Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Production #9508

Open
wants to merge 594 commits into
base: master
Choose a base branch
from
Open

Production #9508

wants to merge 594 commits into from

Conversation

oslynn
Copy link
Collaborator

@oslynn oslynn commented May 16, 2023

This PR ...

If you are suggesting a fix for a currently exploitable issue, please disclose the issue to the prime-reportstream team directly outside of GitHub instead of filing a PR, so we may immediately patch the affected systems before a disclosure. See SECURITY.md/Reporting a Vulnerability for more information.

Test Steps:

  1. Include steps to test these changes

Changes

  • Include a comprehensive list of changes in this PR
  • (For web UI changes) Include screenshots/video of changes

Checklist

Testing

  • Tested locally?
  • Ran ./prime test or ./gradlew testSmoke against local Docker ReportStream container?
  • (For Changes to /frontend-react/...) Ran npm run lint:write?
  • Added tests?

Process

  • Are there licensing issues with any new dependencies introduced?
  • Includes a summary of what a code reviewer should test/verify?
  • Updated the release notes?
  • Database changes are submitted as a separate PR?
  • DevOps team has been notified if PR requires ops support?

Linked Issues

  • Fixes #issue

To Be Done

Create GitHub issues to track the work remaining, if any

  • #issue

Specific Security-related subjects a reviewer should pay specific attention to

  • Does this PR introduce new endpoints?
    • new endpoint A
    • new endpoint B
  • Does this PR include changes in authentication and/or authorization of existing endpoints?
  • Does this change introduce new dependencies that need vetting?
  • Does this change require changes to our infrastructure?
  • Does logging contain sensitive data?
  • Does this PR include or remove any sensitive information itself?

If you answered 'yes' to any of the questions above, conduct a detailed Review that addresses at least:

  • What are the potential security threats and mitigations? Please list the STRIDE threats and how they are mitigated
    • Spoofing (faking authenticity)
      • Threat T, which could be achieved by A, is mitigated by M
    • Tampering (influence or sabotage the integrity of information, data, or system)
    • Repudiation (the ability to dispute the origin or originator of an action)
    • Information disclosure (data made available to entities who should not have it)
    • Denial of service (make a resource unavailable)
    • Elevation of Privilege (reduce restrictions that apply or gain privileges one should not have)
  • Have you ensured logging does not contain sensitive data?
  • Have you received any additional approvals needed for this change?

@github-actions
Copy link
Contributor

github-actions bot commented May 16, 2023
edited
Loading

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

PackageVersionScoreDetails

Scanned Manifest Files

@oslynn oslynn temporarily deployed to staging May 16, 2023 18:11 — with GitHub Actions Inactive
@kant777 kant777 temporarily deployed to staging May 18, 2023 17:35 — with GitHub Actions Inactive
@kant777 kant777 temporarily deployed to prod May 18, 2023 17:35 — with GitHub Actions Inactive
@github-actions
Copy link
Contributor

github-actions bot commented May 18, 2023
edited
Loading

Test Results

1 272 tests  +25   1 268 ✅ +25   7m 33s ⏱️ -5s
  165 suites + 3       4 💤 ± 0 
  165 files   + 3       0 ❌ ± 0 

Results for commit d5ab874. ± Comparison against base commit 7895c62.

This pull request removes 7 and adds 32 tests. Note that renamed tests count towards both. 
gov.cdc.prime.router.azure.BlobAccessTests ‑ copy blob()
gov.cdc.prime.router.azure.ReportFunctionTests ‑ getReceiver()
gov.cdc.prime.router.azure.ReportFunctionTests ‑ processFhirDataRequest no environment, receiver name, or org name and output format blank()
gov.cdc.prime.router.fhirengine.utils.HL7ReaderTests ‑ get getMessages can parse a message that uses the deprecated CE type in OBX2()
gov.cdc.prime.router.fhirengine.utils.HL7ReaderTests ‑ get getMessages no mapped models()
gov.cdc.prime.router.fhirengine.utils.HL7ReaderTests ‑ get getMessages v27 succeeds()
gov.cdc.prime.router.fhirengine.utils.HL7ReaderTests ‑ test getMessageProfile()

gov.cdc.prime.router.ReceiverTests ‑ test MAJURO receiver timezone()
gov.cdc.prime.router.azure.ReportFunctionTests ‑ processFhirDataRequest nonCLI request in staging without access token should fail()
gov.cdc.prime.router.azure.ReportFunctionTests ‑ processFhirDataRequest receiver name, or org name and output format blank()
gov.cdc.prime.router.azure.ReportFunctionTests ‑ return ack if requested and enabled()
gov.cdc.prime.router.azure.SenderFunctionTest ‑ test SenderFunction conditionCodeComparisonPostRequest exception error()
gov.cdc.prime.router.azure.SenderFunctionTest ‑ test SenderFunction conditionCodeComparisonPostRequest ok()
gov.cdc.prime.router.azure.SenderFunctionTest ‑ test SenderFunction conditionCodeComparisonPostRequest with bad sender()
gov.cdc.prime.router.azure.SenderFunctionTest ‑ test SenderFunction conditionCodeComparisonPostRequest with no sender()
gov.cdc.prime.router.azure.SenderFunctionTest ‑ test SenderFunction conditionCodeComparisonPostRequest with unauthenticated sender()
gov.cdc.prime.router.azure.SenderFunctionTest ‑ test SenderFunction conditionCodeComparisonPostRequest with unauthorized sender()
…

♻️ This comment has been updated with latest results.

@kant777 kant777 temporarily deployed to prod May 18, 2023 17:43 — with GitHub Actions Inactive
@oslynn oslynn temporarily deployed to prod May 23, 2023 17:23 — with GitHub Actions Inactive
@oslynn oslynn temporarily deployed to staging May 23, 2023 17:23 — with GitHub Actions Inactive
@oslynn oslynn temporarily deployed to prod May 23, 2023 17:34 — with GitHub Actions Inactive
@brick-green brick-green temporarily deployed to prod May 25, 2023 14:55 — with GitHub Actions Inactive
@brick-green brick-green temporarily deployed to staging May 25, 2023 14:55 — with GitHub Actions Inactive
@brick-green brick-green temporarily deployed to prod May 25, 2023 15:03 — with GitHub Actions Inactive
@thetaurean thetaurean temporarily deployed to prod May 30, 2023 18:43 — with GitHub Actions Inactive
@thetaurean thetaurean temporarily deployed to staging May 30, 2023 18:43 — with GitHub Actions Inactive
@thetaurean thetaurean temporarily deployed to prod May 30, 2023 18:53 — with GitHub Actions Inactive
@thetaurean thetaurean temporarily deployed to staging June 1, 2023 18:14 — with GitHub Actions Inactive
@thetaurean thetaurean temporarily deployed to prod June 1, 2023 18:14 — with GitHub Actions Inactive
@thetaurean thetaurean temporarily deployed to prod June 1, 2023 18:24 — with GitHub Actions Inactive
@jack-h-wang jack-h-wang temporarily deployed to staging June 8, 2023 19:13 — with GitHub Actions Inactive
@jack-h-wang jack-h-wang temporarily deployed to prod June 8, 2023 19:13 — with GitHub Actions Inactive
@jack-h-wang jack-h-wang temporarily deployed to prod June 8, 2023 19:22 — with GitHub Actions Inactive
@jack-h-wang jack-h-wang temporarily deployed to prod June 13, 2023 18:23 — with GitHub Actions Inactive
@jack-h-wang jack-h-wang temporarily deployed to staging June 13, 2023 18:24 — with GitHub Actions Inactive
@jack-h-wang jack-h-wang temporarily deployed to prod June 13, 2023 18:35 — with GitHub Actions Inactive
@jack-h-wang jack-h-wang temporarily deployed to staging June 15, 2023 17:07 — with GitHub Actions Inactive
@jack-h-wang jack-h-wang temporarily deployed to prod June 15, 2023 17:07 — with GitHub Actions Inactive
@jack-h-wang jack-h-wang temporarily deployed to prod June 15, 2023 17:16 — with GitHub Actions Inactive
@jack-h-wang jack-h-wang temporarily deployed to prod June 20, 2023 17:35 — with GitHub Actions Inactive
@jack-h-wang jack-h-wang temporarily deployed to staging June 20, 2023 17:35 — with GitHub Actions Inactive
@jack-h-wang jack-h-wang temporarily deployed to prod June 20, 2023 17:50 — with GitHub Actions Inactive
etanb and others added 24 commits January 23, 2025 16:38
@etanb
Merge pull request #16938 from CDCgov/experience/16074-Create-Test-Re…
1e0e737 
…sult-Page-without-Download-Results

Experience 16074: Create test result page without download results
@arnejduranovic
update documentation to deprecate ETOR NBS integration (#17146)
91a6c30
@dependabot
Bump eslint-plugin-react in /frontend-react in the react group
34146b4 
Bumps the react group in /frontend-react with 1 update: [eslint-plugin-react](https://github.com/jsx-eslint/eslint-plugin-react).


Updates `eslint-plugin-react` from 7.37.3 to 7.37.4
- [Release notes](https://github.com/jsx-eslint/eslint-plugin-react/releases)
- [Changelog](https://github.com/jsx-eslint/eslint-plugin-react/blob/master/CHANGELOG.md)
- [Commits](jsx-eslint/eslint-plugin-react@v7.37.3...v7.37.4)

---
updated-dependencies:
- dependency-name: eslint-plugin-react
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: react
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump the ui group in /frontend-react with 2 updates
e7605d2 
Bumps the ui group in /frontend-react with 2 updates: [focus-trap-react](https://github.com/focus-trap/focus-trap-react) and [react-toastify](https://github.com/fkhadra/react-toastify).


Updates `focus-trap-react` from 11.0.2 to 11.0.3
- [Release notes](https://github.com/focus-trap/focus-trap-react/releases)
- [Changelog](https://github.com/focus-trap/focus-trap-react/blob/master/CHANGELOG.md)
- [Commits](focus-trap/focus-trap-react@v11.0.2...v11.0.3)

Updates `react-toastify` from 11.0.2 to 11.0.3
- [Release notes](https://github.com/fkhadra/react-toastify/releases)
- [Commits](fkhadra/react-toastify@v11.0.2...v11.0.3)

---
updated-dependencies:
- dependency-name: focus-trap-react
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ui
- dependency-name: react-toastify
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: ui
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump the router group in /frontend-react with 2 updates
6e31ad4 
Bumps the router group in /frontend-react with 2 updates: [react-router](https://github.com/remix-run/react-router/tree/HEAD/packages/react-router) and [react-router-dom](https://github.com/remix-run/react-router/tree/HEAD/packages/react-router-dom).


Updates `react-router` from 6.28.1 to 6.28.2
- [Release notes](https://github.com/remix-run/react-router/releases)
- [Changelog](https://github.com/remix-run/react-router/blob/main/CHANGELOG.md)
- [Commits](https://github.com/remix-run/react-router/commits/react-router@6.28.2/packages/react-router)

Updates `react-router-dom` from 6.28.1 to 6.28.2
- [Release notes](https://github.com/remix-run/react-router/releases)
- [Changelog](https://github.com/remix-run/react-router/blob/main/CHANGELOG.md)
- [Commits](https://github.com/remix-run/react-router/commits/react-router-dom@6.28.2/packages/react-router-dom)

---
updated-dependencies:
- dependency-name: react-router
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: router
- dependency-name: react-router-dom
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: router
...

Signed-off-by: dependabot[bot] <support@github.com>
@the-andrew
17017: add docs info for sender code to condition mapping comparison …
10c506a 
…endpoint
@etanb
Merge pull request #17097 from CDCgov/dependabot/npm_and_yarn/fronten…
75a0615 
…d-react/react-56108c88ef

Bump eslint-plugin-react from 7.37.3 to 7.37.4 in /frontend-react in the react group
@etanb
Merge branch 'main' into dependabot/npm_and_yarn/frontend-react/ui-24…
6dde1d5 
…55ac706d
@etanb
Merge pull request #17098 from CDCgov/dependabot/npm_and_yarn/fronten…
130f09b 
…d-react/ui-2455ac706d

Bump the ui group in /frontend-react with 2 updates
@devopsmatt @jpandersen87
frontend dockerization (#17151)
dddd6f4 
* frontend dockerized

* run nginx as unprivileged user

* bump node to bugfix version 20.15.1, as per Chainguard requirement

* add Dockerfile

* re-add run.container.sh script

* update dpendabot to include Dockerfile in updates

* resolve new CVE in glibc

* update nginx.conf

---------

Co-authored-by: Joseph Andersen <12385932+jpandersen87@users.noreply.github.com>
@devopsmatt
Update dependabot.yml (#17185)
0c89134 
fixed versioning strategy
@devopsmatt
Update changelog_config.json (#17187)
2d2df65 
Change label from 'DevOps' to 'DevSecOps'
@emvaldes
devsecops/emvaldes/export-azure-resources (#17184)
10ff87d 
* Shell/Bash, PowerShell and Python scripts to export Azure Resources into CSV format
@etanb
Merge branch 'main' into dependabot/npm_and_yarn/frontend-react/route…
185bbba 
…r-362ca8d24e
@etanb
Merge pull request #17103 from CDCgov/dependabot/npm_and_yarn/fronten…
0288503 
…d-react/router-362ca8d24e

Bump the router group in /frontend-react with 2 updates
@jpandersen87
Release Notes - Dec 2024 - Publication (#17179)
3619314 
* Release Notes - Dec 2024 - Publication
Fixes #15221
@devopsmatt
Devsecops/matts/workflow fixes (#17186)
69649d6 
* workflow updates

* fix dependabot versioning strategy for Dockerfile
@oslynn
Carbon Health Onboarding - Test with WA (#17121)
126c308 
* Carbon Health Onboarding - Test with WA

* Update the qualityFilter

* Update routingFilter
@bethbeza @devopsmatt
Trivy gh actions (#17145)
5c62cbb 
* Adding basic implementation to be refined

* trivy action:

* Updates

---------

Co-authored-by: matts <22215332+devopsmatt@users.noreply.github.com>
@the-andrew
Merge branch 'main' into docs/engagement/apham/17017
1c69ad2
@the-andrew
Merge pull request #17174 from CDCgov/docs/engagement/apham/17017
6d50c65 
17017: docs for sender code to condition mapping comparison endpoint
@jpandersen87
Add time flexibility to Daily Data "onLoad / table has correct header…
83041fb 
…s" Smoke Test (#17207)

Fixes #17206
@victor-chaparro
Merge branch 'production' into deployment/2025-01-28
cc1b787
@victor-chaparro
Merge pull request #17209 from CDCgov/deployment/2025-01-28
d5ab874 
Deployment of 2025-01-28
@github-actions GitHub Actions
Copy link
Contributor

⚠️ Broken Links ⚠️

https://www.hhs.gov/vulnerability-disclosure-policy/index.html

Error: Request failed with status code 403

❌ /assets/xlsm/20241204_ReportStream-Mapping-Template.xlsm

Error: Internal link: Page error

https://www.cdc.gov/poxvirus/mpox/lab-personnel/report-results.html

Error: Request failed with status code 404

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.