumbs unit test
rosemcc Nov 22, 2021
7f7905e
add page titles for list pages
rosemcc Nov 22, 2021
39ef5aa
content page unit tests passing and moving collection list tests
rosemcc Nov 22, 2021
42a543d
fix event page unit test
rosemcc Nov 22, 2021
6508af7
list pages unit tests passing
rosemcc Nov 22, 2021
01a0e40
delete unused queries, add limit to all-items queries
rosemcc Nov 22, 2021
fa8734b
minor fix for empty collection
rosemcc Nov 22, 2021
17c6645
Merge branch 'master' into login-menu
robmint Nov 22, 2021
6f8c141
fix empty doc and org cards for items in draft
rosemcc Nov 22, 2021
0b0f74d
added breadcrumbs unit tests
rosemcc Nov 23, 2021
029f140
fix breadcrumbs bug
rosemcc Nov 23, 2021
f6c8388
remove matmenumodule and unused styles
rosemcc Nov 23, 2021
190d6e3
improved 500 error message
rosemcc Nov 23, 2021
247adfd
clean up global variables
rosemcc Nov 23, 2021
635e37f
capitalise autocomplete terms
rosemcc Nov 23, 2021
e14519e
ignore auth error in sentry
rosemcc Nov 23, 2021
d564a59
Merge branch 'master' into bug-fixes
rosemcc Nov 23, 2021
782c5e3
run the search proxy bulk function on a daily schedule
rosemcc Nov 23, 2021
452f69f
Merge pull request #176 from UoA-eResearch/login-menu
rosemcc Nov 23, 2021
e8ff9f9
Merge branch 'master' into content-pages-refactor
rosemcc Nov 23, 2021
cb211ee
Merge pull request #175 from UoA-eResearch/content-pages-refactor
rosemcc Nov 23, 2021
bdebb83
Merge branch 'master' into bug-fixes
rosemcc Nov 23, 2021
c2f4662
supports webp working for homepage banner
rosemcc Nov 24, 2021
4f7bbe8
use media queries instead of device detector
rosemcc Nov 24, 2021
30d955d
Merge pull request #177 from UoA-eResearch/bug-fixes
rosemcc Nov 24, 2021
71c2500
version bump
rosemcc Nov 24, 2021
4c0c45c
Merge remote-tracking branch 'origin/prod' into rc2.4.0
rosemcc Nov 24, 2021
f3faa4d
hotfix unit and e2e tests
rosemcc Nov 24, 2021
d502a2c
Merge branch 'master' into rc2.4.0
rosemcc Nov 24, 2021
c6af960
Merge pull request #178 from UoA-eResearch/rc2.4.0
rosemcc Nov 25, 2021
7e62b76
Merge branch 'rc2.4.0'
rosemcc Nov 25, 2021
5c2664b
Bump apollo-server from 2.25.2 to 2.25.3 in /cer-graphql
dependabot[bot] Nov 25, 2021
c829cc3
Merge pull request #172 from UoA-eResearch/dependabot/npm_and_yarn/ce…
rosemcc Nov 25, 2021
76ae67e
Bump @types/graphql-depth-limit from 1.1.2 to 1.1.3 in /cer-graphql
dependabot[bot] Nov 25, 2021
cb0d7ef
Merge pull request #179 from UoA-eResearch/dependabot/npm_and_yarn/ce…
rosemcc Nov 25, 2021
7ab8e7e
Bump contentful from 8.2.0 to 9.1.4 in /hub-search-proxy
dependabot[bot] Nov 25, 2021
618761b
Merge pull request #174 from UoA-eResearch/dependabot/npm_and_yarn/hu…
rosemcc Nov 25, 2021
df34804
Bump serverless-domain-manager from 5.1.5 to 5.2.0 in /hub-search-proxy
dependabot[bot] Nov 25, 2021
bc31e12
Merge branch 'master' into dependabot/npm_and_yarn/hub-search-proxy/s…
rosemcc Nov 26, 2021
a93d2d3
Merge pull request #180 from UoA-eResearch/dependabot/npm_and_yarn/hu…
rosemcc Nov 26, 2021
9f5ef19
set strictTemplates, minor fixes
rosemcc Nov 26, 2021
05a5591
enforce variables not null in gql queries
rosemcc Nov 28, 2021
adad505
move no slug check to switchmap
rosemcc Nov 28, 2021
8cdb531
strictNullChecks WIP
rosemcc Nov 29, 2021
922e6d4
body-media-service null checks
rosemcc Nov 29, 2021
0d6e811
remove cer link
robmint Nov 29, 2021
5b91912
handle nulls in search autocomplete
rosemcc Nov 29, 2021
0be0e37
fixed featured items type
Trombach Nov 29, 2021
6d4a0ac
fix test warnings - inject slug in testbed earlier
rosemcc Nov 30, 2021
6353590
Angular 13 update (#181)
Trombach Nov 30, 2021
4838e16
page components null checks
rosemcc Nov 30, 2021
6d510c4
minor fix
rosemcc Nov 30, 2021
9c80f5b
improved error handling on Apollo client
rosemcc Nov 30, 2021
dde134a
no errors with strictNullChecks, turned off strictTemplates for now
rosemcc Dec 1, 2021
32af252
fixed subhub content page and added notEmpty function
Trombach Dec 1, 2021
5e9bdb6
null checks in tests
rosemcc Dec 1, 2021
8c0ca7a
display subhub external pages
rosemcc Dec 1, 2021
7700172
arrays with nulls WIP
rosemcc Dec 2, 2021
f042bda
array nulls in templates
rosemcc Dec 2, 2021
3db4927
clean ups
rosemcc Dec 2, 2021
03194ac
many small fixes for strictTemplates etc
rosemcc Dec 2, 2021
60e03d0
document card
rosemcc Dec 2, 2021
3cf9d40
activities page
rosemcc Dec 2, 2021
804b42a
Merge branch 'master' into null-checks
rosemcc Dec 2, 2021
1794370
remove unused homescrollservice
rosemcc Dec 2, 2021
109f11c
handle breadcrumbs null error
rosemcc Dec 2, 2021
4f6f66b
more small fixes based on sentry errors
rosemcc Dec 3, 2021
967be11
Fix dependency issues
devslashnoel Dec 3, 2021
f086c38
minor fix on search results
rosemcc Dec 3, 2021
58b7a6b
remove ngx-pagination
rosemcc Dec 5, 2021
5df8c76
Merge branch 'master' into contentful-link-checker
devslashnoel Dec 8, 2021
e3b0a1b
chore: updated architecture diagram
rosemcc Dec 9, 2021
7af1b7b
remove filteroutnulls function
rosemcc Dec 10, 2021
257cd95
minor fixes, oopsies
rosemcc Dec 10, 2021
0ec00c4
bodymedia service improvements
rosemcc Dec 10, 2021
a1c6149
removed pipe pipe and fixed a bug
rosemcc Dec 12, 2021
5095a4b
search button vertically center text
rosemcc Dec 12, 2021
998a43a
clean up apollo networkError handling
rosemcc Dec 12, 2021
61e01f2
Merge branch 'master' into null-checks
rosemcc Dec 12, 2021
1188ab7
Merge pull request #185 from UoA-eResearch/null-checks
rosemcc Dec 12, 2021
4e3dfcc
Merge branch 'master' into dependabot/npm_and_yarn/cer-graphql/apollo…
devslashnoel Dec 12, 2021
c67f5f3
Merge branch 'master' into footer-changes
robmint Dec 13, 2021
87a6fa8
Merge branch 'master' into dependabot/npm_and_yarn/cer-graphql/apollo…
devslashnoel Dec 13, 2021
1d7e538
Merge pull request #190 from UoA-eResearch/footer-changes
rosemcc Dec 13, 2021
16a68d7
delete unused components
rosemcc Dec 14, 2021
a72ccdf
show external links icons
rosemcc Dec 14, 2021
fb914ac
tweaks to card titles for consistency
rosemcc Dec 14, 2021
746217c
navigateTo changed to window.open, fix typo
rosemcc Dec 14, 2021
b444006
minor fixes
rosemcc Dec 14, 2021
5262709
flush left margin
robmint Dec 15, 2021
51402d8
close search autocomplete panel on enter keypress
rosemcc Dec 15, 2021
af3a33b
Layout fixes (#188)
Trombach Dec 15, 2021
1b6a309
Merge branch 'master' into dependabot/npm_and_yarn/cer-graphql/apollo…
devslashnoel Dec 15, 2021
5cc0ee2
Merge branch 'master' into layout-flex-margin-fix
rosemcc Dec 15, 2021
9a48e46
centered featured items on smaller screens
rosemcc Dec 15, 2021
81feb98
hotfix remove icon from unit test
rosemcc Dec 15, 2021
5dbac00
Merge branch 'master' into dependabot/npm_and_yarn/cer-graphql/apollo…
devslashnoel Dec 15, 2021
fc934f9
Merge branch 'master' into layout-flex-margin-fix
rosemcc Dec 15, 2021
48ed127
Merge pull request #191 from UoA-eResearch/layout-flex-margin-fix
rosemcc Dec 15, 2021
ebf703c
Merge branch 'master' into rc2.5.0
rosemcc Dec 16, 2021
c4871e7
Merge branch 'layout-flex-margin-fix' into dependabot/npm_and_yarn/ce…
devslashnoel Dec 16, 2021
1b1a6d9
Add comment about change
devslashnoel Dec 16, 2021
547de3b
Merge pull request #194 from UoA-eResearch/dependabot/npm_and_yarn/ce…
rosemcc Dec 16, 2021
0fb7db6
Merge branch 'master' into rc2.5.0
rosemcc Dec 16, 2021
fd3ce82
Update README with instructions
devslashnoel Dec 16, 2021
db4fad4
Merge branch 'master' into contentful-link-checker
devslashnoel Dec 16, 2021
38d6716
Make small edit in README
devslashnoel Dec 16, 2021
d2c94e2
Merge pull request #72 from UoA-eResearch/contentful-link-checker
rosemcc Dec 16, 2021
f838db9
Merge branch 'master' into rc2.5.0
rosemcc Dec 16, 2021
1487888
Merge pull request #193 from UoA-eResearch/rc2.5.0
rosemcc Dec 16, 2021
935f277
chore: version bump
rosemcc Dec 16, 2021
c6b9ada
Merge branch 'master' into external-links-etc
rosemcc Dec 16, 2021
9ad56bc
adding back in the auth error handling required for preview environment
rosemcc Dec 16, 2021
83ba96e
catch and route errors on home, categories and activities pages
rosemcc Dec 16, 2021
8e4ce7f
unit tests passing
rosemcc Dec 16, 2021
2e674dd
Merge pull request #196 from UoA-eResearch/hotfix-auth-networkError
rosemcc Dec 17, 2021
ab5e4dc
Merge pull request #197 from UoA-eResearch/rc2.5.1
rosemcc Dec 19, 2021
4e5bd60
readme
rosemcc Dec 19, 2021
85b4752
chore: version bump
rosemcc Dec 19, 2021
1bb9c97
Bump nodemon from 2.0.12 to 2.0.15 in /cer-graphql
dependabot[bot] Dec 19, 2021
54d14f0
external links icon not on phone numbers
rosemcc Dec 19, 2021
c6dbf2c
Merge branch 'master' into external-links-etc
rosemcc Dec 19, 2021
efe2c8f
fix link card external icon
rosemcc Dec 19, 2021
0cbb726
cards external links functionality and accessibility
rosemcc Dec 19, 2021
64d7326
fix tabbing on contact card
rosemcc Dec 20, 2021
7a379f6
open assets in new tab
rosemcc Dec 20, 2021
3762fa3
dont show external link icon on home page banner content
rosemcc Dec 21, 2021
bb767d5
Merge pull request #198 from UoA-eResearch/external-links-etc
rosemcc Dec 21, 2021
21e8a2a
chore: add subhub-link-checker to dependabot.yml
rosemcc Jan 17, 2022
8858976
Bump contentful-export from 7.13.34 to 7.14.11 in /hub-search-proxy
dependabot[bot] Jan 17, 2022
a028bdc
npm update, lock @elastic/elasticsearch version to 7.13.0 due to brea…
rosemcc Jan 17, 2022
5064a9f
Merge pull request #203 from UoA-eResearch/dependabot/npm_and_yarn/hu…
rosemcc Jan 17, 2022
f63a05d
Bump nodemon from 2.0.12 to 2.0.15 in /cer-graphql
dependabot[bot] Jan 17, 2022
9d3dae4
Merge branch 'dependabot/npm_and_yarn/cer-graphql/nodemon-2.0.15' of …
rosemcc Jan 18, 2022
4b9f96b
updated dev dependencies
rosemcc Jan 18, 2022
981d37d
more updates
rosemcc Jan 18, 2022
8356eea
Merge pull request #182 from UoA-eResearch/dependabot/npm_and_yarn/ce…
rosemcc Jan 18, 2022
b95864b
Persistent Notification (#202)
Trombach Jan 19, 2022
8d0dc5d
added filter counter to tab labels (#208)
Trombach Jan 19, 2022
e9d50f3
remove unused dependencies and use lockfile version 2 (#207)
Trombach Jan 19, 2022
776d15d
chore: add PR templates
rosemcc Jan 24, 2022
b50d9ac
chore: generic PR template
rosemcc Jan 26, 2022
d01cdc5
chore: delete separate PR templates
rosemcc Jan 26, 2022
fe4e248
Angular-13.1 (#211)
Trombach Jan 27, 2022
a6e8b0d
Service worker (#210)
rosemcc Feb 7, 2022
ea6253f
Bump contentful-export from 7.14.11 to 7.14.27 in /hub-search-proxy
dependabot[bot] Feb 14, 2022
37e1652
Merge pull request #224 from UoA-eResearch/dependabot/npm_and_yarn/hu…
rosemcc Feb 15, 2022
bd62d64
Bump @graphql-codegen/typescript in /research-hub-web
dependabot[bot] Feb 15, 2022
9bee794
Merge pull request #219 from UoA-eResearch/dependabot/npm_and_yarn/re…
rosemcc Feb 16, 2022
5649546
Update for Terraform AWS Provider v4.0.0 (#225)
rosemcc Feb 17, 2022
17fdd8d
Dependency cleanup (#229)
rosemcc Feb 18, 2022
0a4b623
Update subhub link checker deps (#226)
devslashnoel Feb 23, 2022
9c3d083
Search Cards Linking Behaviour (#231)
rosemcc Feb 23, 2022
e7685c8
Rc2.6.0 (#237)
rosemcc Feb 24, 2022
109c568
chore: version bump
rosemcc Feb 24, 2022
7232409
Search optimisations (#240)
rosemcc Mar 7, 2022
a3a0718
Bump serverless-domain-manager from 5.3.0 to 6.0.2 in /hub-search-pro…
dependabot[bot] Mar 7, 2022
2c346cd
E2e fixtures (#243)
rosemcc Mar 7, 2022
d1484fb
Bump @contentful/rich-text-types from 14.1.2 to 15.11.1 in /research-…
dependabot[bot] Mar 11, 2022
d5bfc6e
updated form links, always open form in new tab
rosemcc Mar 13, 2022
e73d3da
Merge branch 'hotfix-feedbackform'
rosemcc Mar 13, 2022
ee364e6
Fix draft assets error (#248)
rosemcc Mar 13, 2022
e3c1b36
boost the title raw/keyword field
rosemcc Mar 14, 2022
5243c02
Merge branch 'hotfix-search-titles-boost'
rosemcc Mar 14, 2022
1a357a4
add spacer for left or right side of 3 column layout pages
rosemcc Mar 14, 2022
7ef9f26
Bump @apollo/client from 3.4.13 to 3.5.10 in /research-hub-web (#249)
dependabot[bot] Mar 15, 2022
df455fd
Bump contentful from 9.1.5 to 9.1.13 in /hub-search-proxy
dependabot[bot] Mar 15, 2022
befac7b
Merge branch 'master' into 3-column-layout
rosemcc Mar 15, 2022
45a65d3
Merge pull request #254 from UoA-eResearch/3-column-layout
rosemcc Mar 15, 2022
beec985
Merge branch 'master' into dependabot/npm_and_yarn/hub-search-proxy/c…
rosemcc Mar 17, 2022
cdf4d41
Merge pull request #251 from UoA-eResearch/dependabot/npm_and_yarn/hu…
rosemcc Mar 17, 2022
7a5e366
Bump contentful from 9.1.13 to 9.1.18 in /hub-search-proxy
dependabot[bot] Mar 17, 2022
442948a
Merge pull request #258 from UoA-eResearch/dependabot/npm_and_yarn/hu…
rosemcc Mar 17, 2022
bd880a6
Bump aws-sdk from 2.1058.0 to 2.1095.0 in /cer-graphql
dependabot[bot] Mar 17, 2022
e3953fd
Merge pull request #260 from UoA-eResearch/dependabot/npm_and_yarn/ce…
rosemcc Mar 17, 2022
b2ade0c
Merge remote-tracking branch 'origin/prod' into rc2.6.1
rosemcc Mar 20, 2022
65df05a
chore: version update
rosemcc Mar 20, 2022
040de04
fix router issue in unit test
rosemcc Mar 21, 2022
fa7301f
Merge branch 'hotfix-unittest'
rosemcc Mar 21, 2022
ac37094
Merge branch 'master' into rc2.6.1
rosemcc Mar 21, 2022
6744388
Merge branch 'rc2.6.1'
rosemcc Mar 21, 2022
ef4f4ac
chore: update dependabot reviewers
rosemcc Mar 21, 2022
2bb642f
avoid contentful export size limit error
rosemcc Mar 22, 2022
d241d84
Merge branch 'hotfix-search-proxy-bulk-loading'
rosemcc Mar 22, 2022
28a3bc8
use query for feedback link in footer (#281)
Trombach May 8, 2022
065913b
Graph playground (#272)
Trombach May 8, 2022
5f6d96a
hotfix unit tests
Trombach May 8, 2022
62edd81
Chore: version changes (#286)
Trombach May 11, 2022
0b9d545
Add Contentful link checker app deployment to CI pipeline (#290)
devslashnoel May 31, 2022
2b4321c
new landscape logo (#299)
cakr322 Jun 15, 2022
d2d41a4
Rc2.7.1 (#306)
eric-el-tan Jun 21, 2022
7e60ebf
Change feedback button text
cakr322 Aug 5, 2022
39c4f2f
Merge pull request #320 from UoA-eResearch/change-feedback-button-text
cakr322 Aug 5, 2022
82090b0
Add Capabilities page type (#365)
Trombach Dec 1, 2022
0dd43ee
update package versions
Trombach Dec 1, 2022
ee96dc4
Merge pull request #369 from UoA-eResearch/rc2.8.0
Trombach Dec 2, 2022
26e822d
add navbar link
Trombach Nov 29, 2022
1cdc092
Fix search box display on zoom
cakr322 Mar 21, 2023
5f935b0
Merge pull request #391 from UoA-eResearch/fix-search-display
cakr322 Mar 27, 2023
6cc290e
Update version number
cakr322 Mar 27, 2023
ffd651f
Update software test url
cakr322 Mar 28, 2023
cb40f73
Update software test url
cakr322 Mar 28, 2023
05d945a
Add Google Tag Manager to test
cakr322 Apr 2, 2023
7d34a67
Fix Software URL for testing
cakr322 Apr 3, 2023
bae3fcc
Merge pull request #395 from UoA-eResearch/feature/google-tag-manager…
cakr322 Apr 3, 2023
d2e60a8
Change Activities to Research stage
cakr322 Apr 5, 2023
a3fa774
Change Activities to Research stage
cakr322 Apr 6, 2023
8362555
Merge pull request #396 from UoA-eResearch/feature/RSM-2358-update-text
cakr322 Apr 6, 2023
fef1c40
update version number
cakr322 Apr 6, 2023
fe76bad
Merge branch 'master' into add-capabilities-navbar-link
cakr322 Apr 14, 2023
660223b
Merge pull request #367 from UoA-eResearch/add-capabilities-navbar-link
cakr322 Apr 14, 2023
17f8920
Change activities label to research stage
cakr322 Apr 14, 2023
1292fa2
Merge pull request #398 from UoA-eResearch/change-activities-label-name
cakr322 Apr 14, 2023
fffc2b5
Update Content Security Policy
cakr322 May 31, 2023
e4fb73c
Update Content Security Policy
cakr322 Jun 1, 2023
8e32a1b
Merge pull request #400 from UoA-eResearch/bugfix/update-csp
cakr322 Jun 7, 2023
f1ca6cd
Fix failed start up due to Contentful type changes
devslashnoel Aug 24, 2023
f8a217f
Remove import used for debug
devslashnoel Aug 24, 2023
1a23b79
Clarify purpose of getProtectedTypes in doc
devslashnoel Aug 24, 2023
31acef8
Also include collection resolvers as per original
devslashnoel Aug 24, 2023
69286e3
Merge pull request #402 from UoA-eResearch/fix-proxy-not-starting-up
cakr322 Aug 24, 2023
171f95d
Version number change
cakr322 Aug 24, 2023
6af2a3b
RSM-3036: stage: replace search with url
Oct 30, 2023
52f7fd8
RSM-3036: stage: use reference instead of string
Oct 31, 2023
edc423f
Merge pull request #419 from UoA-eResearch/feature/RSM-3036-update-re…
cakr322 Nov 7, 2023
7493289
Update linting.yml
cakr322 Nov 9, 2023
0d5f28a
Update linting.yml
cakr322 Nov 9, 2023
cc5d81a
Merge pull request #423 from UoA-eResearch/hotfix/update-lint-node-ve…
cakr322 Nov 9, 2023
f404729
RSM-3250 Change filter query logic
cakr322 Nov 3, 2023
a5f6514
RSM-3250 Revert dev environment parameter names
cakr322 Nov 6, 2023
2bf6a1b
RSM-3250 Revert dev parameters
cakr322 Nov 8, 2023
7acfc9d
Merge pull request #422 from UoA-eResearch/feature/RSM-3250-search-logic
cakr322 Nov 9, 2023
a304ebf
Update version number
cakr322 Nov 9, 2023
92cfde8
Remove ssm from parameter names
cakr322 Nov 9, 2023
43a0d6f
Revert parameter names
cakr322 Nov 9, 2023
8ae0107
Remove ~true from parameter names
cakr322 Nov 9, 2023
135c92c
Fix Serverless
cakr322 Nov 9, 2023
1aca47a
Fix Serverless
cakr322 Nov 9, 2023
6dfced6
Merge missing commit from dev
cakr322 Nov 9, 2023
0f8932e
Bump aws-sdk from 2.1087.0 to 2.1528.0 in /hub-search-proxy
dependabot[bot] Jan 1, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
The table of contents is too big for display.
Diff view
Diff view
  •  
  •  
  •  
10 changes: 10 additions & 0 deletions .env.example
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,10 @@
# Copy this file to .env, then fill it in with credentials.
# For stages other than sandbox/dev E.g when requiring Connect Non-prod AWS userpool.
# Copy this file to .<stage>.env and fill it with stage specific values.

# cer-graphql variables
CONTENTFUL_ACCESS_TOKEN=
CONTENTFUL_SPACE_ID=
CONTENTFUL_ENVIRONMENT_ID=
COGNITO_REGION=
COGNITO_USER_POOL=
46 changes: 46 additions & 0 deletions .github/dependabot.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,46 @@
version: 2
updates:
- package-ecosystem: 'npm'
directory: '/research-hub-web'
schedule:
interval: 'weekly'
open-pull-requests-limit: 1
reviewers:
- Trombach
- cakr322
- eric-el-tan
allow:
- dependency-type: 'direct'
- package-ecosystem: 'npm'
directory: '/cer-graphql'
schedule:
interval: 'weekly'
open-pull-requests-limit: 1
reviewers:
- uoa-noel
- cakr322
- eric-el-tan
allow:
- dependency-type: 'direct'
- package-ecosystem: 'npm'
directory: '/hub-search-proxy'
schedule:
interval: 'weekly'
open-pull-requests-limit: 1
reviewers:
- Trombach
- cakr322
- eric-el-tan
allow:
- dependency-type: 'direct'
- package-ecosystem: 'npm'
directory: '/subhub-link-checker'
schedule:
interval: 'weekly'
open-pull-requests-limit: 1
reviewers:
- uoa-noel
- cakr322
- eric-el-tan
allow:
- dependency-type: 'direct'
20 changes: 20 additions & 0 deletions .github/pull_request_template.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,20 @@
## Description
<!--- Describe the feature or bug fix that this PR addresses -->
<!--- Feature: Attach wireframes or link to relevant design documentation if applicable -->
<!--- Bug fix: Describe the root cause and analysis of the problem -->

## Solution
<!--- Feature: Describe your code changes, and mention if any existing features/functionality is affected by the changes. -->
<!--- Bug Fix: Describe your code changes, and explain the technical solution and how it fixes the issue -->

## Screenshots
<!--- Add before and after screenshots of the UI if applicable -->

## Testing
<!--- Describe unit or e2e tests if they were required for this feature/fix -->

## Have the changes been checked in the following browsers?
- [x] Chrome
- [x] Safari
- [x] Firefox
- [x] Edge
36 changes: 36 additions & 0 deletions .github/workflows/linting.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,36 @@
name: Lint

on:
# Trigger the workflow on push or pull request,
# but only for the main branch
push:
branches:
- master
pull_request:
branches:
- master

jobs:
run-linters:
name: Run linters
runs-on: ubuntu-latest

steps:
- name: Check out Git repository
uses: actions/checkout@v2

- name: Set up Node.js
uses: actions/setup-node@v1
with:
node-version: 18

- name: Install Node.js dependencies
working-directory: ./research-hub-web
run: npm ci --force

- name: Install Angular CLI
run: npm install -g @angular/cli

- name: ng lint
working-directory: ./research-hub-web
run: ng lint
Comment on lines +15 to +36

Check warning

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block, using the following as a minimal starting point: {contents: read}

Copilot Autofix

AI 9 days ago

In general, the fix is to explicitly set a permissions block that grants only the minimal scopes required for this linting job. Since the job only checks out code and installs/runs Node-based tools, it only needs read access to repository contents.

The best minimally invasive fix is to add a permissions block at the workflow root (top level, alongside name and on) so that it applies to all jobs. This avoids touching the job structure or steps and documents that the workflow only needs read access. Concretely, in .github/workflows/linting.yml, insert:

permissions:
  contents: read

between the existing name: Lint and on: keys. No imports or other changes are needed, and existing functionality is unchanged because all current operations are compatible with read-only contents access.

Suggested changeset 1
.github/workflows/linting.yml

Autofix patch

Autofix patch
Run the following command in your local git repository to apply this patch
cat << 'EOF' | git apply
diff --git a/.github/workflows/linting.yml b/.github/workflows/linting.yml
--- a/.github/workflows/linting.yml
+++ b/.github/workflows/linting.yml
@@ -1,5 +1,8 @@
 name: Lint
 
+permissions:
+  contents: read
+
 on:
   # Trigger the workflow on push or pull request,
   # but only for the main branch
EOF
@@ -1,5 +1,8 @@
name: Lint

permissions:
contents: read

on:
# Trigger the workflow on push or pull request,
# but only for the main branch
Copilot is powered by AI and may make mistakes. Always verify output.
33 changes: 33 additions & 0 deletions .github/workflows/sentry.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,33 @@
name: Sentry Release

on:
push:
branches:
- dev
- test
- prod
paths:
- 'research-hub-web/**'

jobs:
sentry-release:
name: Create Sentry Release
runs-on: ubuntu-latest

steps:
- name: Check out Git repository
uses: actions/checkout@v2
- name: Get Branch
id: var
run: echo ::set-output name=branch::${GITHUB_REF#refs/*/}
- name: Output Branch
run: echo ${{ steps.var.outputs.branch }}
- name: Notify Sentry
# https://github.com/getsentry/action-release
uses: getsentry/action-release@v1.1.6

Check warning

Code scanning / CodeQL

Unpinned tag for a non-immutable Action in workflow Medium

Unpinned 3rd party Action 'Sentry Release' step
Uses Step
Loading
uses 'getsentry/action-release' with ref 'v1.1.6', not a pinned commit hash
env:
SENTRY_AUTH_TOKEN: ${{ secrets.SENTRY_AUTH_TOKEN }}
SENTRY_ORG: university-of-auckland-7o
SENTRY_PROJECT: research-hub
with:
environment: ${{ steps.var.outputs.branch }}
Comment on lines +14 to +33

Check warning

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block, using the following as a minimal starting point: {contents: read}

Copilot Autofix

AI 9 days ago

In general, the fix is to add an explicit permissions block either at the workflow root (applies to all jobs) or inside the specific job, restricting GITHUB_TOKEN to the least privileges required. For this workflow, the actions used (actions/checkout and getsentry/action-release) need read access to the repository contents to check out the code and to associate releases/commits, but do not require write access to the repository itself. Therefore, contents: read is an appropriate minimal permission.

The single best fix without changing existing functionality is to add a permissions block at the workflow root, just under the name: line and before the on: key, setting contents: read. This will apply to the sentry-release job (and any future jobs without their own permissions block), ensuring the GITHUB_TOKEN is restricted. No imports or additional definitions are needed; this is a purely declarative GitHub Actions YAML change. Concretely, edit .github/workflows/sentry.yml to insert:

permissions:
  contents: read

after line 1 (name: Sentry Release).

Suggested changeset 1
.github/workflows/sentry.yml

Autofix patch

Autofix patch
Run the following command in your local git repository to apply this patch
cat << 'EOF' | git apply
diff --git a/.github/workflows/sentry.yml b/.github/workflows/sentry.yml
--- a/.github/workflows/sentry.yml
+++ b/.github/workflows/sentry.yml
@@ -1,4 +1,6 @@
 name: Sentry Release
+permissions:
+  contents: read
 
 on:
   push:
EOF
@@ -1,4 +1,6 @@
name: Sentry Release
permissions:
contents: read

on:
push:
Copilot is powered by AI and may make mistakes. Always verify output.
21 changes: 19 additions & 2 deletions .gitignore
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -13,8 +13,17 @@ logs
npm-debug.log*

# ==================== research-hub-web ================ #
research-hub-web/www/
research-hub-web/www-preview/
research-hub-web/dist/
research-hub-web/documentation/
research-hub-web/cypress/videos/
research-hub-web/cypress/screenshots/

research-hub-web/src/app/graphql/possible-types.ts
research-hub-web/src/app/graphql/schema.ts

research-hub-web/.angular/cache

# Custom environment file - use it in special local development situations
research-hub-web/src/environments/environment.custom.ts
Expand All @@ -28,10 +37,18 @@ research-hub-web/npm-debug.log
research-hub-web/testem.log
research-hub-web/typings

# ====================== cer-graphql =================== #

# Ignore config file so secrets are not automatically checked in
.env
.test.env
.prod.env


# ====================== serverless-now ================ #
serverless-now/.serverless/
serverless-now/env/local.env

# ====================== cer-graphql =================== #
cer-graphql/build

# ====================== subhub-link-checker =========== #
subhub-link-checker/build/*
37 changes: 37 additions & 0 deletions .vscode/launch.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,37 @@
{
// Use IntelliSense to learn about possible attributes.
// Hover to view descriptions of existing attributes.
// For more information, visit: https://go.microsoft.com/fwlink/?linkid=830387
"version": "0.2.0",
"configurations": [
{
"type": "pwa-chrome",
"request": "launch",
"name": "Launch Chrome against localhost",
"preLaunchTask": "research-hub-web - start",
"url": "http://localhost:4200",
"webRoot": "${workspaceFolder}/research-hub-web/"
},
{
"name": "Attach to Firefox",
"type": "firefox",
"request": "attach",
"url": "http://localhost:4200/",
"webRoot": "${workspaceFolder}/research-hub-web/",
"preLaunchTask": "research-hub-web - start"
},
{
"type": "pwa-chrome",
"request": "attach",
"name": "Attach to Karma",
"address": "localhost",
"port": 9222,
"timeout": 600000,
"sourceMaps": true,
"webRoot": "${workspaceFolder}/research-hub-web/",
"pathMapping": {
"/_karma_webpack_": "${workspaceFolder}/research-hub-web/"
}
}
]
}
114 changes: 114 additions & 0 deletions .vscode/tasks.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,114 @@
{
"version": "2.0.0",
"tasks": [
{
"type": "npm",
"script": "start",
"path": "research-hub-web/",
"label": "research-hub-web - start",
"group": "build",
"dependsOrder": "sequence",
"dependsOn": ["research-hub-web - run GraphQL server"],
"presentation": {
"group": "web"
},
"isBackground": true,
"problemMatcher": {
"owner": "custom",
"fileLocation": ["relative", "${workspaceFolder}"],
"pattern":[{
// TODO Stub pattern, doesn't actually match problems.
// Added as it's required
"regexp": "^([^\\\\s].*)\\\\((\\\\d+,\\\\d+)\\\\):\\\\s*(.*)$",
"file": 1,
"location": 2,
"message": 3
}],
"background": {
"activeOnStart": true,
"beginsPattern": "^.*Generating browser application bundles",
"endsPattern": "^.*Angular Live Development Server is listening on.*"
}
},
},
{
"type": "npm",
"script": "graphql-server-watch",
"path": "research-hub-web/",
"problemMatcher": {
"owner": "custom",
"fileLocation": ["relative", "${workspaceFolder}"],
"pattern":[{
// TODO Stub pattern, doesn't actually match problems.
// Added as it's required
"regexp": "^([^\\\\s].*)\\\\((\\\\d+,\\\\d+)\\\\):\\\\s*(.*)$",
"file": 1,
"location": 2,
"message": 3
}],
"background": {
"beginsPattern": "Loading remote schema...",
"endsPattern": "^.*Content API server ready.*$"
}
},
"label": "research-hub-web - run GraphQL server",
"presentation": {
"group": "web"
},
"isBackground": true
},
{
"type": "npm",
"script": "generate-watch",
"path": "research-hub-web/",
"problemMatcher": {
"owner": "custom",
"fileLocation": ["relative", "${workspaceFolder}"],
"pattern":[{
// TODO Stub pattern, doesn't actually match problems.
// Added as it's required
"regexp": "^([^\\\\s].*)\\\\((\\\\d+,\\\\d+)\\\\):\\\\s*(.*)$",
"file": 1,
"location": 2,
"message": 3
}],
"background": {
"beginsPattern": "^.*Parse configuration",
"endsPattern": "^.*Watching for changes..."
}
},
"label": "research-hub-web - generate GraphQL types",
"presentation": {
"group": "web"
},
"isBackground": true
},
{
"type": "npm",
"script": "test-watch",
"path": "research-hub-web/",
"problemMatcher": {
"owner": "custom",
"fileLocation": ["relative", "${workspaceFolder}"],
"pattern":[{
// TODO Stub pattern, doesn't actually match problems.
// Added as it's required
"regexp": "^([^\\\\s].*)\\\\((\\\\d+,\\\\d+)\\\\):\\\\s*(.*)$",
"file": 1,
"location": 2,
"message": 3
}],
"background": {
"beginsPattern": "^.*Generating browser application bundles",
"endsPattern": "^.*Coverage summary"
}
},
"label": "research-hub-web - test",
"presentation": {
"group": "web"
},
"isBackground": true
}

]
}
4 changes: 4 additions & 0 deletions Dev_Journey_V3.drawio.svg
View file
Open in desktop
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Loading