Add Serilog for structured logging and update configuration in appset…#108
Merged
jeffcumpsty-tpx merged 1 commit intostagingfrom Feb 13, 2026
Merged
Add Serilog for structured logging and update configuration in appset…#108jeffcumpsty-tpx merged 1 commit intostagingfrom
jeffcumpsty-tpx merged 1 commit intostagingfrom
Conversation
jeffcumpsty-tpx
added a commit
that referenced
this pull request
Feb 13, 2026
* Implement schema caching (#101) * Add support for bypassing Vercel protection in JSON schema fetching * Add conditional check for Docker image build on pull requests targeting main branch * Remove unused database collections from configuration files * Code cleanup and authentication (#99) * Refactor JSON Schema Handling and Validation Services - Introduced DataSourceAuthentication class to manage API authentication configurations in OpenApiValidationRequest. - Removed JsonSchemaResolverService and integrated its functionality into SchemaResolverService for better cohesion. - Updated OpenApiValidationService and JsonValidatorService to use the new ISchemaResolverService interface. - Enhanced schema resolution methods to support both System.Text.Json and Newtonsoft.Json.Schema. - Updated unit tests to reflect changes in schema resolution and validation logic. - Bumped Swashbuckle.AspNetCore package version to 10.1.2 for improved OpenAPI support. * Update DataSourceAuthentication properties to use empty string as default value and rename JsonSchemaResolverService to SchemaResolverService in README * Enhance OpenApiValidationService with authentication support and update README for authentication methods * chore: Bump Swashbuckle.AspNetCore from 10.1.1 to 10.1.2 (#98) --- updated-dependencies: - dependency-name: Swashbuckle.AspNetCore dependency-version: 10.1.2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Jeff Cumpsty <jeff.cumpsty@tpximpact.com> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Add authentication support to OpenAPI schema configuration and update related services (#100) * Add GitHub workflows for CodeQL analysis, SBOM generation, and Trivy security scan * Update upload-artifact action version in SBOM workflow * Update GitHub Actions to use latest action versions and remove Docker scan steps * Update upload-artifact action version to v6 in CI workflow * Add caching functionality for schema resolution - Introduced CacheOptions class to configure caching behavior. - Updated SchemaResolverService to utilize IMemoryCache for caching remote schemas. - Implemented caching logic in LoadRemoteSchemaAsync method, including support for sliding expiration. - Added unit tests to verify caching behavior with enabled and disabled options. - Updated Program.cs to configure memory cache with size limit from appsettings. - Modified appsettings.json and appsettings.Production.json to include cache configuration options. - Added Microsoft.Extensions.Caching.Abstractions and Microsoft.Extensions.Options package references. --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Ci modifications (#102) * Refactor CI/CD workflows: streamline deployment to Heroku and enforce staging branch for main PRs * Enhance CI/CD workflows: update Dependabot configuration, add auto-merge for safe updates, and upgrade checkout action version * Refactor CI/CD workflows: enhance CodeQL analysis and OWASP ZAP scan steps, improve Docker handling, and streamline application readiness checks * Enhance CI/CD workflow: add .NET setup and build step for CodeQL analysis * Refactor CI/CD workflow: replace manual CodeQL build steps with GitHub's autobuild action * Refactor CodeQL analysis step: switch to manual build process for improved control * Ci modifications (#104) * Refactor CI/CD workflows: streamline deployment to Heroku and enforce staging branch for main PRs * Enhance CI/CD workflows: update Dependabot configuration, add auto-merge for safe updates, and upgrade checkout action version * Refactor CI/CD workflows: enhance CodeQL analysis and OWASP ZAP scan steps, improve Docker handling, and streamline application readiness checks * Enhance CI/CD workflow: add .NET setup and build step for CodeQL analysis * Refactor CI/CD workflow: replace manual CodeQL build steps with GitHub's autobuild action * Refactor CodeQL analysis step: switch to manual build process for improved control * Enhance Trivy scans: update action version, add diagnostic checks for missing SARIF, and improve output handling * Remove redundant permissions section from CI configuration * Sanitize URLs in logging for improved security and clarity * Potential fix for code scanning alert no. 209: Log entries created from user input Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * Add image reference output to Docker build and update Trivy scan steps * Potential fix for code scanning alert no. 211: Log entries created from user input Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * ci: bump the github-actions-updates group with 2 updates Bumps the github-actions-updates group with 2 updates: [actions/checkout](https://github.com/actions/checkout) and [docker/build-push-action](https://github.com/docker/build-push-action). Updates `actions/checkout` from 6.0.1 to 6.0.2 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v6.0.1...v6.0.2) Updates `docker/build-push-action` from 6.18.0 to 6.19.2 - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](docker/build-push-action@v6.18.0...v6.19.2) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: 6.0.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions-updates - dependency-name: docker/build-push-action dependency-version: 6.19.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions-updates ... Signed-off-by: dependabot[bot] <support@github.com> * chore: Bump the microsoft-packages group with 5 updates Bumps Microsoft.AspNetCore.OpenApi from 10.0.2 to 10.0.3 Bumps Microsoft.Extensions.Caching.Abstractions from 10.0.2 to 10.0.3 Bumps Microsoft.Extensions.Http from 10.0.2 to 10.0.3 Bumps Microsoft.Extensions.Logging.Abstractions from 10.0.2 to 10.0.3 Bumps Microsoft.Extensions.Options from 10.0.2 to 10.0.3 --- updated-dependencies: - dependency-name: Microsoft.AspNetCore.OpenApi dependency-version: 10.0.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: microsoft-packages - dependency-name: Microsoft.Extensions.Caching.Abstractions dependency-version: 10.0.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: microsoft-packages - dependency-name: Microsoft.Extensions.Http dependency-version: 10.0.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: microsoft-packages - dependency-name: Microsoft.Extensions.Logging.Abstractions dependency-version: 10.0.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: microsoft-packages - dependency-name: Microsoft.Extensions.Options dependency-version: 10.0.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: microsoft-packages ... Signed-off-by: dependabot[bot] <support@github.com> * chore: Bump JsonSchema.Net from 9.0.0 to 9.1.0 --- updated-dependencies: - dependency-name: JsonSchema.Net dependency-version: 9.1.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * Update CI/CD workflows: change image tag format to short and add GHCR login step for deployments * Add Serilog for structured logging and update configuration in appsettings (#108) * Update OpenApiController.cs * Potential fix for code scanning alert no. 210: Log entries created from user input Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * Potential fix for code scanning alert no. 216: Log entries created from user input Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * Potential fix for code scanning alert no. 243: Log entries created from user input Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * Potential fix for code scanning alert no. 244: Log entries created from user input Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * Potential fix for code scanning alert no. 250: Log entries created from user input Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * Potential fix for code scanning alert no. 216: Log entries created from user input Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * Refactor Docker image pull command to use output reference from docker-build job --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
jeffcumpsty-tpx
added a commit
that referenced
this pull request
Feb 13, 2026
* Implement schema caching (#101) * Add support for bypassing Vercel protection in JSON schema fetching * Add conditional check for Docker image build on pull requests targeting main branch * Remove unused database collections from configuration files * Code cleanup and authentication (#99) * Refactor JSON Schema Handling and Validation Services - Introduced DataSourceAuthentication class to manage API authentication configurations in OpenApiValidationRequest. - Removed JsonSchemaResolverService and integrated its functionality into SchemaResolverService for better cohesion. - Updated OpenApiValidationService and JsonValidatorService to use the new ISchemaResolverService interface. - Enhanced schema resolution methods to support both System.Text.Json and Newtonsoft.Json.Schema. - Updated unit tests to reflect changes in schema resolution and validation logic. - Bumped Swashbuckle.AspNetCore package version to 10.1.2 for improved OpenAPI support. * Update DataSourceAuthentication properties to use empty string as default value and rename JsonSchemaResolverService to SchemaResolverService in README * Enhance OpenApiValidationService with authentication support and update README for authentication methods * chore: Bump Swashbuckle.AspNetCore from 10.1.1 to 10.1.2 (#98) --- updated-dependencies: - dependency-name: Swashbuckle.AspNetCore dependency-version: 10.1.2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Jeff Cumpsty <jeff.cumpsty@tpximpact.com> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Add authentication support to OpenAPI schema configuration and update related services (#100) * Add GitHub workflows for CodeQL analysis, SBOM generation, and Trivy security scan * Update upload-artifact action version in SBOM workflow * Update GitHub Actions to use latest action versions and remove Docker scan steps * Update upload-artifact action version to v6 in CI workflow * Add caching functionality for schema resolution - Introduced CacheOptions class to configure caching behavior. - Updated SchemaResolverService to utilize IMemoryCache for caching remote schemas. - Implemented caching logic in LoadRemoteSchemaAsync method, including support for sliding expiration. - Added unit tests to verify caching behavior with enabled and disabled options. - Updated Program.cs to configure memory cache with size limit from appsettings. - Modified appsettings.json and appsettings.Production.json to include cache configuration options. - Added Microsoft.Extensions.Caching.Abstractions and Microsoft.Extensions.Options package references. --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Ci modifications (#102) * Refactor CI/CD workflows: streamline deployment to Heroku and enforce staging branch for main PRs * Enhance CI/CD workflows: update Dependabot configuration, add auto-merge for safe updates, and upgrade checkout action version * Refactor CI/CD workflows: enhance CodeQL analysis and OWASP ZAP scan steps, improve Docker handling, and streamline application readiness checks * Enhance CI/CD workflow: add .NET setup and build step for CodeQL analysis * Refactor CI/CD workflow: replace manual CodeQL build steps with GitHub's autobuild action * Refactor CodeQL analysis step: switch to manual build process for improved control * Ci modifications (#104) * Refactor CI/CD workflows: streamline deployment to Heroku and enforce staging branch for main PRs * Enhance CI/CD workflows: update Dependabot configuration, add auto-merge for safe updates, and upgrade checkout action version * Refactor CI/CD workflows: enhance CodeQL analysis and OWASP ZAP scan steps, improve Docker handling, and streamline application readiness checks * Enhance CI/CD workflow: add .NET setup and build step for CodeQL analysis * Refactor CI/CD workflow: replace manual CodeQL build steps with GitHub's autobuild action * Refactor CodeQL analysis step: switch to manual build process for improved control * Enhance Trivy scans: update action version, add diagnostic checks for missing SARIF, and improve output handling * Remove redundant permissions section from CI configuration * Sanitize URLs in logging for improved security and clarity * Potential fix for code scanning alert no. 209: Log entries created from user input Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * Add image reference output to Docker build and update Trivy scan steps * Potential fix for code scanning alert no. 211: Log entries created from user input Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * ci: bump the github-actions-updates group with 2 updates Bumps the github-actions-updates group with 2 updates: [actions/checkout](https://github.com/actions/checkout) and [docker/build-push-action](https://github.com/docker/build-push-action). Updates `actions/checkout` from 6.0.1 to 6.0.2 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v6.0.1...v6.0.2) Updates `docker/build-push-action` from 6.18.0 to 6.19.2 - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](docker/build-push-action@v6.18.0...v6.19.2) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: 6.0.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions-updates - dependency-name: docker/build-push-action dependency-version: 6.19.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions-updates ... Signed-off-by: dependabot[bot] <support@github.com> * chore: Bump the microsoft-packages group with 5 updates Bumps Microsoft.AspNetCore.OpenApi from 10.0.2 to 10.0.3 Bumps Microsoft.Extensions.Caching.Abstractions from 10.0.2 to 10.0.3 Bumps Microsoft.Extensions.Http from 10.0.2 to 10.0.3 Bumps Microsoft.Extensions.Logging.Abstractions from 10.0.2 to 10.0.3 Bumps Microsoft.Extensions.Options from 10.0.2 to 10.0.3 --- updated-dependencies: - dependency-name: Microsoft.AspNetCore.OpenApi dependency-version: 10.0.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: microsoft-packages - dependency-name: Microsoft.Extensions.Caching.Abstractions dependency-version: 10.0.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: microsoft-packages - dependency-name: Microsoft.Extensions.Http dependency-version: 10.0.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: microsoft-packages - dependency-name: Microsoft.Extensions.Logging.Abstractions dependency-version: 10.0.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: microsoft-packages - dependency-name: Microsoft.Extensions.Options dependency-version: 10.0.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: microsoft-packages ... Signed-off-by: dependabot[bot] <support@github.com> * chore: Bump JsonSchema.Net from 9.0.0 to 9.1.0 --- updated-dependencies: - dependency-name: JsonSchema.Net dependency-version: 9.1.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * Update CI/CD workflows: change image tag format to short and add GHCR login step for deployments * Add Serilog for structured logging and update configuration in appsettings (#108) * Update OpenApiController.cs * Potential fix for code scanning alert no. 210: Log entries created from user input Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * Potential fix for code scanning alert no. 216: Log entries created from user input Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * Potential fix for code scanning alert no. 243: Log entries created from user input Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * Potential fix for code scanning alert no. 244: Log entries created from user input Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * Potential fix for code scanning alert no. 250: Log entries created from user input Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * Potential fix for code scanning alert no. 216: Log entries created from user input Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * Refactor Docker image pull command to use output reference from docker-build job * Refactor Heroku deployment steps to tag images before pushing --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
jeffcumpsty-tpx
added a commit
that referenced
this pull request
Feb 13, 2026
* Implement schema caching (#101) * Add support for bypassing Vercel protection in JSON schema fetching * Add conditional check for Docker image build on pull requests targeting main branch * Remove unused database collections from configuration files * Code cleanup and authentication (#99) * Refactor JSON Schema Handling and Validation Services - Introduced DataSourceAuthentication class to manage API authentication configurations in OpenApiValidationRequest. - Removed JsonSchemaResolverService and integrated its functionality into SchemaResolverService for better cohesion. - Updated OpenApiValidationService and JsonValidatorService to use the new ISchemaResolverService interface. - Enhanced schema resolution methods to support both System.Text.Json and Newtonsoft.Json.Schema. - Updated unit tests to reflect changes in schema resolution and validation logic. - Bumped Swashbuckle.AspNetCore package version to 10.1.2 for improved OpenAPI support. * Update DataSourceAuthentication properties to use empty string as default value and rename JsonSchemaResolverService to SchemaResolverService in README * Enhance OpenApiValidationService with authentication support and update README for authentication methods * chore: Bump Swashbuckle.AspNetCore from 10.1.1 to 10.1.2 (#98) --- updated-dependencies: - dependency-name: Swashbuckle.AspNetCore dependency-version: 10.1.2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Jeff Cumpsty <jeff.cumpsty@tpximpact.com> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Add authentication support to OpenAPI schema configuration and update related services (#100) * Add GitHub workflows for CodeQL analysis, SBOM generation, and Trivy security scan * Update upload-artifact action version in SBOM workflow * Update GitHub Actions to use latest action versions and remove Docker scan steps * Update upload-artifact action version to v6 in CI workflow * Add caching functionality for schema resolution - Introduced CacheOptions class to configure caching behavior. - Updated SchemaResolverService to utilize IMemoryCache for caching remote schemas. - Implemented caching logic in LoadRemoteSchemaAsync method, including support for sliding expiration. - Added unit tests to verify caching behavior with enabled and disabled options. - Updated Program.cs to configure memory cache with size limit from appsettings. - Modified appsettings.json and appsettings.Production.json to include cache configuration options. - Added Microsoft.Extensions.Caching.Abstractions and Microsoft.Extensions.Options package references. --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Ci modifications (#102) * Refactor CI/CD workflows: streamline deployment to Heroku and enforce staging branch for main PRs * Enhance CI/CD workflows: update Dependabot configuration, add auto-merge for safe updates, and upgrade checkout action version * Refactor CI/CD workflows: enhance CodeQL analysis and OWASP ZAP scan steps, improve Docker handling, and streamline application readiness checks * Enhance CI/CD workflow: add .NET setup and build step for CodeQL analysis * Refactor CI/CD workflow: replace manual CodeQL build steps with GitHub's autobuild action * Refactor CodeQL analysis step: switch to manual build process for improved control * Ci modifications (#104) * Refactor CI/CD workflows: streamline deployment to Heroku and enforce staging branch for main PRs * Enhance CI/CD workflows: update Dependabot configuration, add auto-merge for safe updates, and upgrade checkout action version * Refactor CI/CD workflows: enhance CodeQL analysis and OWASP ZAP scan steps, improve Docker handling, and streamline application readiness checks * Enhance CI/CD workflow: add .NET setup and build step for CodeQL analysis * Refactor CI/CD workflow: replace manual CodeQL build steps with GitHub's autobuild action * Refactor CodeQL analysis step: switch to manual build process for improved control * Enhance Trivy scans: update action version, add diagnostic checks for missing SARIF, and improve output handling * Remove redundant permissions section from CI configuration * Sanitize URLs in logging for improved security and clarity * Potential fix for code scanning alert no. 209: Log entries created from user input Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * Add image reference output to Docker build and update Trivy scan steps * Potential fix for code scanning alert no. 211: Log entries created from user input Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * ci: bump the github-actions-updates group with 2 updates Bumps the github-actions-updates group with 2 updates: [actions/checkout](https://github.com/actions/checkout) and [docker/build-push-action](https://github.com/docker/build-push-action). Updates `actions/checkout` from 6.0.1 to 6.0.2 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v6.0.1...v6.0.2) Updates `docker/build-push-action` from 6.18.0 to 6.19.2 - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](docker/build-push-action@v6.18.0...v6.19.2) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: 6.0.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions-updates - dependency-name: docker/build-push-action dependency-version: 6.19.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions-updates ... Signed-off-by: dependabot[bot] <support@github.com> * chore: Bump the microsoft-packages group with 5 updates Bumps Microsoft.AspNetCore.OpenApi from 10.0.2 to 10.0.3 Bumps Microsoft.Extensions.Caching.Abstractions from 10.0.2 to 10.0.3 Bumps Microsoft.Extensions.Http from 10.0.2 to 10.0.3 Bumps Microsoft.Extensions.Logging.Abstractions from 10.0.2 to 10.0.3 Bumps Microsoft.Extensions.Options from 10.0.2 to 10.0.3 --- updated-dependencies: - dependency-name: Microsoft.AspNetCore.OpenApi dependency-version: 10.0.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: microsoft-packages - dependency-name: Microsoft.Extensions.Caching.Abstractions dependency-version: 10.0.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: microsoft-packages - dependency-name: Microsoft.Extensions.Http dependency-version: 10.0.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: microsoft-packages - dependency-name: Microsoft.Extensions.Logging.Abstractions dependency-version: 10.0.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: microsoft-packages - dependency-name: Microsoft.Extensions.Options dependency-version: 10.0.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: microsoft-packages ... Signed-off-by: dependabot[bot] <support@github.com> * chore: Bump JsonSchema.Net from 9.0.0 to 9.1.0 --- updated-dependencies: - dependency-name: JsonSchema.Net dependency-version: 9.1.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * Update CI/CD workflows: change image tag format to short and add GHCR login step for deployments * Add Serilog for structured logging and update configuration in appsettings (#108) * Update OpenApiController.cs * Potential fix for code scanning alert no. 210: Log entries created from user input Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * Potential fix for code scanning alert no. 216: Log entries created from user input Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * Potential fix for code scanning alert no. 243: Log entries created from user input Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * Potential fix for code scanning alert no. 244: Log entries created from user input Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * Potential fix for code scanning alert no. 250: Log entries created from user input Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * Potential fix for code scanning alert no. 216: Log entries created from user input Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> * Refactor Docker image pull command to use output reference from docker-build job * Refactor Heroku deployment steps to tag images before pushing * Enhance deployment conditions to include event type and actor checks for staging and production --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
…tings