From 6a55622ff3363c536aa90b26eb1632b16d481ffb Mon Sep 17 00:00:00 2001 From: Stavros-Anastasios Charismiadis <charismiadis@fogus.gr> Date: Tue, 6 May 2025 16:17:20 +0300 Subject: [PATCH] Add Gunicorn 23 upgrade --- .gitignore | 3 ++- doc/releasenotes.md | 4 ++++ 2 files changed, 6 insertions(+), 1 deletion(-) diff --git a/.gitignore b/.gitignore index b3daeb9e..4efd020b 100644 --- a/.gitignore +++ b/.gitignore @@ -2,4 +2,5 @@ site doc/testing/postman/Responses doc/testing/postman/node_modules doc/testing/postman/package-lock.json -.DS_Store \ No newline at end of file +.DS_Store +.idea \ No newline at end of file diff --git a/doc/releasenotes.md b/doc/releasenotes.md index 9ee66d09..0247c74c 100644 --- a/doc/releasenotes.md +++ b/doc/releasenotes.md @@ -25,6 +25,10 @@ ### **Technical Debt Solved** +#### **Upgrade Gunicorn** + +Migration of gunicorn from version 22 to 23, due to some vulnerabilities detected. All OpenCAPIF APIs (including "register" and "helper") were upgraded. + #### **Hardening on startup scripts for services interacting with Vault** The startup scripts of the ***Invoker Management Service***, ***Provider Management Service***, and ***Security Service*** have been improved to ensure reliability when the Vault service takes longer to become ready. These new scripts check responses from the Vault to ensure the returned information is valid before starting each service. -- GitLab