Skip to content

Latest commit

 

History

History
680 lines (545 loc) · 48.5 KB

CHANGELOG.md

File metadata and controls

680 lines (545 loc) · 48.5 KB
Raw

v3.0.0 (2023-10-16)

⚠️ Breaking Change This version adds a mandatory migration to GitHub Apps. As an operator you should first create and install the GitHub App on all your organizations and repositories.

Improvements:

  • feat: migration assistant - OAuth App <> GitHub Apps (#1024)

Change Log

v2.13.1 (2023-08-15)

Fixes:

  • allowlist whitelist authenticated routes (GHSA-gw8p-frwv-25gh)

Improvements:

  • add support for merge_group status checks (#973)
  • Register webhook to receive merge_group events (#1003)

v2.13.0 (2022-03-23)

Fixes:

  • await webhook removal to gracefully handle rejected promises (#854)
  • Update copyright year to 2022 (#834)

v2.12.0 (2022-01-24)

Improvements:

  • rename default branch to main (#799)
  • restructure files to separate code and runtime assets (#800)
  • use GitHub Actions OIDC to authenticate against GCP (#816)
  • remove configuration for stale bot (#821)
  • update to node16 and switch to karma-chrome (#823)

Fixes:

  • await all promises before sending status back (#813)
  • use createOAuthAppAuth to create authentification when acting as the OAuthApp (#826)

v2.11.0 (2021-11-08)

Features:

  • Alpha: Add GitHub App as a hidden feature (#781)

Improvements:

  • README.md: HTTP => HTTPS (#796)

v2.10.0 (2021-10-20)

Features:

  • Add option to except members of org from CLA (#783)

Improvements:

  • Enable actions to deploy arbitrary commit to staging (#788, #789, #790, #792)

v2.9.3 (2021-09-14)

Improvements:

  • use native octokit calls instead of node-fetch (#768)
  • update all production dependencies to the their newest version (#767, #765, #764, #759, #763, #762, #761)
  • update octokit libraries and refactor Octokit usage (#759)

v2.9.2 (2021-09-09)

Improvements:

  • remove array-sugar and q; move codeceptjs to dev (#756)
  • use node-fetch; remove request(-promise-native) (#754, #757)
  • switch bower dependencies to npm (#753)

v2.9.1 (2021-09-03)

Improvements:

  • move sass compilation from startup to build (#747)
  • Update data storage location to cosmosDB (#741)
  • add option to associate logs with request ids/opentelemtry support (#749, #751)
  • replace base-64 with native base64 encoding (#746)
  • remove btoa, bunyan-sentry-stream, raven, socket.io, valid-url as no longer needed dependencies (#748)
  • resolve linter issues and set all rules to error (#744)
  • add COMMON_ISSUES as file (#743)

Fixed Bugs:

  • improve request performance for getSignedCLA() (#739)

v2.9.0 (2021-08-24)

Improvements:

  • Implemented my signed CLAs feature (#688)
  • Capitalize sentence-like message (#678)
  • Cleanup project files (#731, #736, #737)
  • Update Dockerfile to use node-alpine base

v2.8.6 (2021-02-23)

Improvements:

  • updated SAP Logo

v2.8.5 (2020-11-23)

Improvements:

  • import JSON is supported
  • Improve Dockerfile apk command cache handling
  • Implemented additional API checks
  • Filter Archived Repositories
  • Added Gardner pipeline

v2.8.4 (2020-08-12)

Improvements:

  • fix deprecated mongodb connection style

v2.8.3 (2020-07-23)

Improvements:

  • present our terms of use and privacy policy on all pages

v2.8.2 (2020-07-21)

Improvements:

  • updated License
  • Changed from using Whitelist to allow list Credits: Marko Schulz PR594

v2.8.1 (2020-06-06)

Improvements:

  • updated ISSUE_TEMPLATE
  • Introduced logging of all github responses with rate-limits

v2.8.0 (2020-04-28)

New features:

  • update count api- stop posting last entries and listing details. (KharitonOff)
  • Related issue: #520

v2.7.0 (2020-03-17)

Merged pull requests:

Fixed Bugs:

  • update logging and catch some exceptions
  • reduce logic on count/clas

v2.6.2 (2020-02-28)

Fixed Bugs:

  • do not update comment of a PR if there are no text changes - reduce GitHub api calls

v2.6.1 (2020-02-26)

Fixed Bugs:

  • update depricated octokit method call

v2.6.0 (2020-02-26)

New Features:

  • refactoring: reduce github api calls, pass linked item where possible; avoid await if not needed
  • change caching mechanism

Fixed Bugs:

  • fix unlink animation

v2.5.2 (2020-02-18)

Fixed Bugs:

  • respond to org webhooks for PRs of excluded repos

v2.5.1 (2020-02-18)

Merged pull requests:

  • Reword run-on sentence in CLA signing request #533 (benesch)

Fixed Bugs:

  • respond to redundand webhooks

v2.5 (2020-02-17)

Fixed Bugs:

  • avoid double comments by ignoring zombee webhooks issue #521
  • get rid of obsolete github basic auth credentials issue #525

v2.4.6 (2020-01-22)

Fixed Bugs:

  • Added extra logging for debugging
  • Replaced basicauth claassistantio credentials with token

v2.4.5 (2019-12-04)

Fixed Bugs:

  • Added extra logging for debugging the http 403 forbidden error

v2.4.4 (2019-12-02)

Fixed Bugs:

  • App will listen to the HTTP requests only after all the files are bootstrapped issue #512
  • Moved the App starting from ./app.js to ./server/app.js (temporary workaround)

v2.4.3 (2019-11-28)

Fixed Bugs:

  • Added additional logging for trouble shooting the failing webhooks with status code 400
  • Bootstrapping webhook file in the beginning
  • classistant GitHub account is blocked and So, using the claassistantio GitHub Account and it's token for commenting on the Pull Request (temporary workaround)

v2.4.2 (2019-10-15)

Fixed Bugs:

  • sending response to webhook after PR comment and status logic
  • added console statements for debugging

v2.4.1 (2019-10-09)

Fixed Bugs:

  • removed duplicated method function call to linkeditem when there is a request from webhook
  • quick response to the incoming webhook instead of waiting for the whole flow to finish
  • introduced additional logging for debugging

v2.4.0 (2019-10-09)

New Features:

  • Introduced GitHub Action for CI/CD Pipeline
  • Moving the infrastructure of this project to Google Cloud Run Serverless Container Platform

v2.3.2 (2019-09-03)

Fixed bugs:

  • Slowed down the GitHub API requests to spread out the API calls for staying within the GitHub API rate limit when doing ReCheckPR for organisation

v2.3.1 (2019-08-09)

Fixed bugs:

  • Optimised the code so that there is less db and Github Api calls during ValidateOrgPR

v2.3.0 (2019-08-09)

Merged pull requests:

  • Added build task so Heroku can build the Javascript bundle #470 (amateurhuman)
  • Store full response in cache instead of custom built response object #469 (amateurhuman)

New feature:

  • Enhancement of UI look and feel #452

v2.2.1 (2019-07-29)

Fixed bugs:

  • No membership check when the organization is whitelisted and the pull request is from a repository inside the same organization

v2.2.0 (2019-07-25)

New feature:

  • Added Membership check for the committers when Organization itself is whitelisted #410 #403 #414

v2.1.1 (2019-07-19)

Fixed bugs:

  • Removed sentry logging

v2.1.0 (2019-07-16)

New feature:

  • Increased Node version from 11 to 12.6

v2.0.3 (2019-07-10)

Fixed bugs:

  • deleteHook when unlinking an item, changed github call argument from id to hook_id

v2.0.2 (2019-07-05)

Fixed bugs:

  • promise not resolved because there is no await for github call

v2.0.1 (2019-07-02)

Fixed bugs:

  • Updated robot.txt to disallow bots on making API calls to GitHub

v2.0.0 (2019-06-26)

New features:

  • refactored the entire codebase from callback functions to Async-await
  • Moved package used for GitHub REST API client from node-github to octokit
  • Increased Node version from 8 to 11
  • Upgraded node dependencies

Fixed bugs:

  • Fix: removing public_repo from Admin scope #417

v1.10.1 (2019-06-17)

Fixed bugs:

  • Update vulnerable dependencies

v1.10.0 (2019-06-04)

Merged pull requests:

  • Add readiness route so that Kubernetes could better swap pods. Show CLA updated date in the CLA signing page. Setup cookie secure #435 (MichaelTsengLZ)

Fixed bugs:

  • fix unlink animation (ibakshay)
  • Whitelist should use exact match when there is no wildcard (*) #435 (MichaelTsengLZ)
  • When updating a linked repo, we should validate input. And should allow whiteListPattern and privacyPolicy as empty string. #435 (MichaelTsengLZ)
  • Do not get pull request files to check significant changes. In this way, we could avoid the Github abuse exception when there are thousands of commits in a pull request. #435 (MichaelTsengLZ)
  • don't update gist url on edit if user hasn't changed it #444

v1.9.2 (2019-04-10)

Merged pull requests:

v1.9.1 (2019-03-26)

Fixed bugs:

  • use reject instead of throw in services/cla.js
  • access logger without 'this.' in services/cla.js

v1.9.0 (2019-03-19)

Merged pull requests:

Fixed bugs:

  • remove plain text notification token

v1.8.4 (2018-10-22)

Fixed bugs:

  • avoid node deprecation warning: Unhandled promise rejection...
  • don't access parameters of null (in case PR could not be read via github api)

v1.8.3 (2018-10-01)

Merged pull requests:

Fixed bugs:

  • avoid node deprecation warning: Unhandled promise rejection... Use asyn/await for server/services/cla.isClaRequired
  • remove hardcoded paths to the badges and remove legacy code

v1.8.2 (2018-09-11)

Fixed bugs:

  • don't change gist url on edit but keep the existing one or use html_url of the gist #366

v1.8.1 (2018-07-09)

New features:

  • provide a URL to the CLA page of the linked repo (show a tooltip for the linked orgs with the info how to reach the CLA page) #156

v1.8.0 (2018-07-06)

New features:

  • add edit screen for linked repos and orgs
  • provide a possibility to whitelist committers #173, #232, #197
  • add origin flag to the signatures in order to differentiate between signatures made via CLA Assistant tool, imported signatures and signatures coming via API
  • provide a possibility to import signature date and custom fields in addition to github user names #328
  • project owners can provide a link to their privacy policy and obtain user consent before signing the CLA #329

Fixed bugs:

  • fix unexpected authentication loop on cla sign for repos with names containing .js #348

v1.7.1 (2018-06-25)

New features:

  • add sourceclear scan to the build pipeline
  • add acceptance/integration tests

Fixed bugs:

  • fix signature process: update comment and status on sign #340
  • use promise for permission check and getLinkedItem

v1.7.0 (2018-06-11)

New features:

  • allow upload signature date and custom fields #328, #195
  • set origin flag on sign (UI / API / Upload)

Fixed bugs:

  • don't call count api if the host is not cla-assistant.io #334
  • check users admin rights for orgs #331

v1.6.0 (2018-05-25)

New features:

  • show username and logout button on the cla page
  • update to angular 1.7.0

Closed issues:

  • CLA signed but assistant still says not signed #241

Fixed bugs:

  • update vulnerable dependencies

v1.5.0 (2018-04-10)

Fixed bugs:

  • add null check on commits returned by graphAPI - Anton Kharitonov
  • don't use pagination in api/cla, github service loads all pages per default - Anton Kharitonov
  • fix validation org repos - don't break the app if linked repo doesn't have a repoId - Anton Kharitonov

New features:

  • Add no-sniff MIME type protection - Michael Tseng

v1.4.1 (2018-02-21)

Fixed bugs:

  • don't use pagination in api/cla, github service loads all pages per default
  • add null check on commits returned by graphAPI

v1.4.0 (2018-01-10)

Fixed bugs:

  • Checker stuck on "Waiting for status to be reported" #303
  • Unable to import csv file containing github usernames of contributors who have already signed the CLA. #188
  • CLA status shows up as Pending incorrectly #150
  • CLA-Assistant integration not working #122
  • Status not updated after adopting commit email #113
  • Recheck PRs doesn't check all pull requests #102
  • rendering issues on firefox #94
  • "Sign in" broken on cla-assistant.io #60
  • update dependencies #56
  • View bug when site is loading #45
  • Consider compressing images #42
  • show all activated repos I can access #24
  • Possible mismatch of comment on pull request with its status #13

Closed issues:

  • WebHook isn't being created for an Organisation #302
  • Add bot users to whitelist #301
  • Added email to github but still says that it is not signed. #295
  • CLA Assistant was unlinked and removed but still haunts old pull requests #294
  • Append .md file extension to the file containing SAP Individual Contributor License Agreement #293
  • CLA doesn't work for me ( doesn't see my GitHub user) #292
  • Could you help me understand why we need to drop all index of 'clas' collection and recreate again? #291
  • What is "org_cla" and why does it mean "Signed for Organization" #283
  • Changing comment message #281
  • Copyright notice on cla-assist.io #280
  • when trying to sign a CLA, I get an error #277
  • cla-assistant.io responds with 404 Not Found #276
  • Incorrect port environment variable in the documentation #273
  • Export CSV only shows invalid characters #267
  • Commit blamed to generic email #266
  • signed CLA but assistant still says not signed. #265
  • How can I add another admin to the linked organization? #263
  • I have signed a CLA but it's always in pending status #261
  • Inconsistent signed status #260
  • garbage prepended to all headings #259
  • Alibaba Individual Contributor License Agreement #258
  • CLA status reporting not working #256
  • Heading are rendered with link glyph permanently visible when using .md file #255
  • Can't access one of my organisations and can't reauthorise #253
  • Enable link repo with a different CLA from its org CLA if exists #251
  • Can't sign CLA? #247
  • Questions about the way of handling webhook event #244
  • why so many permissions? #243
  • Already Signed CLA for Uber/Hoodie. Still it complains. But the page is shown as signed. #242
  • Allow any org admin to see / export the list of signers #240
  • Differentiate between employees and external contributors #239
  • No obvious way to import repos in an org you didn't select the first time around #233
  • Enable certain people NOT to sign a CLA #232
  • Unable to sign up CLA #229
  • "Status waiting to be reported" never completes #228
  • Can we skip CLA when a PR only has some small minor changes, e.g. 1 line change. #226
  • How to implement the feature of showing custom field based on other custom fields #225
  • The way of generating the redirect url is not working properly on windows server #224
  • Changing the URL of the gist containing the CLA #223
  • Action required: Greenkeeper could not be activated 🚨 #221
  • URGENT! 404 Not Found: Requested route ('cla-assistant.io') does not exist. #220
  • Getting double notifications on GitHub #218
  • CLA appears as not signed #217
  • Change license #215
  • cla email invalid #214
  • CLA Stopped working, error: Unexpected token in JSON #213
  • Am I an affiliate for using this? #212
  • Suddenly all our cla-assistant related tasks are not completing #211
  • I have signed but still in pending #207
  • Delay updating GitHub after signing CLA #206
  • I have signed CLA but the CLA check still said I haven't check #202
  • Status check not working #200
  • Added email to github but still says that it is not signed. #198
  • I have signed agreement many time still it shows it is not signed. #194
  • Issue after update github username #192
  • cla assistant is not working #191
  • EU regulations conformance #190
  • I'm getting checks on an unadded repository #189
  • How long deal with Contributor License Agreement? #187
  • Problem with signing CLA after changing username/email #186
  • CLAassistant thinks CLA isn't signed, yet it is #185
  • Sign CLA for entire organization #184
  • Page says I've accepted, badge on GitHub says I haven't #181
  • Phone number field should not be a input type=number #180
  • Just can't get a check to pass #179
  • Capture email address, address etc #178
  • Can I revoke access for a specific organization? #177
  • Organization repositories do not appear in the link list #176
  • Provide an API or direct download link to CSV exports #175
  • Seems to fail when trying to retrieve repositories/organizations #174
  • How to approve the greenkeeper? #172
  • CLA check gives false positive when committing with another user #170
  • Recheck PRs on newly added org are all pending #169
  • Not checking the full commit range #168
  • Export API / Periodic Export? #166
  • [Question] Proof of CLA #164
  • Is it enough to have only the username in the CSV file when importing? #160
  • Is it possible to ask for a recheck a specific PR #159
  • Linked organizations aren't visible to other users #158
  • Option to exclude repositories if organization is linked #157
  • Too much empty space on top #155
  • CLAassistant is posting twice for new contributors #154
  • Contributor Covenant Code of Conduct as the CLA #152
  • content "window" is too small #149
  • Feature: More custom field #148
  • Don't work #147
  • Still showing pending even if I've signed CLA #146
  • Linked repositories list is blank (it used to contain ~6 entries) #145
  • Asking people to sign CLA again #144
  • hidden custom fields #143
  • Term of Use #141
  • What is the suggested setup to run cla-assistant on our own instance? #140
  • Save also the GitHub id, email and name if provided. #137
  • Let contributor accept one of several CLAs #136
  • @XAXICLOUDDEV #135
  • Can't link after unlink-ing once #134
  • Cannot sign CLA, but I've signed it before and it has worked #133
  • @xaxiclouddev #132
  • cla-assistant does not find one of my repositories #130
  • CLA-Assistant not detecting full github name with dash in it #128
  • licence/cla — Waiting for status to be reported (https://github.com/PBSPro/pbspro/pull/68\) #124
  • Sign the agreement (multiple times) but project says it still is not signed #123
  • Explicitly E-mail signers and repository maintainers when a CLA is signed #121
  • Do not present CLA form if consent is already granted #120
  • Unable to link an organisation repo #119
  • CLA assistant v2 #118
  • as collaborator, signing the CLA does not get tracked #116
  • "not signed yet." when I've clicked the link multiple times #114
  • Loading indicator while loading your "Linked CLAs" #112
  • Add a handler for a ping event in web hooks #109
  • Add contributors to GitHub team #108
  • Does the CLA need to be signed per PR if already accepted for a repo #107
  • Webhook call returns unsupported event #106
  • Customize CLAassistant comment wording #105
  • Problems with the port on Cloud Foundry #104
  • Status: webhook missing #103
  • Share a single cla for all projects in an organization #101
  • CLAHub #100
  • Is there a way to give another user access to see who has signed the CLA create links etc. #99
  • provide option to import a list of emails instead of GitHub users #98
  • Too wide GH API permissions required just to sign a CLA #97
  • Transferring repositories to a new organization #96
  • Multiple committers under same GitHub account aren't linked #95
  • Retroactively requiring users to sign CLA? #93
  • $JTZ\ #92
  • option to disable the comment on PRs when the author has signed already #91
  • still being maintained? #89
  • Allow badge type to be selected #88
  • Not all organization repositories showing up #87
  • PR check not green although all contributors signed #86
  • Link Based CLA Signing #83
  • Allow import of CLAHub CSV Files #82
  • Signer not being notified #81
  • Issues when there are more than 100 repositories / gists #80
  • need to show all signers for any version, not just the last one #79
  • cla-assistant wants too many authorizations #78
  • CLA status reporting not working #77
  • Badge for CLA assistant #76
  • Add screenshots to marketing page #75
  • CLA Committer's List Not Updated After Rebase/Force Push #74
  • CLA disappeared for cockroachdb/cockroach #71
  • Use separate repo for CLA + list of signees #70
  • After I've successfully signed the CLA still get "not signed yet" #68
  • migrating to cla-assistant #67
  • multiple repos, same CLA #66
  • Write access to Gists? #65
  • Store more information about the CLA signer #64
  • hook running, but not doing anything #63
  • Link multiple repos in one flow #62
  • Don't ask repository owners to sign a CLA ? #61
  • System is down #59
  • spelling mistakes on github.io page #55
  • another sign-out icon #53
  • success modal view has no header any more #52
  • still need app.min.js #51
  • set pull request status to green if all committers have signed the CLA #49
  • Error Page for non-existing repositories #48
  • FAQ #47
  • Export list of signees #46
  • create default entry for CLA drop down list #44
  • Text for Slides #43
  • Text: Info Box 'Don't have one?' #41
  • Thin text a bit difficult to see on lower resolutions #40
  • Landing page: signature animation #39
  • pop up fade in #38
  • wording #37
  • Terms of Service & Privacy Policy #36
  • List of my signed CLAs #35
  • Error messages in new design #34
  • changes landingpage #33
  • Options: Choose a CLA in Gist #32
  • Error Boxes #31
  • write PR-comments in name of cla-assistant user #27
  • documentation on how to run own instance of cla assistant #26
  • mention all committers who have not signed CLA yet #23
  • How do I use this? #21
  • Provide capability to query database to see who has accepted the CLA #19
  • provide option to view and revoke CLAs #18
  • Scroll down the CLA #17
  • CLA discovery #16
  • corporate CLAs #15
  • sign cla once per version #14
  • on new version of CLA #12
  • show correct icon for repos and forks #11
  • pull request with multiple committers #10
  • Names #9
  • Sign-process #8
  • Pull Request Integration #7
  • main page - add gist #6
  • detail-page #5
  • main-page - settings #4
  • main page - add repo #3
  • Logo #2
  • Create marketing page #1

Merged pull requests:

* This Change Log was automatically generated by github_changelog_generator