Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update fhir-resources dependency #370

Closed
michael-82 opened this issue Sep 20, 2024 · 0 comments · Fixed by #372
Closed

Update fhir-resources dependency #370

michael-82 opened this issue Sep 20, 2024 · 0 comments · Fixed by #372
Labels
security

Comments

@michael-82
Copy link
Collaborator

The currently used version (6.0.1) is vulnerable to https://avd.aquasec.com/nvd/cve-2024-45294
This is fixed since 6.3.23
michael-82 added a commit that referenced this issue Sep 20, 2024
@michael-82
#370 - Update fhir-resources dependency
a8e9e9f 
- update to  6.3.26
@michael-82 michael-82 linked a pull request Sep 20, 2024 that will close this issue
#370 - Update fhir-resources dependency #372
Merged
michael-82 added a commit that referenced this issue Sep 20, 2024
@michael-82
Merge pull request #372 from medizininformatik-initiative/feature/370…
eff7311 
…-update-fhir-resources-dependency

#370 - Update fhir-resources dependency
juliangruendner added a commit that referenced this issue Oct 20, 2024
@juliangruendner @michael-82
Release/v6.0.0 alpha.3 (#383)
fbc5333 
* No issue - bump version

* Bump sq2cql and ontology version

* #288 - Load availability files from file(s) (#364)

#288 - Load availability files from file(s)

* Add Update availability script and example file

* #367 - Sort unavailable criteria to the bottom

- add a function score query that boosts all queries with availability > 0 by 100 in score. It does not make a difference if the availability is 10 or 10000, all are boosted by the same fixed value

* #366 - Builtin swagger doc is broken

- move files back to /v3/api-docs since swagger ui wants to load a config file from there anyways. Supplying a custom config file under another folder did not work
- update springdoc-openapi-starter-webmvc-ui to 2.6.0 so it can handle openapi 3.1.0

* #370 - Update fhir-resources dependency

- update to  6.3.26

* #371 - Update spring boot to 3.3.4

- self-explanatory

* #363 - Add "results" to GET query/{queryId} response

- Add the totalNumberOfPatients from the saved query object back to the response when reading a query
- the demanded queryId from the issue is already present as "id" - so nothing to do here imho

* #376 - Allow Empty Search with filters (#377)

#376 - Allow Empty Search with filters

- Change score modification to add an offset instead of multiplying when availability > 0
- remove the inner "must" part of the bool query when searchterm is empty

* bump ontology version

* No issue - update undertow to 2.3.17.Final to fix CVE-2024-7885

* #380 - Change structure of dse profile_tree and profile details for translations (#381)

* #380 - Change structure of dse profile_tree and profile details for translations

- update ontology to v3.0.0-test.11
- modify DseProfile and Field according to changes in dse profile database entry
- modify DseProfileTreeNode according to changes in profile_tree.json

* Bump ontology version to v3.0.0-alpha and add ne aliases to sq2cql config

* Release v6.0.0-alpha.3

---------

Co-authored-by: Michael Folz <folz@med.uni-frankfurt.de>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
security
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

#370 - Update fhir-resources dependency medizininformatik-initiative/feasibility-backend
1 participant
@michael-82