Merge branch 'main' into task/badge-implementation-in-frontend

Author: Piyushrathoree

.github/workflows/run-ci-cd.yaml

@@ -276,7 +276,7 @@ jobs:
         uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435
 
       - name: Login to Docker Hub
-        uses: docker/login-action@184bdaa0721073962dff0199f1fb9940f07167d1
+        uses: docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef
         with:
           username: ${{ secrets.DOCKERHUB_USERNAME }}
           password: ${{ secrets.DOCKERHUB_TOKEN }}
@@ -377,16 +377,18 @@ jobs:
         uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8
 
       - name: Scan backend image
+        continue-on-error: true
         uses: aquasecurity/trivy-action@b6643a29fecd7f34b3597bc6acb0a98b03d33ff8
         with:
-          exit-code: 0
+          exit-code: 1
           image-ref: owasp/nest:backend-staging
           scan-type: image
           trivy-config: trivy.yaml
           trivyignores: trivyignore.yaml
           version: latest
 
       - name: Scan frontend image
+        continue-on-error: true
         uses: aquasecurity/trivy-action@b6643a29fecd7f34b3597bc6acb0a98b03d33ff8
         with:
           exit-code: 1
@@ -600,7 +602,7 @@ jobs:
         uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435
 
       - name: Login to Docker Hub
-        uses: docker/login-action@184bdaa0721073962dff0199f1fb9940f07167d1
+        uses: docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef
         with:
           username: ${{ secrets.DOCKERHUB_USERNAME }}
           password: ${{ secrets.DOCKERHUB_TOKEN }}

.github/workflows/run-code-ql.yaml

@@ -31,7 +31,7 @@ jobs:
         uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8
 
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@192325c86100d080feab897ff886c34abd4c83a3
+        uses: github/codeql-action/init@e296a935590eb16afc0c0108289f68c87e2a89a5
         with:
           languages: ${{ matrix.language }}
 
@@ -55,6 +55,6 @@ jobs:
         run: pnpm install --frozen-lockfile
 
       - name: Perform CodeQL analysis
-        uses: github/codeql-action/analyze@192325c86100d080feab897ff886c34abd4c83a3
+        uses: github/codeql-action/analyze@e296a935590eb16afc0c0108289f68c87e2a89a5
         with:
           category: /language:${{ matrix.language }}

.github/workflows/update-nest-test-images.yaml

@@ -23,7 +23,7 @@ jobs:
         uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435
 
       - name: Login to Docker Hub
-        uses: docker/login-action@184bdaa0721073962dff0199f1fb9940f07167d1
+        uses: docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef
         with:
           username: ${{ secrets.DOCKERHUB_USERNAME }}
           password: ${{ secrets.DOCKERHUB_TOKEN }}

.pre-commit-config.yaml

@@ -10,7 +10,7 @@ repos:
         exclude: (.github|pnpm-lock.yaml)
 
   - repo: https://github.com/astral-sh/ruff-pre-commit
-    rev: v0.13.1
+    rev: v0.14.0
     hooks:
       - id: ruff
         args:
@@ -83,6 +83,6 @@ repos:
         exclude: pnpm-lock.yaml
 
   - repo: https://github.com/tox-dev/pyproject-fmt
-    rev: v2.6.0
+    rev: v2.7.0
     hooks:
       - id: pyproject-fmt

README.md

@@ -9,9 +9,9 @@
 
 [![OWASP](https://img.shields.io/badge/OWASP-Incubator-blue?style=for-the-badge)](https://owasp.org/www-project-nest/) [![OWASP](https://img.shields.io/badge/OWASP-Code-blue?style=for-the-badge)](https://owasp.org/www-project-nest/) [![project-nest](https://img.shields.io/badge/OWASP-%23project--nest-blue?logo=slack&logoColor=white&style=for-the-badge)](https://owasp.slack.com/messages/project-nest)
 
-[![License](https://img.shields.io/github/license/owasp/nest?color=41BE4A&label=License&style=for-the-badge)](https://github.com/OWASP/Nest/blob/main/LICENSE) [![Last Commit](https://img.shields.io/github/last-commit/owasp/nest/main?style=for-the-badge&label=Last%20commit)](https://github.com/OWASP/Nest/commits/main/) [![Contributors](https://img.shields.io/github/contributors/owasp/nest?style=for-the-badge&label=Contributors)](https://github.com/OWASP/Nest/graphs/contributors)
+[![License](https://img.shields.io/github/license/owasp/nest?color=blue&label=License&style=for-the-badge)](https://github.com/OWASP/Nest/blob/main/LICENSE) [![Last Commit](https://img.shields.io/github/last-commit/owasp/nest/main?color=blue&style=for-the-badge&label=Last%20commit)](https://github.com/OWASP/Nest/commits/main/) [![Contributors](https://img.shields.io/github/contributors/owasp/nest?style=for-the-badge&label=Contributors&color=blue)](https://github.com/OWASP/Nest/graphs/contributors)
 
-[![CI/CD](https://img.shields.io/github/actions/workflow/status/owasp/nest/run-ci-cd.yaml?branch=main&label=Build&style=for-the-badge)](https://github.com/owasp/nest/actions/workflows/run-ci-cd.yaml?query=branch%3Amain) [![CodeQL](https://img.shields.io/github/actions/workflow/status/owasp/nest/run-code-ql.yaml?branch=main&label=CodeQL&style=for-the-badge)](https://github.com/owasp/nest/actions/workflows/run-code-ql.yaml?query=branch%3Amain) [![Sonarqube](https://img.shields.io/sonar/quality_gate/OWASP_Nest?server=https://sonarcloud.io&style=for-the-badge&label=Sonarqube)](https://sonarcloud.io/summary/new_code?id=OWASP_Nest&branch=main)
+[![CI/CD](https://img.shields.io/github/actions/workflow/status/owasp/nest/run-ci-cd.yaml?branch=main&color=blue&label=Build&style=for-the-badge)](https://github.com/owasp/nest/actions/workflows/run-ci-cd.yaml?query=branch%3Amain) [![CodeQL](https://img.shields.io/github/actions/workflow/status/owasp/nest/run-code-ql.yaml?branch=main&color=blue&label=CodeQL&style=for-the-badge)](https://github.com/owasp/nest/actions/workflows/run-code-ql.yaml?query=branch%3Amain) [![Sonarqube](https://img.shields.io/sonar/quality_gate/OWASP_Nest?color=blue&server=https://sonarcloud.io&style=for-the-badge&label=Sonarqube)](https://sonarcloud.io/summary/new_code?id=OWASP_Nest&branch=main)
 
 [![Issues](https://img.shields.io/github/issues/owasp/nest?color=blue&style=for-the-badge&label=Issues)](https://github.com/OWASP/Nest/issues) [![Pull Requests](https://img.shields.io/github/issues-pr/owasp/nest?color=blue&style=for-the-badge&label=Pull%20Requests)](https://github.com/OWASP/Nest/pulls)
 

backend/apps/api/rest/v0/__init__.py

@@ -2,9 +2,11 @@
 
 from django.conf import settings
 from ninja import NinjaAPI, Swagger
+from ninja.pagination import RouterPaginated
 from ninja.throttling import AuthRateThrottle
 
 from apps.api.rest.auth.api_key import ApiKey as ApiKey
+from apps.api.rest.v0.chapter import router as chapter_router
 from apps.api.rest.v0.committee import router as committee_router
 from apps.api.rest.v0.event import router as event_router
 from apps.api.rest.v0.issue import router as issue_router
@@ -15,8 +17,6 @@
 from apps.api.rest.v0.repository import router as repository_router
 from apps.api.rest.v0.sponsor import router as sponsor_router
 
-from .chapter import router as chapter_router
-
 ROUTERS = {
     # Chapters.
     "/chapters": chapter_router,
@@ -42,11 +42,12 @@
 
 api_settings = {
     "auth": ApiKey(),  # The `api_key` param name is based on the ApiKey class name.
+    "default_router": RouterPaginated(),
     "description": "Open Worldwide Application Security Project API",
     "docs": Swagger(settings={"persistAuthorization": True}),
     "throttle": [AuthRateThrottle("10/s")],
     "title": "OWASP Nest",
-    "version": "0.2.3",
+    "version": "0.2.4",
 }
 
 api_settings_customization = {}

backend/apps/api/rest/v0/chapter.py

@@ -7,78 +7,89 @@
 from django.conf import settings
 from django.http import HttpRequest
 from django.views.decorators.cache import cache_page
-from ninja import Field, FilterSchema, Path, Query, Router, Schema
+from ninja import Field, FilterSchema, Path, Query, Schema
 from ninja.decorators import decorate_view
-from ninja.pagination import PageNumberPagination, paginate
+from ninja.pagination import RouterPaginated
 from ninja.responses import Response
 
-from apps.owasp.models.chapter import Chapter
+from apps.owasp.models.chapter import Chapter as ChapterModel
 
-router = Router()
+router = RouterPaginated(tags=["Chapters"])
 
 
-class ChapterErrorResponse(Schema):
-    """Chapter error response schema."""
+class ChapterBase(Schema):
+    """Base schema for Chapter (used in list endpoints)."""
 
-    message: str
+    created_at: datetime
+    key: str
+    name: str
+    updated_at: datetime
 
+    @staticmethod
+    def resolve_key(obj):
+        """Resolve key."""
+        return obj.nest_key
 
-class ChapterFilterSchema(FilterSchema):
-    """Filter schema for Chapter."""
 
-    country: str | None = Field(None, description="Country of the chapter")
-    region: str | None = Field(None, description="Region of the chapter")
+class Chapter(ChapterBase):
+    """Schema for Chapter (minimal fields for list display)."""
 
 
-class ChapterSchema(Schema):
-    """Schema for Chapter."""
+class ChapterDetail(ChapterBase):
+    """Detail schema for Chapter (used in single item endpoints)."""
 
     country: str
-    created_at: datetime
-    name: str
     region: str
-    updated_at: datetime
+
+
+class ChapterError(Schema):
+    """Chapter error schema."""
+
+    message: str
+
+
+class ChapterFilter(FilterSchema):
+    """Filter for Chapter."""
+
+    country: str | None = Field(None, description="Country of the chapter")
 
 
 @router.get(
     "/",
     description="Retrieve a paginated list of OWASP chapters.",
     operation_id="list_chapters",
-    response={200: list[ChapterSchema]},
+    response=list[Chapter],
     summary="List chapters",
-    tags=["Chapters"],
 )
 @decorate_view(cache_page(settings.API_CACHE_TIME_SECONDS))
-@paginate(PageNumberPagination, page_size=settings.API_PAGE_SIZE)
 def list_chapters(
     request: HttpRequest,
-    filters: ChapterFilterSchema = Query(...),
+    filters: ChapterFilter = Query(...),
     ordering: Literal["created_at", "-created_at", "updated_at", "-updated_at"] | None = Query(
         None,
         description="Ordering field",
     ),
-) -> list[ChapterSchema]:
+) -> list[Chapter]:
     """Get chapters."""
-    return filters.filter(Chapter.active_chapters.order_by(ordering or "-created_at"))
+    return filters.filter(ChapterModel.active_chapters.order_by(ordering or "-created_at"))
 
 
 @router.get(
     "/{str:chapter_id}",
     description="Retrieve chapter details.",
     operation_id="get_chapter",
     response={
-        HTTPStatus.NOT_FOUND: ChapterErrorResponse,
-        HTTPStatus.OK: ChapterSchema,
+        HTTPStatus.NOT_FOUND: ChapterError,
+        HTTPStatus.OK: ChapterDetail,
     },
     summary="Get chapter",
-    tags=["Chapters"],
 )
 def get_chapter(
     request: HttpRequest,
     chapter_id: str = Path(example="London"),
-) -> ChapterSchema | ChapterErrorResponse:
+) -> ChapterDetail | ChapterError:
     """Get chapter."""
-    if chapter := Chapter.active_chapters.filter(
+    if chapter := ChapterModel.active_chapters.filter(
         key__iexact=(
             chapter_id if chapter_id.startswith("www-chapter-") else f"www-chapter-{chapter_id}"
         )

backend/apps/api/rest/v0/committee.py

@@ -7,69 +7,81 @@
 from django.conf import settings
 from django.http import HttpRequest
 from django.views.decorators.cache import cache_page
-from ninja import Path, Query, Router, Schema
+from ninja import Path, Query, Schema
 from ninja.decorators import decorate_view
-from ninja.pagination import PageNumberPagination, paginate
+from ninja.pagination import RouterPaginated
 from ninja.responses import Response
 
-from apps.owasp.models.committee import Committee
+from apps.owasp.models.committee import Committee as CommitteeModel
 
-router = Router()
+router = RouterPaginated(tags=["Committees"])
 
 
-class CommitteeErrorResponse(Schema):
-    """Committee error response schema."""
+class CommitteeBase(Schema):
+    """Base schema for Committee (used in list endpoints)."""
 
-    message: str
+    created_at: datetime
+    key: str
+    name: str
+    updated_at: datetime
 
+    @staticmethod
+    def resolve_key(obj):
+        """Resolve key."""
+        return obj.nest_key
 
-class CommitteeSchema(Schema):
-    """Schema for Committee."""
 
-    name: str
+class Committee(CommitteeBase):
+    """Schema for Committee (minimal fields for list display)."""
+
+
+class CommitteeDetail(CommitteeBase):
+    """Detail schema for Committee (used in single item endpoints)."""
+
     description: str
-    created_at: datetime
-    updated_at: datetime
+
+
+class CommitteeError(Schema):
+    """Committee error schema."""
+
+    message: str
 
 
 @router.get(
     "/",
     description="Retrieve a paginated list of OWASP committees.",
     operation_id="list_committees",
-    response={200: list[CommitteeSchema]},
+    response=list[Committee],
     summary="List committees",
-    tags=["Committees"],
 )
 @decorate_view(cache_page(settings.API_CACHE_TIME_SECONDS))
-@paginate(PageNumberPagination, page_size=settings.API_PAGE_SIZE)
 def list_committees(
     request: HttpRequest,
     ordering: Literal["created_at", "-created_at", "updated_at", "-updated_at"] | None = Query(
         None,
         description="Ordering field",
     ),
-) -> list[CommitteeSchema]:
+) -> list[Committee]:
     """Get committees."""
-    return Committee.active_committees.order_by(ordering or "-created_at")
+    return CommitteeModel.active_committees.order_by(ordering or "-created_at")
 
 
 @router.get(
     "/{str:committee_id}",
     description="Retrieve committee details.",
     operation_id="get_committee",
     response={
-        HTTPStatus.NOT_FOUND: CommitteeErrorResponse,
-        HTTPStatus.OK: CommitteeSchema,
+        HTTPStatus.NOT_FOUND: CommitteeError,
+        HTTPStatus.OK: CommitteeDetail,
     },
     summary="Get committee",
-    tags=["Committees"],
 )
 def get_chapter(
     request: HttpRequest,
     committee_id: str = Path(example="project"),
-) -> CommitteeSchema | CommitteeErrorResponse:
+) -> CommitteeDetail | CommitteeError:
     """Get chapter."""
-    if committee := Committee.active_committees.filter(
+    if committee := CommitteeModel.active_committees.filter(
         is_active=True,
         key__iexact=(
             committee_id