Skip to content

Pre stage#1068

Open
vikrantraut-cstk wants to merge 377 commits into
mainfrom
pre-stage
Open

Pre stage#1068
vikrantraut-cstk wants to merge 377 commits into
mainfrom
pre-stage

Conversation

@vikrantraut-cstk
Copy link
Copy Markdown

@vikrantraut-cstk vikrantraut-cstk commented May 13, 2026

No description provided.

shobhitupadhyayy and others added 30 commits March 6, 2026 13:47
@shobhitupadhyayy
feat: enhance AEM service and content type utilities for improved sch…
34fe224 
…ema merging and UID handling; update ContentMapper to support nested modular blocks and prevent duplicate selections fix - CMG-812, CMG-818, CMG-823, CMG-824, CMG-831
@shobhitupadhyayy
Merge branch 'dev' into bugfix/cmg-823
dcdf11b
@shobhitupadhyayy
chore: update dependencies in package-lock and package.json; upgrade …
a79ffb4 
…jsdom to 23.2.0, multer to 2.1.1, and rollup to 4.59.0; add overrides for various packages to ensure compatibility Snyk Issue Resolved
@shobhitupadhyayy
chore: update package.json dependencies to use caret (^) versioning f…
6e3dba5 
…or rollup and overrides in upload-api
@shobhitupadhyayy
fix: update type annotations in content-type-creator utility for impr…
4c74fb9 
…oved type safety and clarity
@vikrantraut
Merge pull request #992 from contentstack/bugfix/cmg-823
465e8b9 
Bugfix/cmg 823
@shobhitupadhyayy
feat: add Drupal support with MySQL configuration and update docker-c…
378fd24 
…ompose for additional environment variables
@shobhitupadhyayy
Merge branch 'dev' into feat/cmg-833
6329ce6
@shobhitupadhyayy
feat: add Drupal support with MySQL configuration and update docker-c…
188ab07 
…ompose for additional environment variables
@shobhitupadhyayy
refactor: streamline environment variable management in fileUpdate.js…
23578be 
… and update docker-compose for security options
@shobhitupadhyayy
refactor: streamline environment variable management in fileUpdate.js…
47f39b5 
… and update docker-compose for security options
@shobhitupadhyayy
fix: correct formatting of security options in docker-compose.yml
91467c6
@umeshmore45
Merge pull request #993 from contentstack/dev
91ce246 
Dev
@aishwarya-cstk
feat: enhance createSchema and ContentMapper to support duplicate blo…
0b29233 
…ck mappings and improve nested field handling for nested group
@aishwarya-cstk
refactor: streamline schemaMapper function by removing unnecessary br…
ec2bbd9 
…eak statements and enhancing button field handling for improved schema generation
@aishwarya-cstk
Merge branch 'dev' of https://github.com/contentstack/migration-v2 in…
3af2480 
…to feature/wordpress
@umesh-more-cstk @cursoragent
Add unit tests for API layer
09c7b9e 
Adds comprehensive unit test coverage including:
- Controller tests (auth, migration, org, projects, user, contentMapper)
- Service tests (auth, contentMapper, extension, globalField, marketplace, migration, org, projects, taxonomy, user)
- Middleware tests (auth, error, req-headers, unmatched-routes, uploadService)
- Model tests (FieldMapper, authentication, contentTypesMapper-lowdb, project-lowdb)
- Route tests (auth, contentMapper, migration, org, projects, user)
- Utility tests (async-router, auth, batch-processor, custom-errors, field-attacher, get-project, https, jwt, mimeTypes, pagination, sanitize-path, search, index)
- Validator tests (affix, affix-confirmation, auth, cms, destination-stack, file-format, fileformat-confirmation, index, project, stack)
- Test fixtures and setup configuration
- Vitest configuration
- GitHub Actions test workflow

Co-authored-by: Cursor <[email protected]>
@umesh-more-cstk
Add GitHub Actions workflows for Jira ticket creation, security polic…
dff5f8b 
…y checks, and source composition analysis

- Introduced a workflow to create Jira tickets automatically when GitHub issues are opened.
- Added a security policy scan to check for the presence of SECURITY.md and license files on pull request events.
- Implemented a source composition analysis scan using Snyk to identify vulnerabilities in the codebase.

These enhancements improve issue tracking and security compliance in the repository.
@umesh-more-cstk @cursoragent
Add GitHub Actions workflows for Jira ticket creation, security polic…
1826215 
…y checks, and source composition analysis

- Introduced a workflow to create Jira tickets automatically when GitHub issues are opened.
- Added a security policy scan to check for the presence of SECURITY.md and license files on pull request events.
- Implemented a source composition analysis scan using Snyk to identify vulnerabilities in the codebase.

These enhancements improve issue tracking and security compliance in the repository.

Co-authored-by: Cursor <[email protected]>
@umesh-more-cstk
Remove unused validator files from Vitest configuration to streamline…
20d43ff 
… testing setup.
@umesh-more-cstk
Enhance testing setup and coverage for UI components
1a255b6 
- Updated GitHub Actions workflow to include separate jobs for API and UI tests, improving clarity and organization.
- Increased Node.js version in the workflow to 22 for better compatibility.
- Added Vitest configuration for UI testing, including coverage reporting.
- Introduced multiple unit tests for hooks, services, and components, ensuring comprehensive coverage and reliability.
- Updated package dependencies for testing libraries to the latest versions.

These changes enhance the testing framework and ensure robust coverage for both API and UI components.
@umesh-more-cstk
These changes enhance the testing framework for the upload-api, ensur…
39df9ea 
…ing reliability and maintainability.
@umesh-more-cstk
Update GitHub Actions workflow to use npm ci with legacy-peer-deps fo…
0226336 
…r improved dependency management during testing
@umesh-more-cstk
Update GitHub Actions workflow to use npm install instead of npm ci f…
ec1c4ba 
…or improved compatibility with legacy peer dependencies during testing
@umesh-more-cstk
Enhance unit tests by adding beforeAll hook and importing vi from Vitest
c50fb62 
- Updated auth and project validator tests to include the beforeAll hook for improved test setup.
- Added import of vi in the config fixture to facilitate mocking capabilities.

These changes improve the structure and functionality of the testing framework.
@umesh-more-cstk
Fix CI: regenerate ui package-lock.json and use --legacy-peer-deps in…
c256f1e 
… npm ci
@umesh-more-cstk
Update unit tests for VALIDATION_DOCUMENTATION_URL to reflect correct…
ca54581 
… Drupal documentation link

- Modified the test for VALIDATION_DOCUMENTATION_URL.drupal to check for 'Drupal.pdf' instead of an empty string, ensuring accurate validation of documentation links.
@umesh-more-cstk
Update package-lock.json to include new dependencies and remove outda…
05a303f 
…ted ones

- Added @storybook/addons, @storybook/api, and related packages at version 6.5.16 for improved UI component development.
- Replaced the outdated redux version from @reduxjs/toolkit with a compatible version from @contentstack/venus-components.
- Updated dependencies for better compatibility and functionality across the UI components.
@umesh-more-cstk
Update package dependencies and versions across multiple modules
6301db4 
- Upgraded  to version 4.0.4 and  to version 5.0.4 in package-lock.json for improved compatibility.
- Updated  to version 10.2.4 and added new dependencies in package.json for enhanced functionality.
- Increased versions of  and  in upload-api to ensure compatibility with the latest features.
- Added overrides for several packages to maintain consistency across the project.

These changes enhance the overall stability and performance of the application.
@umeshmore45
Merge pull request #994 from contentstack/feat/cmg-833
c97295c 
feat: add Drupal support with MySQL configuration and update docker-c…
@vikrantraut-cstk vikrantraut-cstk requested a review from a team as a code owner May 13, 2026 08:54
@github-actions
Copy link
Copy Markdown

github-actions Bot commented May 13, 2026

🔒 Security Scan Results

ℹ️ Note: Only vulnerabilities with available fixes (upgrades or patches) are counted toward thresholds.

Check Type Count (with fixes) Without fixes Threshold Result
🔴 Critical Severity 0 0 10 ✅ Passed
🟠 High Severity 6 322 25 ✅ Passed
🟡 Medium Severity 3 2 500 ✅ Passed
🔵 Low Severity 0 0 1000 ✅ Passed

⏱️ SLA Breach Summary

⚠️ Warning: The following vulnerabilities have exceeded their SLA thresholds (days since publication).

Severity Breaches (with fixes) Breaches (no fixes) SLA Threshold (with/no fixes) Status
🔴 Critical 0 0 15 / 30 days ✅ Passed
🟠 High 0 0 30 / 120 days ✅ Passed
🟡 Medium 0 2 90 / 365 days ⚠️ Warning
🔵 Low 0 0 180 / 365 days ✅ Passed

ℹ️ Vulnerabilities Without Available Fixes (Informational Only)

The following vulnerabilities were detected but do not have fixes available (no upgrade or patch). These are excluded from failure thresholds:

  • Critical without fixes: 0
  • High without fixes: 322
  • Medium without fixes: 2
  • Low without fixes: 0

⚠️ BUILD PASSED WITH WARNINGS - SLA breaches detected for issues without available fixes

Consider reviewing these vulnerabilities when fixes become available.

shobhit-cstk and others added 4 commits May 13, 2026 16:25
@shobhit-cstk
feat: enhance Docker setup and app configuration handling
714341b 
- Added mounting of app.json in docker-compose.yml for better configuration access.
- Updated setup-docker.sh to check for app.json existence and provide clearer prompts for MySQL host input.
- Introduced a utility function to resolve the app.json path dynamically, improving flexibility in locating the configuration file.
- Refactored auth.service.ts and user.service.ts to utilize the new app configuration path utility.
- Updated tests to reflect changes in user service behavior regarding app organization checks.
@shobhit-cstk
fix: handle potential null response in saveOAuthToken function
92ebe56
@vikrantraut-cstk
Merge pull request #1069 from contentstack/feature/docker-drupal
de53411 
feat: enhance Docker setup and app configuration handling
@vikrantraut-cstk
Merge pull request #1070 from contentstack/dev
ae5fb0d 
Dev
@github-actions
Copy link
Copy Markdown

github-actions Bot commented May 13, 2026

🔒 Security Scan Results

ℹ️ Note: Only vulnerabilities with available fixes (upgrades or patches) are counted toward thresholds.

Check Type Count (with fixes) Without fixes Threshold Result
🔴 Critical Severity 0 0 10 ✅ Passed
🟠 High Severity 6 322 25 ✅ Passed
🟡 Medium Severity 3 2 500 ✅ Passed
🔵 Low Severity 0 0 1000 ✅ Passed

⏱️ SLA Breach Summary

⚠️ Warning: The following vulnerabilities have exceeded their SLA thresholds (days since publication).

Severity Breaches (with fixes) Breaches (no fixes) SLA Threshold (with/no fixes) Status
🔴 Critical 0 0 15 / 30 days ✅ Passed
🟠 High 0 0 30 / 120 days ✅ Passed
🟡 Medium 0 2 90 / 365 days ⚠️ Warning
🔵 Low 0 0 180 / 365 days ✅ Passed

ℹ️ Vulnerabilities Without Available Fixes (Informational Only)

The following vulnerabilities were detected but do not have fixes available (no upgrade or patch). These are excluded from failure thresholds:

  • Critical without fixes: 0
  • High without fixes: 322
  • Medium without fixes: 2
  • Low without fixes: 0

⚠️ BUILD PASSED WITH WARNINGS - SLA breaches detected for issues without available fixes

Consider reviewing these vulnerabilities when fixes become available.

@github-actions
Copy link
Copy Markdown

github-actions Bot commented May 14, 2026

🔒 Security Scan Results

ℹ️ Note: Only vulnerabilities with available fixes (upgrades or patches) are counted toward thresholds.

Check Type Count (with fixes) Without fixes Threshold Result
🔴 Critical Severity 0 0 10 ✅ Passed
🟠 High Severity 6 322 25 ✅ Passed
🟡 Medium Severity 3 2 500 ✅ Passed
🔵 Low Severity 0 0 1000 ✅ Passed

⏱️ SLA Breach Summary

⚠️ Warning: The following vulnerabilities have exceeded their SLA thresholds (days since publication).

Severity Breaches (with fixes) Breaches (no fixes) SLA Threshold (with/no fixes) Status
🔴 Critical 0 0 15 / 30 days ✅ Passed
🟠 High 0 0 30 / 120 days ✅ Passed
🟡 Medium 0 2 90 / 365 days ⚠️ Warning
🔵 Low 0 0 180 / 365 days ✅ Passed

ℹ️ Vulnerabilities Without Available Fixes (Informational Only)

The following vulnerabilities were detected but do not have fixes available (no upgrade or patch). These are excluded from failure thresholds:

  • Critical without fixes: 0
  • High without fixes: 322
  • Medium without fixes: 2
  • Low without fixes: 0

⚠️ BUILD PASSED WITH WARNINGS - SLA breaches detected for issues without available fixes

Consider reviewing these vulnerabilities when fixes become available.

yashin4112 and others added 9 commits May 14, 2026 15:50
@yashin4112
fix: improve error handling in login response notification
099fe09
@umesh-more-cstk
Merge pull request #1073 from contentstack/bugfix/cmg-916
4212924 
fix: improve error handling in login response notification
@aishwarya-cstk
fix: correct object assignment and improve nested group processing in…
386ae29 
… wordpress.service.ts
@aishwarya-cstk
chore: update dependencies in package.json and package-lock.json for …
3782ef2 
…api and upload-api

- Upgraded @contentstack/cli to version 1.61.1 in both api and upload-api.
- Updated @wordpress/block-serialization-default-parser to version 5.46.0 in api.
- Updated @wordpress/block-library to version 9.46.0 and @wordpress/blocks to version 15.19.0 in upload-api.
- Bumped @babel/runtime to version 7.29.2 in upload-api.
- Added new dependency @arraypress/waveform-player version 1.2.1 in upload-api.
@aishwarya-cstk
chore: add yaml dependency and update version in package.json and pac…
36cbc7b 
…kage-lock.json

- Added yaml package with version 2.4.2 to both package.json and package-lock.json.
- Updated existing yaml dependency version from 1.10.3 to 2.9.0 in package-lock.json, including new metadata for funding and binary.
@aishwarya-cstk
fix: ensure safe access to object keys in nested group processing
3bd5e3b
@Aravind-Kumar-cstk
Update sca-scan.yml
7f11762
@vikrantraut-cstk
Merge pull request #1074 from contentstack/feature/cmg-705
0f550e2 
fix: correct object assignment and improve nested group processing in…
@vikrantraut-cstk
Merge pull request #1075 from contentstack/dev
9ebe266 
Dev
@vikrantraut-cstk vikrantraut-cstk requested a review from a team as a code owner May 15, 2026 13:10
@github-actions
Copy link
Copy Markdown

github-actions Bot commented May 15, 2026

🔒 Security Scan Results

ℹ️ Note: Only vulnerabilities with available fixes (upgrades or patches) are counted toward thresholds.

Check Type Count (with fixes) Without fixes Threshold Result
🔴 Critical Severity 0 0 10 ✅ Passed
🟠 High Severity 4 327 25 ✅ Passed
🟡 Medium Severity 0 4 500 ✅ Passed
🔵 Low Severity 0 0 1000 ✅ Passed

⏱️ SLA Breach Summary

⚠️ Warning: The following vulnerabilities have exceeded their SLA thresholds (days since publication).

Severity Breaches (with fixes) Breaches (no fixes) SLA Threshold (with/no fixes) Status
🔴 Critical 0 0 15 / 30 days ✅ Passed
🟠 High 0 0 30 / 120 days ✅ Passed
🟡 Medium 0 2 90 / 365 days ⚠️ Warning
🔵 Low 0 0 180 / 365 days ✅ Passed

ℹ️ Vulnerabilities Without Available Fixes (Informational Only)

The following vulnerabilities were detected but do not have fixes available (no upgrade or patch). These are excluded from failure thresholds:

  • Critical without fixes: 0
  • High without fixes: 327
  • Medium without fixes: 4
  • Low without fixes: 0

⚠️ BUILD PASSED WITH WARNINGS - SLA breaches detected for issues without available fixes

Consider reviewing these vulnerabilities when fixes become available.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.