CRS Catalog merge requestshttps://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/merge_requests2024-02-27T19:44:02Zhttps://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/merge_requests/339Update core lib azure and core common to 0.25.02024-02-27T19:44:02ZChristophe MonginUpdate core lib azure and core common to 0.25.0https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/merge_requests/338Draft: Update to JDK 172024-01-19T23:42:32ZSolomon AyalewDraft: Update to JDK 17Update Java version to 17Update Java version to 17https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/merge_requests/333Use full URL instead of relative path2023-12-22T20:19:14ZLawrence ChanUse full URL instead of relative pathhttps://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/merge_requests/319Full Upgrade of First Party Library Dependencies2023-10-18T09:19:17ZChad LeongFull Upgrade of First Party Library DependenciesThis generated MR upgrades the first party libraries (other OSDU libraries) to utilize the latest release.
The intent is to keep all dependent libraries up to date.
This upgrade can be merged immediately without further approval if the C...This generated MR upgrades the first party libraries (other OSDU libraries) to utilize the latest release.
The intent is to keep all dependent libraries up to date.
This upgrade can be merged immediately without further approval if the CI pipeline reports success.
If this MR has failed, we need to work with the maintainers and affected provider teams to find a solution.
### Dependency Information Before the Upgrade
```
Branch: master
SHA: 96301594061bee4356289f1aa157304bbeed298c
Maven: 0.24.0-SNAPSHOT
```
| Maven Dependencies | _Root_ |
| ------------------ | ------ |
| core-lib-azure | 0.23.1 |
| os-core-common | 0.23.2 |
| os-core-lib-ibm | 0.23.0 |
### Dependency Information After the Upgrade
```
Branch: dependency-upgrade
SHA: a354767fc52f1db1cb91048609a428da303d1b66
Maven: 0.24.0-SNAPSHOT
```
| Maven Dependencies | _Root_ |
| ------------------ | ------ |
| core-lib-azure | 0.23.2 |
| os-core-common | 0.23.3 |
| os-core-lib-ibm | 0.23.0 |M21 - Release 0.24https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/merge_requests/310Draft: Resolve "CRS Catalog points-in-aou enable terminating colon for CRS re...2023-10-11T16:22:50ZKIRAN ALLAMSETYDraft: Resolve "CRS Catalog points-in-aou enable terminating colon for CRS record id"Closes #34Closes #34M21 - Release 0.24https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/merge_requests/302jackson databind upgrade2023-10-09T06:18:49Zsagar thapajackson databind upgrade# Issue links:
https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/24305 - AWS
https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulne...# Issue links:
https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/24305 - AWS
https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/24310 - AWS
https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/24316 - Azure
https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/24313 - Azure
https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/26286 - Google Cloud
https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/26268 - Google Cloud
https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/24311 - IBM
https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/security/vulnerabilities/24309 - IBM
## jackson-databind upgrade affects following cloud provider.
- [x] AWS
- [x] Azure
- [x] Google Cloud
- [x] IBMThulasi Dass SubramanianThulasi Dass Subramanianhttps://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/merge_requests/280Draft: rename sa k8s2023-09-01T13:58:01ZOrest Khud [EPAM / GCP]Draft: rename sa k8sM20 - Release 0.23https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/merge_requests/279Draft: change SA name2023-05-30T07:03:43ZOrest Khud [EPAM / GCP]Draft: change SA nameM19 - Release 0.22https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/merge_requests/272Merge useragent changes2023-05-12T16:33:50ZMadalyn MarabellaMerge useragent changesadding useragent changesadding useragent changesM18 - Release 0.21Madalyn MarabellaMadalyn Marabellahttps://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/merge_requests/269update NOTICE file2023-05-18T22:01:26ZLong Chengupdate NOTICE fileM18 - Release 0.21Long ChengLong Chenghttps://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/merge_requests/255Draft: Trusted dependency upgrade bios2023-03-30T22:27:09ZMorris EstepaDraft: Trusted dependency upgrade biosMorris EstepaMorris Estepahttps://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/merge_requests/246Draft: GONRG-6157: Refactor GC common pipeline file structure2023-02-15T14:58:12ZVolodymyr Pienskoi [EPAM / GCP]Draft: GONRG-6157: Refactor GC common pipeline file structureTest MR: https://community.opengroup.org/osdu/platform/ci-cd-pipelines/-/merge_requests/857Test MR: https://community.opengroup.org/osdu/platform/ci-cd-pipelines/-/merge_requests/857Volodymyr Pienskoi [EPAM / GCP]Volodymyr Pienskoi [EPAM / GCP]https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/merge_requests/240Error Handling for Bad Requests2023-02-17T00:04:52ZYash DholakiaError Handling for Bad RequestsWhen passing "%" in dataId and RecordId fields, we get generic internal server error with incorrect 500 http status code. Handled those errors with correct error code and response.When passing "%" in dataId and RecordId fields, we get generic internal server error with incorrect 500 http status code. Handled those errors with correct error code and response.Yash DholakiaYash Dholakiahttps://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/merge_requests/239Merge aws2023-03-30T08:47:40ZAbhishek PatilMerge awscommit a1a007f9
Author: David Diederich <d.diederich@opengroup.org>
Date: Tue Dec 06 2022 08:55:55 GMT-0500 (Eastern Standard Time)
Merge branch 'cherry-pick-for-213' into 'release/0.18'
Cherry-pick 'added changes to disable the...commit a1a007f9
Author: David Diederich <d.diederich@opengroup.org>
Date: Tue Dec 06 2022 08:55:55 GMT-0500 (Eastern Standard Time)
Merge branch 'cherry-pick-for-213' into 'release/0.18'
Cherry-pick 'added changes to disable the azure code coverage' into release/0.18
See merge request osdu/platform/system/reference/crs-catalog-service!217
commit 100ec3b4
Author: David Diederich <d.diederich@opengroup.org>
Date: Mon Dec 05 2022 00:26:05 GMT-0500 (Eastern Standard Time)
Create Release Branch for version 0.18
commit 459c5e12
Author: shivani karipe <shivani_karipe@epam.com>
Date: Mon Dec 05 2022 06:27:18 GMT-0500 (Eastern Standard Time)
added changes to disable the azure code coverage
(cherry picked from commit 82a5c7e026247b8de9106d1f95752888c0de735d)M17 - Release 0.20Okoun-Ola Fabien HouetoYash DholakiaOkoun-Ola Fabien Houetohttps://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/merge_requests/237Update libraries version with security fix2023-08-25T22:31:27ZYifan YeUpdate libraries version with security fixUpdate libraries version with security fix #32Update libraries version with security fix #32Yifan YeYifan Yehttps://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/merge_requests/230Draft: MR for demo only2023-01-06T20:22:44ZMorris EstepaDraft: MR for demo onlyM16 - Release 0.19Morris EstepaMorris Estepahttps://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/merge_requests/225corelib upgrade changes2023-08-25T22:31:27ZNishant Vidyasagarcorelib upgrade changes(cherry picked from commit 1ce4da1e49333827d08547f45c98bdb367e6483b)(cherry picked from commit 1ce4da1e49333827d08547f45c98bdb367e6483b)Nishant VidyasagarNishant Vidyasagarhttps://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/merge_requests/221Upgrade First Party Library Dependencies for Release 0.182022-12-13T09:08:26ZDavid Diederichd.diederich@opengroup.orgUpgrade First Party Library Dependencies for Release 0.18This automated MR upgrades the first party libraries (other OSDU libraries) to utilize the latest release.
The intent is to keep the OSDU projects utilizing the latest available code to ensure widespread usage and stability.
However, any...This automated MR upgrades the first party libraries (other OSDU libraries) to utilize the latest release.
The intent is to keep the OSDU projects utilizing the latest available code to ensure widespread usage and stability.
However, any library that is older than the previous release will be left as-is, since the upgrade is likely to be more complicated.
Furthermore, the upgrade should only be merged in the CI pipeline reports success.
If this MR has failed, we can spend a little time investigating to see if a trivial upgrade could achieve compatiblity to the new library.
But significant upgrade efforts should not occur on this MR, as part of the release tagging process.
Instead, significant work should be scheduled for a subsequent milestone.
### Dependency Information Before the Upgrade
```
Branch: master
SHA: 598b30a55583c2560bbb55fee69b620270758803
Maven: 0.19.0-SNAPSHOT
```
| Maven Dependencies | _Root_ |
| ------------------------------------------------------- | ---------------- |
| core-lib-azure | 0.14.0 |
| os-core-common | 0.17.0 |
| os-core-lib-ibm | 0.17.0 |
| (3rd Party) com.fasterxml.jackson.core.jackson-databind | 2.13.2, 2.13.2.2 |
| (3rd Party) org.springframework.spring-webflux | 5.3.12 |
| (3rd Party) org.springframework.spring-webmvc | 5.3.22 |
```
Critical: Found Vulnerable Jackson Databind dependency (<2.12.6.1 || >=2.13.0 <2.13.2.1)
└─ _Root_
└─ org.springdoc.springdoc-openapi-ui == 1.6.9
└─ org.springdoc.springdoc-openapi-webmvc-core == 1.6.9
└─ org.springdoc.springdoc-openapi-common == 1.6.9
└─ org.springframework.boot.spring-boot-autoconfigure == 2.7.2
└─ io.swagger.core.v3.swagger-core == 2.2.0
└─ com.fasterxml.jackson.core.jackson-databind == 2.13.2
```
```
Warning: Found Vulnerable Spring WebFlux dependency (<5.2.20 || >=5.3.0 <5.3.18)
└─ _Root_
└─ org.opengroup.osdu.crs-catalog-service.crs-catalog-aks == 0.19.0-SNAPSHOT
└─ com.azure.spring.azure-spring-boot-starter-active-directory == 3.4.0
└─ org.springframework.boot.spring-boot-starter-webflux == 2.4.12
└─ org.springframework.spring-webflux == 5.3.12
```
### Dependency Information After the Upgrade
```
Branch: dependency-upgrade
SHA: d95b7dbad90863a973c7bf78ad0ddaab557411dc
Maven: 0.19.0-SNAPSHOT
```
| Maven Dependencies | _Root_ |
| ------------------------------------------------------- | ---------------- |
| core-lib-azure | 0.14.0 |
| os-core-common | 0.18.0 |
| os-core-lib-ibm | 0.18.0 |
| (3rd Party) com.fasterxml.jackson.core.jackson-databind | 2.13.4, 2.13.2.2 |
| (3rd Party) org.springframework.spring-webflux | 5.3.12 |
| (3rd Party) org.springframework.spring-webmvc | 5.3.22 |
```
Warning: Found Vulnerable Spring WebFlux dependency (<5.2.20 || >=5.3.0 <5.3.18)
└─ _Root_
└─ org.opengroup.osdu.crs-catalog-service.crs-catalog-aks == 0.19.0-SNAPSHOT
└─ com.azure.spring.azure-spring-boot-starter-active-directory == 3.4.0
└─ org.springframework.boot.spring-boot-starter-webflux == 2.4.12
└─ org.springframework.spring-webflux == 5.3.12
```M15 - Release 0.18https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/merge_requests/216GONRG-6045: Remove NEG annotation in service2022-12-06T11:30:30ZVolodymyr Pienskoi [EPAM / GCP]GONRG-6045: Remove NEG annotation in serviceServices created in GKE clusters 1.17.6-gke.7 and up with VPC-native traffic routing enabled are annotated automatically with `cloud.google.com/neg: '{"ingress": true}'`. This means that this annotation is not required explicitly and can...Services created in GKE clusters 1.17.6-gke.7 and up with VPC-native traffic routing enabled are annotated automatically with `cloud.google.com/neg: '{"ingress": true}'`. This means that this annotation is not required explicitly and can be removed.
More details in [GKE Load Balancing documentation](https://cloud.google.com/kubernetes-engine/docs/concepts/ingress#container-native_load_balancing).Volodymyr Pienskoi [EPAM / GCP]Volodymyr Pienskoi [EPAM / GCP]https://community.opengroup.org/osdu/platform/system/reference/crs-catalog-service/-/merge_requests/214upgrading corelib azure into crs-catalog2023-08-25T22:31:26ZNishant Vidyasagarupgrading corelib azure into crs-catalogNishant VidyasagarNishant Vidyasagar