IBM
diff --git a/‎.github/workflows/codeql-analysis.yml
Lines changed: 3 additions & 3 deletions b/‎.github/workflows/codeql-analysis.yml
Lines changed: 3 additions & 3 deletions
diff --git a/‎.pre-commit-config.yaml
Lines changed: 7 additions & 7 deletions b/‎.pre-commit-config.yaml
Lines changed: 7 additions & 7 deletions
diff --git a/‎.secrets.baseline
Lines changed: 15 additions & 2 deletions b/‎.secrets.baseline
Lines changed: 15 additions & 2 deletions
diff --git a/‎Makefile
Lines changed: 9 additions & 7 deletions b/‎Makefile
Lines changed: 9 additions & 7 deletions
diff --git a/‎Pipfile
Lines changed: 3 additions & 2 deletions b/‎Pipfile
Lines changed: 3 additions & 2 deletions
@@ -48,11 +48,11 @@ jobs:
         # If you wish to specify custom queries, you can do so here or in a config file.
         # By default, queries listed here will override any specified in a config file.
         # Prefix the list here with "+" to use these queries and those in the config file.
-        
+
         # Details on CodeQL's query packs refer to : https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-code-scanning#using-queries-in-ql-packs
         # queries: security-extended,security-and-quality
 
-        
+
     # Autobuild attempts to build any compiled languages  (C/C++, C#, or Java).
     # If this step fails, then you should remove it and run the build manually (see below)
     - name: Autobuild
@@ -61,7 +61,7 @@ jobs:
     # ℹ️ Command-line programs to run using the OS shell.
     # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
 
-    #   If the Autobuild fails above, remove it and uncomment the following three lines. 
+    #   If the Autobuild fails above, remove it and uncomment the following three lines.
     #   modify them (or add more) to build your code if your project, please refer to the EXAMPLE below for guidance.
 
     # - run: |
 
@@ -1,6 +1,6 @@
 repos:
 -   repo: https://github.com/pre-commit/pre-commit-hooks
-    rev: v4.0.1
+    rev: v4.4.0
     hooks:
     -   id: check-builtin-literals
         args: ['--no-allow-dict-kwargs']
@@ -14,28 +14,28 @@ repos:
     -   id: debug-statements
     -   id: double-quote-string-fixer
     -   id: name-tests-test
--   repo: https://gitlab.com/pycqa/flake8
-    rev: master
+-   repo: https://github.com/pycqa/flake8
+    rev: 6.0.0
     hooks:
     -   id: flake8
         args: []
         exclude: ^test_data/
         additional_dependencies: [pep8-naming]
 -   repo: https://github.com/asottile/reorder_python_imports
-    rev: v2.6.0
+    rev: v3.9.0
     hooks:
     -   id: reorder-python-imports
         language_version: python3
 -   repo: https://github.com/asottile/add-trailing-comma
-    rev: v2.1.0
+    rev: v2.4.0
     hooks:
     -   id: add-trailing-comma
 -   repo: https://github.com/pre-commit/mirrors-autopep8
-    rev: v1.5.7
+    rev: v2.0.0
     hooks:
     -   id: autopep8
 -   repo: https://github.com/ibm/detect-secrets
-    rev: 0.13.1+ibm.34.dss
+    rev: 0.13.1+ibm.55.dss
     hooks:
     -   id: detect-secrets # pragma: whitelist secret
         args: [--baseline, .secrets.baseline, --use-all-plugins, --no-keyword-scan ]
@@ -3,14 +3,17 @@
     "files": "^.secrets.baseline$|^secret|^Pipfile.lock$|^kustomize_envs/.*/secret",
     "lines": null
   },
-  "generated_at": "2021-05-12T20:42:08Z",
+  "generated_at": "2022-12-13T17:56:28Z",
   "plugins_used": [
     {
       "name": "AWSKeyDetector"
     },
     {
       "name": "ArtifactoryDetector"
     },
+    {
+      "name": "AzureStorageKeyDetector"
+    },
     {
       "base64_limit": 4.5,
       "name": "Base64HighEntropyString"
@@ -25,8 +28,12 @@
       "name": "CloudantDetector"
     },
     {
+      "ghe_instance": "github.ibm.com",
       "name": "GheDetector"
     },
+    {
+      "name": "GitHubTokenDetector"
+    },
     {
       "hex_limit": 3,
       "name": "HexHighEntropyString"
@@ -43,6 +50,9 @@
     {
       "name": "MailchimpDetector"
     },
+    {
+      "name": "NpmDetector"
+    },
     {
       "name": "PrivateKeyDetector"
     },
@@ -52,6 +62,9 @@
     {
       "name": "SoftlayerDetector"
     },
+    {
+      "name": "SquareOAuthDetector"
+    },
     {
       "name": "StripeDetector"
     },
@@ -126,7 +139,7 @@
       }
     ]
   },
-  "version": "0.13.1+ibm.34.dss",
+  "version": "0.13.1+ibm.55.dss",
   "word_list": {
     "file": null,
     "hash": null
 
@@ -1,6 +1,9 @@
 MAKEFLAGS += --warn-undefined-variables
 SHELL = /bin/bash
 
+CONTAINER_REGISTRY = icr.io
+IBM_CLOUD_REGION = us-east
+
 SKAFFOLD_VERBOSITY ?= info
 
 TEST_DB_CONTAINER_NAME ?= gd_test_postgres
@@ -131,7 +134,7 @@ ifdef TRAVIS
 endif
 	# ignore 41002: coverage <6.0b1 resolved (5.5 installed)! it's part of pytest-cov
 	# which does not have a version containing the fix.
-	pipenv check --ignore 41002
+	pipenv check --ignore 41002 --ignore 51499
 	pre-commit run --all-files --show-diff-on-failure
 
 .PHONY: start-db_metrics
@@ -144,14 +147,13 @@ start-scan_worker:
 
 .PHONY: login
 login:
-ifndef DOCKER_REG_API_KEY
-	$(error env var DOCKER_REG_API_KEY is not set)
-endif
-ifndef DOCKER_REG_USERNAME
-	$(error env var DOCKER_REG_USERNAME is not set)
+ifndef IBM_CLOUD_API_KEY
+	$(error env var IBM_CLOUD_API_KEY is not set)
 endif
+	# login to ibm cloud
+	@ibmcloud login --apikey $(IBM_CLOUD_API_KEY) -a https://cloud.ibm.com -r $(IBM_CLOUD_REGION)
 	# login to the docker registry
-	@echo $(DOCKER_REG_API_KEY) | docker login -u $(DOCKER_REG_USERNAME) --password-stdin
+	@echo $(IBM_CLOUD_API_KEY) | docker login -u iamapikey --password-stdin $(CONTAINER_REGISTRY)
 
 .PHONY: build-images
 build-images:
 
@@ -4,7 +4,7 @@ url = "https://pypi.org/simple"
 verify_ssl = true
 
 [dev-packages]
-pytest = "==7.1.1"
+pytest = "==7.2.0"
 responses = "==0.20.0"
 mock = "==4.0.3"
 unittest2 = "==1.1.0"
@@ -33,7 +33,8 @@ gunicorn = "==20.1.0"
 gevent = "==21.12.0"
 pyjwt = "==2.4.0"
 ibm-db = "==3.1.1"
-detect-secrets = {ref = "0.13.1+ibm.47.dss", git = "https://github.com/ibm/detect-secrets.git"}
+detect-secrets = {ref = "0.13.1+ibm.55.dss", git = "https://github.com/ibm/detect-secrets.git"}
+pytest = "==7.2.0"
 
 [requires]
 python_version = "3.9"
Original file line number	Diff line number	Diff line change
`@@ -3,14 +3,17 @@`
`3`	`3`	`"files": "^.secrets.baseline$\|^secret\|^Pipfile.lock$\|^kustomize_envs/.*/secret",`
`4`	`4`	`"lines": null`
`5`	`5`	`},`
`6`		`- "generated_at": "2021-05-12T20:42:08Z",`
	`6`	`+ "generated_at": "2022-12-13T17:56:28Z",`
`7`	`7`	`"plugins_used": [`
`8`	`8`	`{`
`9`	`9`	`"name": "AWSKeyDetector"`
`10`	`10`	`},`
`11`	`11`	`{`
`12`	`12`	`"name": "ArtifactoryDetector"`
`13`	`13`	`},`
	`14`	`+ {`
	`15`	`+ "name": "AzureStorageKeyDetector"`
	`16`	`+ },`
`14`	`17`	`{`
`15`	`18`	`"base64_limit": 4.5,`
`16`	`19`	`"name": "Base64HighEntropyString"`
`@@ -25,8 +28,12 @@`
`25`	`28`	`"name": "CloudantDetector"`
`26`	`29`	`},`
`27`	`30`	`{`
	`31`	`+ "ghe_instance": "github.ibm.com",`
`28`	`32`	`"name": "GheDetector"`
`29`	`33`	`},`
	`34`	`+ {`
	`35`	`+ "name": "GitHubTokenDetector"`
	`36`	`+ },`
`30`	`37`	`{`
`31`	`38`	`"hex_limit": 3,`
`32`	`39`	`"name": "HexHighEntropyString"`
`@@ -43,6 +50,9 @@`
`43`	`50`	`{`
`44`	`51`	`"name": "MailchimpDetector"`
`45`	`52`	`},`
	`53`	`+ {`
	`54`	`+ "name": "NpmDetector"`
	`55`	`+ },`
`46`	`56`	`{`
`47`	`57`	`"name": "PrivateKeyDetector"`
`48`	`58`	`},`
`@@ -52,6 +62,9 @@`
`52`	`62`	`{`
`53`	`63`	`"name": "SoftlayerDetector"`
`54`	`64`	`},`
	`65`	`+ {`
	`66`	`+ "name": "SquareOAuthDetector"`
	`67`	`+ },`
`55`	`68`	`{`
`56`	`69`	`"name": "StripeDetector"`
`57`	`70`	`},`
`@@ -126,7 +139,7 @@`
`126`	`139`	`}`
`127`	`140`	`]`
`128`	`141`	`},`
`129`		`- "version": "0.13.1+ibm.34.dss",`
	`142`	`+ "version": "0.13.1+ibm.55.dss",`
`130`	`143`	`"word_list": {`
`131`	`144`	`"file": null,`
`132`	`145`	`"hash": null`