Merge branch 'main' of github.com:OWASP/Nest into pr/Piyushrathoree/2273

Author: kasya

.github/workflows/check-pr-issue.yaml

@@ -0,0 +1,28 @@
+name: Check PR linked issue and assignee
+
+on:
+  pull_request:
+    types:
+      - opened
+      - synchronize
+
+permissions:
+  contents: read
+  issues: write
+  pull-requests: write
+
+jobs:
+  check-pr-issue:
+    runs-on: ubuntu-latest
+
+    steps:
+      - uses: actions/checkout@v5
+
+      - name: Check PR linked issue and assignee
+        uses: arkid15r/check-pr-issue-action@a3635191c798f111aae577759b579dc37bb13e02
+        with:
+          close_pr_on_failure: 'false'
+          github_token: ${{ secrets.GITHUB_TOKEN }}
+          no_assignee_message: 'Test: The linked issue must be assigned to the PR author.'
+          no_issue_message: 'Test: This PR must be linked to an issue.'
+          require_assignee: 'true'

.github/workflows/run-ci-cd.yaml

@@ -71,7 +71,7 @@ jobs:
         uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8
 
       - name: Install pnpm
-        uses: pnpm/action-setup@a7487c7e89a18df4991f7f222e4898a00d66ddda
+        uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061
         with:
           version: 10
           run_install: true
@@ -557,7 +557,7 @@ jobs:
         uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8
 
       - name: Install pnpm
-        uses: pnpm/action-setup@a7487c7e89a18df4991f7f222e4898a00d66ddda
+        uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061
         with:
           run_install: true
           version: 10

.github/workflows/run-code-ql.yaml

@@ -36,7 +36,7 @@ jobs:
           languages: ${{ matrix.language }}
 
       - name: Install pnpm
-        uses: pnpm/action-setup@a7487c7e89a18df4991f7f222e4898a00d66ddda
+        uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061
         with:
           version: 10
           run_install: false

.pre-commit-config.yaml

@@ -83,6 +83,6 @@ repos:
         exclude: pnpm-lock.yaml
 
   - repo: https://github.com/tox-dev/pyproject-fmt
-    rev: v2.7.0
+    rev: v2.10.0
     hooks:
       - id: pyproject-fmt

LEARN.md

@@ -7,7 +7,7 @@
 
 # [OWASP Nest](https://nest.owasp.org/)
 
-[![OWASP](https://img.shields.io/badge/OWASP-Incubator-blue?style=for-the-badge)](https://owasp.org/www-project-nest/) [![OWASP](https://img.shields.io/badge/OWASP-Code-blue?style=for-the-badge)](https://owasp.org/www-project-nest/) [![project-nest](https://img.shields.io/badge/OWASP-%23project--nest-blue?logo=slack&logoColor=white&style=for-the-badge)](https://owasp.slack.com/messages/project-nest)
+[![OWASP](https://img.shields.io/badge/Lab-blue?&label=owasp%20level&style=for-the-badge)](https://owasp.org/www-project-nest/) [![OWASP](https://img.shields.io/badge/Code-blue?label=OWASP%20Type&style=for-the-badge)](https://owasp.org/www-project-nest/) [![project-nest](https://img.shields.io/badge/%23project--nest-blue?label=OWASP%20Slack&logoColor=white&style=for-the-badge)](https://owasp.slack.com/messages/project-nest)
 
 [![License](https://img.shields.io/github/license/owasp/nest?color=blue&label=License&style=for-the-badge)](https://github.com/OWASP/Nest/blob/main/LICENSE) [![Last Commit](https://img.shields.io/github/last-commit/owasp/nest/main?color=blue&style=for-the-badge&label=Last%20commit)](https://github.com/OWASP/Nest/commits/main/) [![Contributors](https://img.shields.io/github/contributors/owasp/nest?style=for-the-badge&label=Contributors&color=blue)](https://github.com/OWASP/Nest/graphs/contributors)
 

README.md

@@ -0,0 +1,56 @@
+"""Decorator for API Cache."""
+
+from functools import wraps
+from http import HTTPStatus
+
+from django.conf import settings
+from django.core.cache import cache
+from django.http import HttpRequest
+
+
+def generate_key(
+    request: HttpRequest,
+    prefix: str,
+):
+    """Generate a cache key for a request."""
+    return f"{prefix}:{request.get_full_path()}"
+
+
+def cache_response(
+    ttl: int | None = None,
+    prefix: str | None = None,
+):
+    """Cache API responses for GET and HEAD requests.
+
+    Args:
+        ttl (int): The time-to-live for the cache entry in seconds.
+        prefix (str): A prefix for the cache key.
+
+    """
+    if ttl is None:
+        ttl = settings.API_CACHE_TIME_SECONDS
+
+    if prefix is None:
+        prefix = settings.API_CACHE_PREFIX
+
+    def decorator(view_func):
+        @wraps(view_func)
+        def _wrapper(request, *args, **kwargs):
+            if request.method not in ("GET", "HEAD"):
+                return view_func(request, *args, **kwargs)
+
+            cache_key = generate_key(
+                request=request,
+                prefix=prefix,
+            )
+            if response := cache.get(cache_key):
+                return response
+
+            response = view_func(request, *args, **kwargs)
+            if response.status_code == HTTPStatus.OK:
+                cache.set(cache_key, response, timeout=ttl)
+            return response
+
+        return _wrapper
+
+    return decorator

backend/apps/api/decorators/__init__.py

@@ -4,14 +4,13 @@
 from http import HTTPStatus
 from typing import Literal
 
-from django.conf import settings
 from django.http import HttpRequest
-from django.views.decorators.cache import cache_page
 from ninja import Field, FilterSchema, Path, Query, Schema
 from ninja.decorators import decorate_view
 from ninja.pagination import RouterPaginated
 from ninja.responses import Response
 
+from apps.api.decorators.cache import cache_response
 from apps.owasp.models.chapter import Chapter as ChapterModel
 
 router = RouterPaginated(tags=["Chapters"])
@@ -61,7 +60,7 @@ class ChapterFilter(FilterSchema):
     response=list[Chapter],
     summary="List chapters",
 )
-@decorate_view(cache_page(settings.API_CACHE_TIME_SECONDS))
+@decorate_view(cache_response())
 def list_chapters(
     request: HttpRequest,
     filters: ChapterFilter = Query(...),
@@ -84,6 +83,7 @@ def list_chapters(
     },
     summary="Get chapter",
 )
+@decorate_view(cache_response())
 def get_chapter(
     request: HttpRequest,
     chapter_id: str = Path(example="London"),

backend/apps/api/decorators/cache.py

@@ -4,14 +4,13 @@
 from http import HTTPStatus
 from typing import Literal
 
-from django.conf import settings
 from django.http import HttpRequest
-from django.views.decorators.cache import cache_page
 from ninja import Path, Query, Schema
 from ninja.decorators import decorate_view
 from ninja.pagination import RouterPaginated
 from ninja.responses import Response
 
+from apps.api.decorators.cache import cache_response
 from apps.owasp.models.committee import Committee as CommitteeModel
 
 router = RouterPaginated(tags=["Committees"])
@@ -54,7 +53,7 @@ class CommitteeError(Schema):
     response=list[Committee],
     summary="List committees",
 )
-@decorate_view(cache_page(settings.API_CACHE_TIME_SECONDS))
+@decorate_view(cache_response())
 def list_committees(
     request: HttpRequest,
     ordering: Literal["created_at", "-created_at", "updated_at", "-updated_at"] | None = Query(
@@ -76,6 +75,7 @@ def list_committees(
     },
     summary="Get committee",
 )
+@decorate_view(cache_response())
 def get_chapter(
     request: HttpRequest,
     committee_id: str = Path(example="project"),