Merge dev into main #104

chore: cargo deps added to dependabot

Bumps [tonic](https://github.com/hyperium/tonic) from 0.9.2 to 0.10.2. - [Changelog](https://github.com/hyperium/tonic/blob/master/CHANGELOG.md) - [Commits](hyperium/tonic@v0.9.2...v0.10.2) --- updated-dependencies: - dependency-name: tonic dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [sqlx](https://github.com/launchbadge/sqlx) from 0.7.0 to 0.7.2. - [Changelog](https://github.com/launchbadge/sqlx/blob/main/CHANGELOG.md) - [Commits](https://github.com/launchbadge/sqlx/commits) --- updated-dependencies: - dependency-name: sqlx dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [prost](https://github.com/tokio-rs/prost) from 0.11.9 to 0.12.1. - [Release notes](https://github.com/tokio-rs/prost/releases) - [Commits](tokio-rs/prost@v0.11.9...v0.12.1) --- updated-dependencies: - dependency-name: prost dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [tracing](https://github.com/tokio-rs/tracing) from 0.1.37 to 0.1.40. - [Release notes](https://github.com/tokio-rs/tracing/releases) - [Commits](tokio-rs/tracing@tracing-0.1.37...tracing-0.1.40) --- updated-dependencies: - dependency-name: tracing dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [thiserror](https://github.com/dtolnay/thiserror) from 1.0.40 to 1.0.50. - [Release notes](https://github.com/dtolnay/thiserror/releases) - [Commits](dtolnay/thiserror@1.0.40...1.0.50) --- updated-dependencies: - dependency-name: thiserror dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

fix(deps) align sibling deps versions

fix(main): make use of config log-level value

Bumps [http](https://github.com/hyperium/http) from 0.2.9 to 0.2.11. - [Release notes](https://github.com/hyperium/http/releases) - [Changelog](https://github.com/hyperium/http/blob/v0.2.11/CHANGELOG.md) - [Commits](hyperium/http@v0.2.9...v0.2.11) --- updated-dependencies: - dependency-name: http dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [serde](https://github.com/serde-rs/serde) from 1.0.166 to 1.0.192. - [Release notes](https://github.com/serde-rs/serde/releases) - [Commits](serde-rs/serde@v1.0.166...v1.0.192) --- updated-dependencies: - dependency-name: serde dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

feat(rock): add migrations dump

feat: add jira sync action

Bumps [http](https://github.com/hyperium/http) from 0.2.11 to 1.0.0. - [Release notes](https://github.com/hyperium/http/releases) - [Changelog](https://github.com/hyperium/http/blob/master/CHANGELOG.md) - [Commits](hyperium/http@v0.2.11...v1.0.0) --- updated-dependencies: - dependency-name: http dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>

build(deps): bump http from 0.2.11 to 1.0.0

Bumps [prost](https://github.com/tokio-rs/prost) from 0.12.1 to 0.12.3. - [Release notes](https://github.com/tokio-rs/prost/releases) - [Commits](tokio-rs/prost@v0.12.1...v0.12.3) --- updated-dependencies: - dependency-name: prost dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

build(deps): bump prost from 0.12.1 to 0.12.3

Bumps [futures](https://github.com/rust-lang/futures-rs) from 0.3.28 to 0.3.29. - [Release notes](https://github.com/rust-lang/futures-rs/releases) - [Changelog](https://github.com/rust-lang/futures-rs/blob/master/CHANGELOG.md) - [Commits](rust-lang/futures-rs@0.3.28...0.3.29) --- updated-dependencies: - dependency-name: futures dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

build(deps): bump futures from 0.3.28 to 0.3.29

Bumps [tracing-subscriber](https://github.com/tokio-rs/tracing) from 0.3.17 to 0.3.18. - [Release notes](https://github.com/tokio-rs/tracing/releases) - [Commits](tokio-rs/tracing@tracing-subscriber-0.3.17...tracing-subscriber-0.3.18) --- updated-dependencies: - dependency-name: tracing-subscriber dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

…r-0.3.18 build(deps): bump tracing-subscriber from 0.3.17 to 0.3.18

feat: getChart

Bumps [once_cell](https://github.com/matklad/once_cell) from 1.18.0 to 1.19.0. - [Changelog](https://github.com/matklad/once_cell/blob/master/CHANGELOG.md) - [Commits](matklad/once_cell@v1.18.0...v1.19.0) --- updated-dependencies: - dependency-name: once_cell dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

build(deps): bump once_cell from 1.18.0 to 1.19.0

Bumps [prost-types](https://github.com/tokio-rs/prost) from 0.12.1 to 0.12.3. - [Release notes](https://github.com/tokio-rs/prost/releases) - [Commits](tokio-rs/prost@v0.12.1...v0.12.3) --- updated-dependencies: - dependency-name: prost-types dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

build(deps): bump prost-types from 0.12.1 to 0.12.3

Bumps [time](https://github.com/time-rs/time) from 0.3.22 to 0.3.31. - [Release notes](https://github.com/time-rs/time/releases) - [Changelog](https://github.com/time-rs/time/blob/main/CHANGELOG.md) - [Commits](time-rs/time@v0.3.22...v0.3.31) --- updated-dependencies: - dependency-name: time dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

build(deps): bump time from 0.3.22 to 0.3.31

Bumps [serde](https://github.com/serde-rs/serde) from 1.0.192 to 1.0.195. - [Release notes](https://github.com/serde-rs/serde/releases) - [Commits](serde-rs/serde@v1.0.192...v1.0.195) --- updated-dependencies: - dependency-name: serde dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

build(deps): bump serde from 1.0.192 to 1.0.195

Bumps [futures](https://github.com/rust-lang/futures-rs) from 0.3.29 to 0.3.30. - [Release notes](https://github.com/rust-lang/futures-rs/releases) - [Changelog](https://github.com/rust-lang/futures-rs/blob/master/CHANGELOG.md) - [Commits](rust-lang/futures-rs@0.3.29...0.3.30) --- updated-dependencies: - dependency-name: futures dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

build(deps): bump futures from 0.3.29 to 0.3.30

Bumps [sqlx](https://github.com/launchbadge/sqlx) from 0.7.2 to 0.7.3. - [Changelog](https://github.com/launchbadge/sqlx/blob/main/CHANGELOG.md) - [Commits](https://github.com/launchbadge/sqlx/commits/v0.7.3) --- updated-dependencies: - dependency-name: sqlx dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

build(deps): bump sqlx from 0.7.2 to 0.7.3

Bumps [reqwest](https://github.com/seanmonstar/reqwest) from 0.11.18 to 0.11.23. - [Release notes](https://github.com/seanmonstar/reqwest/releases) - [Changelog](https://github.com/seanmonstar/reqwest/blob/master/CHANGELOG.md) - [Commits](seanmonstar/reqwest@v0.11.18...v0.11.23) --- updated-dependencies: - dependency-name: reqwest dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

build(deps): bump reqwest from 0.11.18 to 0.11.23

Bumps [thiserror](https://github.com/dtolnay/thiserror) from 1.0.50 to 1.0.56. - [Release notes](https://github.com/dtolnay/thiserror/releases) - [Commits](dtolnay/thiserror@1.0.50...1.0.56) --- updated-dependencies: - dependency-name: thiserror dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

build(deps): bump thiserror from 1.0.50 to 1.0.56

- Adjust method instrumentation span to debug verbosity - Separate service log verbosity from RUST_LOG so dependency logging and service logging can be adjusted independently

* Document dependencies * add bits to manifest * clean up/unify imports and mods * Document app * Fix clippy warning in test helpers * Fix warnings on generated files * Add top-level comment for app mod * Add basic docs to protobuf generated modules * comment -> intra-doc link * Feature documentation * Documentation for utils * docs/clean feedback * refactor/unify naming and doc language * cleanup/O->o * cleanup/..->. * docs/clarify user * fix/doc typos * refactor/get_rating->rating

If there are no votes for a snap_id then a default VoteSummary should be returned. Ideally we'd be able to validate if the id maps to a real snap, but the service is not connected to the snap store or a local instance of snapd so we cannot do that check.

Most debs had either a minor or patch version bumps, however, hyper was deliberately skipped. hyper 1.0 was released in Dec 2023 with breaking changes. The issue is that other deps have not caught up to hyper's 1.0 and so we can't bump them until they do, or we have time to explore a bigger refactor.

Bumps [serde](https://github.com/serde-rs/serde) from 1.0.195 to 1.0.196. - [Release notes](https://github.com/serde-rs/serde/releases) - [Commits](serde-rs/serde@v1.0.195...v1.0.196) --- updated-dependencies: - dependency-name: serde dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

build(deps): bump serde from 1.0.195 to 1.0.196

Bumps [time](https://github.com/time-rs/time) from 0.3.31 to 0.3.34. - [Release notes](https://github.com/time-rs/time/releases) - [Changelog](https://github.com/time-rs/time/blob/main/CHANGELOG.md) - [Commits](time-rs/time@v0.3.31...v0.3.34) --- updated-dependencies: - dependency-name: time dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

build(deps): bump time from 0.3.31 to 0.3.34

Bumps [tokio](https://github.com/tokio-rs/tokio) from 1.35.1 to 1.36.0. - [Release notes](https://github.com/tokio-rs/tokio/releases) - [Commits](tokio-rs/tokio@tokio-1.35.1...tokio-1.36.0) --- updated-dependencies: - dependency-name: tokio dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

build(deps): bump tokio from 1.35.1 to 1.36.0

Bumps [reqwest](https://github.com/seanmonstar/reqwest) from 0.11.23 to 0.11.24. - [Release notes](https://github.com/seanmonstar/reqwest/releases) - [Changelog](https://github.com/seanmonstar/reqwest/blob/master/CHANGELOG.md) - [Commits](seanmonstar/reqwest@v0.11.23...v0.11.24) --- updated-dependencies: - dependency-name: reqwest dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

build(deps): bump reqwest from 0.11.23 to 0.11.24

Bumps [tonic-build](https://github.com/hyperium/tonic) from 0.10.2 to 0.11.0. - [Changelog](https://github.com/hyperium/tonic/blob/master/CHANGELOG.md) - [Commits](hyperium/tonic@v0.10.2...v0.11.0) --- updated-dependencies: - dependency-name: tonic-build dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

build(deps): bump tonic-build from 0.10.2 to 0.11.0

Bumps [thiserror](https://github.com/dtolnay/thiserror) from 1.0.56 to 1.0.57. - [Release notes](https://github.com/dtolnay/thiserror/releases) - [Commits](dtolnay/thiserror@1.0.56...1.0.57) --- updated-dependencies: - dependency-name: thiserror dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

build(deps): bump thiserror from 1.0.56 to 1.0.57

The snap hasn't been updated since 2021 and doesn't allow since stabilized features like `optional`.

Move Github Actions to `apt` version of protoc

fix: revert example.env log level to info

This foregos a SQL enum in favor of constraining the input to the range of the protobuf enum, this allows the same idea as an enum but works around some limitations with `prost` using `#[repr(i32)]` on its enums which messes with `sqlx`'s derives.

Expose endpoint for category filtering

This makes it much more ergonomic to work with a checked in `Cargo.lock` by automatically preferring the new version when merge conflicts arise (i.e. any time you change a dependency)

Migrate tests to cucumber

Signed-off-by: Tim Holmes-Mitra <tim.holmes-mitra@canonical.com>

Builds the service as a docker image and upload it to ghcr.io. We want to use a rock in the future but using a rocks right now will slow our progress. I've refined the check jobs to include cargo audit and clippy and make their output available in github's ui. In time we can evolve this to trigger another action (like create an issue for a security vulnerability).

When we're confident in the versioning of a toolchain or base our strategy is to use the latest or stable tag. Added `DEBIAN_FRONTEND=noninteractive` to docker layer build logic to avoid problemactic edge cases.

Turns out `ubuntu-latest` is also Jammy, whose `protobuf-compiler` version is too low to use the features that are no longer experimental on later releases. So we need the experimental flag.

It's redundant, it's a required dependency of `protobuf-compiler`.

Fixes #79

Miscellaneous fix grab bag

Currently, tests use `init_tracing` for prettier logging, but this conflicts with `Infrastructure`, which initializes logging inside itself.

REST is going to require admin authentication, instead of the JWT token signing we do now just for valid client hashes. So we need to move the authentication to a more reusable form. This has a couple incidental changes like introducing `secrecy` which lets us shred secrets in memory when they go out of scope. Minor benefit, but I added it for the password secrets so may as well use it for JWT too.

Since the authenticator got moved out of GRPC into its own thing, the two servers both live alone in a module folder, so just move them up a level because it's cleaner.

Add Rest endpoints

Bumps [reqwest](https://github.com/seanmonstar/reqwest) from 0.11.24 to 0.11.26. - [Release notes](https://github.com/seanmonstar/reqwest/releases) - [Changelog](https://github.com/seanmonstar/reqwest/blob/master/CHANGELOG.md) - [Commits](seanmonstar/reqwest@v0.11.24...v0.11.26) --- updated-dependencies: - dependency-name: reqwest dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [actions/checkout](https://github.com/actions/checkout) from 3 to 4. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v3...v4) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [strum](https://github.com/Peternator7/strum) from 0.26.1 to 0.26.2. - [Release notes](https://github.com/Peternator7/strum/releases) - [Changelog](https://github.com/Peternator7/strum/blob/master/CHANGELOG.md) - [Commits](https://github.com/Peternator7/strum/commits) --- updated-dependencies: - dependency-name: strum dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

build(deps): bump reqwest from 0.11.24 to 0.11.26

…checkout-4 build(deps): bump actions/checkout from 3 to 4

build(deps): bump strum from 0.26.1 to 0.26.2

Commits on Nov 23, 2023

feat: updating chart protos

matthew-hagemann committed Nov 23, 2023

Configuration menu

View commit details

Copy full SHA for e845067

Browse repository at this point

Copy the full SHA

e845067 View commit details

Browse the repository at this point in the history

Commits on Dec 7, 2023

style: import cleanup

matthew-hagemann committed Dec 7, 2023

Configuration menu

View commit details

Copy full SHA for 3cc3073

Browse repository at this point

Copy the full SHA

3cc3073 View commit details

Browse the repository at this point in the history

Merge dev into main #104

Merge dev into main #104

Commits on Nov 3, 2023

Commits on Nov 8, 2023

Commits on Nov 15, 2023

Commits on Nov 16, 2023

Commits on Nov 17, 2023

Commits on Nov 20, 2023

Commits on Nov 23, 2023

Commits on Nov 24, 2023

Commits on Nov 27, 2023

Commits on Nov 28, 2023

Commits on Dec 6, 2023

Commits on Dec 7, 2023

Commits on Dec 13, 2023

Commits on Jan 8, 2024

Commits on Jan 10, 2024

Commits on Jan 15, 2024

Commits on Jan 18, 2024

Commits on Jan 22, 2024

Commits on Jan 23, 2024

Commits on Jan 24, 2024

Commits on Jan 25, 2024

Commits on Jan 29, 2024

Commits on Jan 30, 2024

Commits on Feb 5, 2024

Commits on Feb 7, 2024

Commits on Feb 12, 2024

Commits on Feb 13, 2024

Commits on Feb 15, 2024

Commits on Feb 19, 2024

Commits on Feb 20, 2024

Commits on Feb 21, 2024

Commits on Feb 22, 2024

Commits on Feb 23, 2024

Commits on Feb 26, 2024

Commits on Feb 27, 2024

Commits on Mar 7, 2024

Commits on Mar 8, 2024

Commits on Mar 13, 2024

Commits on Mar 14, 2024