technical enhancement + logo #1008
Open
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Signed-off-by: starlightretaiil <[email protected]>
Signed-off-by: starlightretaiil <[email protected]>
Signed-off-by: Mammon Baloch <[email protected]>
Signed-off-by: Mammon Baloch <[email protected]>
Signed-off-by: Mammon Baloch <[email protected]>
Signed-off-by: Mammon Baloch <[email protected]>
Bumps the pip group with 7 updates: | Package | From | To | | --- | --- | --- | | [azure-identity](https://github.com/Azure/azure-sdk-for-python) | `1.15.0` | `1.16.1` | | [aiohttp](https://github.com/aio-libs/aiohttp) | `3.9.2` | `3.9.4` | | [gunicorn](https://github.com/benoitc/gunicorn) | `20.1.0` | `22.0.0` | | [requests](https://github.com/psf/requests) | `2.31.0` | `2.32.2` | | [tqdm](https://github.com/tqdm/tqdm) | `4.66.1` | `4.66.3` | | [langchain](https://github.com/langchain-ai/langchain) | `0.0.340` | `0.2.3` | | [urllib3](https://github.com/urllib3/urllib3) | `2.1.0` | `2.2.2` | Updates `azure-identity` from 1.15.0 to 1.16.1 - [Release notes](https://github.com/Azure/azure-sdk-for-python/releases) - [Changelog](https://github.com/Azure/azure-sdk-for-python/blob/main/doc/esrp_release.md) - [Commits](Azure/azure-sdk-for-python@azure-identity_1.15.0...azure-identity_1.16.1) Updates `aiohttp` from 3.9.2 to 3.9.4 - [Release notes](https://github.com/aio-libs/aiohttp/releases) - [Changelog](https://github.com/aio-libs/aiohttp/blob/master/CHANGES.rst) - [Commits](aio-libs/aiohttp@v3.9.2...v3.9.4) Updates `gunicorn` from 20.1.0 to 22.0.0 - [Release notes](https://github.com/benoitc/gunicorn/releases) - [Commits](benoitc/gunicorn@20.1.0...22.0.0) Updates `requests` from 2.31.0 to 2.32.2 - [Release notes](https://github.com/psf/requests/releases) - [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md) - [Commits](psf/requests@v2.31.0...v2.32.2) Updates `tqdm` from 4.66.1 to 4.66.3 - [Release notes](https://github.com/tqdm/tqdm/releases) - [Commits](tqdm/tqdm@v4.66.1...v4.66.3) Updates `langchain` from 0.0.340 to 0.2.3 - [Release notes](https://github.com/langchain-ai/langchain/releases) - [Commits](langchain-ai/langchain@v0.0.340...langchain==0.2.3) Updates `urllib3` from 2.1.0 to 2.2.2 - [Release notes](https://github.com/urllib3/urllib3/releases) - [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst) - [Commits](urllib3/urllib3@2.1.0...2.2.2) --- updated-dependencies: - dependency-name: azure-identity dependency-type: direct:production dependency-group: pip - dependency-name: aiohttp dependency-type: direct:production dependency-group: pip - dependency-name: gunicorn dependency-type: direct:production dependency-group: pip - dependency-name: requests dependency-type: direct:development dependency-group: pip - dependency-name: tqdm dependency-type: direct:development dependency-group: pip - dependency-name: langchain dependency-type: direct:development dependency-group: pip - dependency-name: urllib3 dependency-type: direct:development dependency-group: pip ... Signed-off-by: dependabot[bot] <[email protected]>
Bumps [openai](https://github.com/openai/openai-python) from 1.6.1 to 1.35.3. - [Release notes](https://github.com/openai/openai-python/releases) - [Changelog](https://github.com/openai/openai-python/blob/main/CHANGELOG.md) - [Commits](openai/openai-python@v1.6.1...v1.35.3) --- updated-dependencies: - dependency-name: openai dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>
Bumps the npm_and_yarn group with 2 updates in the /frontend directory: [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) and [braces](https://github.com/micromatch/braces). Updates `vite` from 4.1.5 to 4.5.3 - [Release notes](https://github.com/vitejs/vite/releases) - [Changelog](https://github.com/vitejs/vite/blob/v4.5.3/packages/vite/CHANGELOG.md) - [Commits](https://github.com/vitejs/vite/commits/v4.5.3/packages/vite) Updates `braces` from 3.0.2 to 3.0.3 - [Changelog](https://github.com/micromatch/braces/blob/master/CHANGELOG.md) - [Commits](micromatch/braces@3.0.2...3.0.3) --- updated-dependencies: - dependency-name: vite dependency-type: direct:development dependency-group: npm_and_yarn - dependency-name: braces dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <[email protected]>
…rontend/npm_and_yarn-efa0627907 Bump the npm_and_yarn group across 1 directory with 2 updates
…6e6a Bump the pip group with 7 updates
Bump openai from 1.6.1 to 1.35.3
Signed-off-by: Mammon Baloch <[email protected]>
Signed-off-by: Mammon Baloch <[email protected]>
Signed-off-by: Mammon Baloch <[email protected]>
Signed-off-by: Mammon Baloch <null>
…o/config-update ci(Mergify): configuration update
Signed-off-by: Mammon Baloch <[email protected]>
|
This pull request includes a series of changes aimed at enhancing the project's GitHub workflows, updating dependencies, and adding new configuration files. The most significant changes include the addition of two new GitHub workflows, updates to the GitHub workflows:
Dependency updates:
Configuration files:
|
starlightretailceo
changed the title
Signed-off-by: Mammon Baloch <[email protected]>
|
This pull request includes changes to improve the security and deployment process of the codebase. The most important changes include adding GitHub Actions workflows for CodeQL, OSSAR, and Azure Web App deployment, updating the GitHub Actions workflows:
Package updates:
Other changes:
|
|
This pull request includes several workflow configuration updates and dependency version upgrades. The most important changes include the addition of new GitHub Actions workflows for CodeQL analysis, OSSAR scanning, and Azure Web App deployment, as well as updates to the Workflow Automation Enhancements:
Dependency Updates:
|
|
This pull request includes several updates to GitHub Actions workflows, dependency upgrades, and configuration changes. The main updates involve setting up CodeQL and OSSAR workflows, adding deployment workflows for a Python app, and updating dependencies in the GitHub Actions Workflows:
Dependency Updates:
Configuration Changes:
These changes aim to enhance the security, deployment, and dependency management of the project. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This pull request primarily focuses on the addition of new workflows, updates to dependencies, and the addition of new configuration files. The most important changes include the creation of new workflows for Azure Web App deployment and open source static analysis tools, updates to dependencies in
package.jsonandrequirements-dev.txt, and the addition of a new certificate request and publish settings.Addition of new workflows:
.github/workflows/main_starlight-chat-assistant(starlightretail).yml: A new workflow has been added for building and deploying a Python app to Azure Web App. This workflow runs on push to the main branch and on workflow dispatch..github/workflows/ossar.yml: A new workflow has been added for integrating a collection of open source static analysis tools with GitHub code scanning. This workflow runs on push and pull requests to the main branch, and on a weekly schedule.Updates to dependencies:
frontend/package.json: The version ofvitehas been updated from4.1.5to4.5.3.requirements-dev.txt: Multiple dependencies have been updated, includingrequests,tqdm,langchain, andurllib3.Addition of new configuration files:
.mergify.yml: A new configuration file has been added for Mergify, which will request a review from a specific team when checks are green and the pull request is not closed.Starlight-Chat-Assistant.PublishSettings: A new publish settings file has been added for the Starlight Chat Assistant.Description
Contribution Checklist