Release 0.30.7 #2080
Closed
Release 0.30.7 #2080
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
* Update dependency @mui/lab to v6.0.0-beta.28 * update lockfile --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: shankar ambady <[email protected]>
* Update dependency @sentry/nextjs to v9 * update lockfile --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: shankar ambady <[email protected]>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
* Update dependency @dnd-kit/sortable to v10 * updating lockfile --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: shankar ambady <[email protected]>
* workaround for mui select focusVisible issue tmp * use legend for checkboxfield overall description * make focus outlines a bit more visible * add a comment about the typecasting
* Fix SCIM view tests * Fix user migrations for scim fields
* add MITOL_LOGOUT_SUFFIX to github actions * add dockerfile build arg * fix typo
* switch to using next_run * adding test * adding fallback for missing next runs * adding test * checking published * fixing test flakiness
* serialize contentfiles like we do with learning resources * fixing contentfile serialization * optimize loop and data fetch Co-authored-by: gemini-code-assist[bot] <176961590+gemini-code-assist[bot]@users.noreply.github.com> * fixing n+1 queries * adding block id to embedded metadata * adding block id as filter parameter * regenerate spec * fixing test: * some consolidation --------- Co-authored-by: gemini-code-assist[bot] <176961590+gemini-code-assist[bot]@users.noreply.github.com>
|
| GitGuardian id | GitGuardian status | Secret | Commit | Filename | |
|---|---|---|---|---|---|
| 13777606 | Triggered | Generic Private Key | 131c04e | config/keycloak/tls/tls.key.default | View secret |
| 13777608 | Triggered | Generic High Entropy Secret | 131c04e | config/keycloak/realms/default-realm.json | View secret |
| 13777609 | Triggered | Generic Password | 131c04e | config/keycloak/realms/default-realm.json | View secret |
| 13777610 | Triggered | Generic High Entropy Secret | 131c04e | config/keycloak/realms/default-realm.json | View secret |
| 10259317 | Triggered | Generic Password | 131c04e | docker-compose.services.yml | View secret |
🛠 Guidelines to remediate hardcoded secrets
- Understand the implications of revoking this secret by investigating where it is used in your code.
- Replace and store your secrets safely. Learn here the best practices.
- Revoke and rotate these secrets.
- If possible, rewrite git history. Rewriting git history is not a trivial act. You might completely break other contributing developers' workflow and you risk accidentally deleting legitimate data.
To avoid such incidents in the future consider
- following these best practices for managing and storing secrets including API keys and other credentials
- install secret detection on pre-commit to catch secret before it leaves your machine and ease remediation.
🦉 GitGuardian detects secrets in your source code to help developers and security teams secure the modern development process. You are seeing this because you or someone else with access to this repository has authorized GitGuardian to scan your pull request.
![gemini-code-assist[bot]](https://avatars.githubusercontent.com/in/956858?s=60&v=4){kind=small}
There was a problem hiding this comment.
Hello @odlbot, I'm Gemini Code Assist1! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!
Summary of Changes
This pull request bumps the version to 0.30.7 and includes several updates and fixes across the project. These include adding content file metadata to chunk responses, fixing embedding generation tasks, adding a logout suffix to GitHub Actions, fixing user migrations and tests for SCIM, accessibility improvements, APISIX integration, ARM64 architecture support for OpenSearch, and dependency updates.
Highlights
- SCIM Fixes: Addresses issues with user migrations, view tests, search API sorting, and pagination for SCIM (System for Cross-domain Identity Management).
- APISIX Integration: Introduces APISIX integration for authentication, including configuration files and documentation.
- Dependency Updates: Updates several dependencies including
@dnd-kit/sortable,akhileshns/heroku-deploy,@sentry/nextjs,@mui/lab, andtldextract. - GitHub Actions: Adds
MITOL_LOGOUT_SUFFIXto GitHub Actions workflows for production and release candidate environments. - Keycloak Integration: Adds Keycloak and APISIX containers for authentication, including default settings, realm configuration, and instructions for making it work.
Changelog
Click here to see the changelog
- .github/workflows/production.yml
- Updates the
akhileshns/heroku-deployaction to the latest digest. - Adds
MITOL_API_LOGOUT_SUFFIXto the environment variables for the backend release.
- Updates the
- .github/workflows/release-candidate.yml
- Updates the
akhileshns/heroku-deployaction to the latest digest. - Adds
MITOL_API_LOGOUT_SUFFIXto the environment variables for the backend release.
- Updates the
- .pre-commit-config.yaml
- Excludes Keycloak TLS and realm configuration files from pre-commit checks.
- .secrets.baseline
- Excludes Keycloak TLS files from secret scanning.
- Dockerfile
- Changes
mkdirtomkdir -pfor staticfiles directory to ensure parent directories are created if they don't exist.
- Changes
- Dockerfile-litellm
- Removes the Dockerfile-litellm file.
- README-keycloak.md
- Adds documentation for Keycloak and APISIX integration, including default settings and instructions for setup.
- RELEASE.rst
- Adds release notes for version 0.30.7, listing all the included fixes and updates.
- config/apisix/apisix.yaml
- Adds configuration for APISIX routes and upstreams, including OpenID Connect plugin settings.
- config/apisix/config.yaml
- Configures APISIX settings, including disabling the admin interface and setting the role to data plane.
- config/apisix/debug.yaml
- Adds debug configuration for APISIX.
- config/keycloak/providers/README.md
- Adds a README file for the Keycloak providers directory.
- config/keycloak/realms/default-realm.json
- Adds a default realm configuration for Keycloak, including users, roles, and client settings.
- config/keycloak/tls/README.md
- Adds a README file for the Keycloak TLS configuration, including instructions for adding custom certificates.
- config/keycloak/tls/tls.crt
- Adds a default TLS certificate file.
- config/keycloak/tls/tls.crt.default
- Adds a default TLS certificate file.
- config/keycloak/tls/tls.key
- Adds a default TLS key file.
- config/keycloak/tls/tls.key.default
- Adds a default TLS key file.
- config/litellm_config.yml
- Removes the litellm config file.
- config/postgres/init-keycloak.sql
- Adds SQL script to create the Keycloak database and grant privileges.
- docker-compose.litellm.yml
- Removes the litellm docker compose file.
- docker-compose.opensearch.base.yml
- Disables SVE (Scalable Vector Extension) for ARM64 architecture in the OpenSearch container.
- docker-compose.services.yml
- Adds a volume mount for postgres init db scripts
- Removes restart policy for qdrant
- Adds Keycloak and APISIX service definitions, including environment variables, ports, and volumes.
- docker-compose.yml
- Adds env files to docker compose include path
- env/backend.env
- Changes MITOL_COOKIE_NAME from discussions to mitlearn.
- env/backend.local.example.env
- Adds APISIX/Keycloak settings to the example environment file.
- env/frontend.env
- Adds NEXT_PUBLIC_MITOL_API_LOGOUT_SUFFIX to the frontend environment variables.
- env/shared.env
- Adds MITOL_API_LOGOUT_SUFFIX and comments for apisix/keycloak config
- Adds ports for nginx, apisix, and keycloak
- env/shared.local.example.env
- Adds MITOL_NEW_USER_LOGIN_URL to the example environment file.
- frontends/api/src/generated/v0/api.ts
- Adds
edx_block_idas a parameter to theVectorContentFilesSearchApifor retrieving content files.
- Adds
- frontends/main/Dockerfile.web
- Adds NEXT_PUBLIC_MITOL_API_LOGOUT_SUFFIX to the frontend Dockerfile.
- frontends/main/package.json
- Updates
@sentry/nextjsdependency to version 9.
- Updates
- frontends/main/src/app-pages/ChatPage/ChatPage.tsx
- Adds credentials: 'include' to fetch requests.
- frontends/main/src/app-pages/ChatSyllabusPage/ChatSyllabusPage.tsx
- Adds credentials: 'include' to fetch requests.
- frontends/main/src/app-pages/DashboardPage/DashboardPage.tsx
- Adds focus-visible styling to dashboard tabs
- frontends/main/src/common/urls.ts
- Updates the LOGOUT URL to include the MITOL_API_LOGOUT_SUFFIX.
- frontends/main/src/page-components/AiChat/AiRecommendationBotDrawer.tsx
- Adds credentials: 'include' to fetch requests.
- frontends/main/src/page-components/LearningResourceExpanded/AiChatSyllabusSlideDown.tsx
- Adds credentials: 'include' to fetch requests.
- frontends/ol-components/package.json
- Updates
@dnd-kit/sortabledependency to version 10. - Updates
@mui/labdependency to version 6.0.0-beta.28 - Updates
@mui/materialand@mui/systemdependencies.
- Updates
- frontends/ol-components/src/components/Checkbox/Checkbox.tsx
- Adds focus-visible styling to checkboxes
- frontends/ol-components/src/components/Checkbox/CheckboxChoiceField.tsx
- Fixes typescript error
- Changes label to legend for accessibility
- frontends/ol-components/src/components/SelectField/SelectField.test.tsx
- Adds tests for Select component
- Adds test for pointer-open class
- frontends/ol-components/src/components/SelectField/SelectField.tsx
- Adds pointer-open class to menu if and only if opened via pointer
- frontends/ol-components/src/components/SimpleSelect/SimpleSelect.tsx
- Removes MenuItem style display none
- frontends/ol-utilities/package.json
- Updates
@dnd-kit/sortabledependency to version 10.
- Updates
- learning_resources/models.py
- Adds prefetch related to for_serialization
- main/factories.py
- Adds scim fields to UserFactory
- main/middleware/apisix_user.py
- Adds APISIX Middleware for MIT Learn.
- main/middleware/apisix_user_test.py
- Adds tests for apisix middleware.
- main/settings.py
- Updates version to 0.30.7
- Adds ApisixUserMiddleware
- Adds Keycloak API settings
- openapi/specs/v0.yaml
- Adds edx_block_id to vector search
- poetry.lock
- Updates poetry.lock file with dependency changes.
- profiles/admin.py
- Removes scim fields from ProfileAdmin
- profiles/forms.py
- Removes scim fields from ProfileForm
- pyproject.toml
- Updates
tldextractdependency to version 5.0.0.
- Updates
- scim/adapters.py
- Updates id_field to scim_id
- Updates meta to use created_on and updated_on
- Updates to_dict to use scim_external_id
- Updates from_dict to use scim_username and scim_external_id
- Updates handle_add to use scim_external_id
- scim/urls.py
- Adds re_path for users-search
- scim/views.py
- Adds SearchView for /.search endpoint
- scim/views_test.py
- Updates user_q to filter by scim_external_id
- Updates scim_client.put to use user.scim_id
- Updates scim_client.patch to use user.scim_id
- Updates _put_operation to use user.scim_id
- Updates _expected_patch_value to use user.scim_id
- Adds large_user_set fixture
- Adds test_user_search
- users/admin.py
- Adds Users admin
- users/migrations/0004_add_scim_and_timestamp_fields.py
- Adds scim and timestamp fields
- users/migrations/0005_set_user_scim_id.py
- Adds set user scim id
- users/models.py
- Updates models to use AbstractSCIMUserMixin and TimestampedModel
- vector_search/constants.py
- Adds edx_block_id, content_type, description, url, and file_type to QDRANT_RESOURCE_PARAM_MAP
- Adds edx_block_id to QDRANT_RESOURCE_PAYLOAD_SCHEMA
- vector_search/serializers.py
- Adds edx_block_id to ContentFileVectorSearchRequestSerializer
- vector_search/tasks.py
- Updates start_embed_resources to use next_run if it exists, otherwise use the latest run
- vector_search/tasks_test.py
- Adds test for embedded content from next run
- Adds test for embedded content from latest run if next is missing
- vector_search/utils.py
- Updates _content_file_vector_hits to include all content file metadata
Using Gemini Code Assist
The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.
Invoking Gemini
You can request assistance from Gemini at any point in your pull request via creating an issue comment (i.e. comment on the pull request page) using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands.
| Feature | Command | Description |
|---|---|---|
| Code Review | /gemini review |
Performs a code review for the current pull request in its current state. |
| Pull Request Summary | /gemini summary |
Provides a summary of the current pull request in its current state. |
| Comment | @gemini-code-assist | Responds in comments when explicitly tagged, both in issue comments and review comments. |
| Help | /gemini help |
Displays a list of available commands. |
Customization
To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.
Limitations & Feedback
Gemini Code Assist is currently in preview and may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments to provide feedback.
You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.
A release is born, a version takes flight,
Through code and commits, shining ever so bright.
From fixes and features, a symphony grand,
A digital marvel, crafted by hand.
Footnotes
-
Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution. ↩
There was a problem hiding this comment.
Code Review
This pull request updates the version number in the release notes and settings file. The changes are straightforward and seem correct.
Summary of Findings
Merge Readiness
The pull request updates the version number in the release notes and settings file. The changes are straightforward and appear correct. I am unable to approve the pull request, and users should have others review and approve this code before merging.
|
Closing this to add #2083 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Shankar Ambady
Chris Chudzicki
Nathan Levesque
Matt Bertrand
Arslan Ashraf
renovate[bot]