2025.06.26
·
1178 commits
to master
since this release
This week's push hero is @KevinMind
Previous Release: 2025.06.12
Blockers:
Cherry-picks:
Before we push:
Before we start:
Before we promote:
After we're done:
run ./manage auto_resolve_reports (no rush)
Addons-Frontend Changelog:
mozilla/addons-frontend@2025.06.12...2025.06.26
Addons Server Changelog:
What's Changed
Notable things shipping
- Replace twitter links with bluesky by @diox in #23561
- Put add-on hard-deletion for old deleted users behind a waffle switch by @diox in #23550
- Add auto_resolve_reports command to run on reviewer tools backlog by @eviljeff in #23560
- Reset user sessions when users are banned by @diox in #23562
- Expose data collection permissions in API by @diox in #23581
- define Config keys in constants, with safeguards by @eviljeff in #23565
- Only hold version rejections for 2nd level approval if they would lead to the listing being unavailable by @diox in #23589
- Don't add NHR for a version we couldn't auto-approve if it's waiting for 2nd level approval by @diox in #23583
- Lock down github action permissions by @KevinMind in #23566
- Use commit sha as ref because commit message is too unpredictable by @KevinMind in #23602
- Build policy rendering with placeholder values as django form fields by @eviljeff in #23582
- Include policy text in stakeholder email (if reviewer tools uses policies) by @eviljeff in #23607
- Refactor CI workflow: Remove unnecessary Git step and update job names and conditions for builds by @KevinMind in #23606
- Update draft_release.yml by @KevinMind in #23611
- exclude 2nd level approval requeued jobs from being auto resolved by @eviljeff in #23603
Dependendabots
- Bump addons-linter from 7.14.0 to 7.15.0 by @dependabot in #23593
- Bump protobuf from 4.25.6 to 4.25.8 in /requirements by @dependabot in #23518
- Bump freezegun from 1.5.1 to 1.5.2 in /requirements by @dependabot in #23501
- Bump pytest-xdist from 3.6.1 to 3.7.0 in /requirements by @dependabot in #23508
- Bump yara-python from 4.5.2 to 4.5.4 in /requirements by @dependabot in #23513
- Bump cryptography from 44.0.2 to 45.0.4 in /requirements by @dependabot in #23558
- Bump mozilla/autograph from 7.3.6 to 7.5.0 by @dependabot in #23502
- Bump watchdog[watchmedo] from 3.0.0 to 6.0.0 in /requirements by @dependabot in #22815
- Bump python from
31a416dto0175d8fby @dependabot in #23552 - Bump jsonschema from 4.23.0 to 4.24.0 in /requirements by @dependabot in #23507
- Bump drf-spectacular-sidecar from 2024.7.1 to 2025.6.1 in /requirements by @dependabot in #23525
- Bump uritemplate from 4.1.1 to 4.2.0 in /requirements by @dependabot in #23535
- Bump @babel/preset-env from 7.26.9 to 7.27.2 by @dependabot in #23428
- Bump the celery group across 1 directory with 2 updates by @dependabot in #23288
- Bump the google group across 1 directory with 5 updates by @dependabot in #23598
- Bump sentry-sdk from 2.23.1 to 2.30.0 in /requirements by @dependabot in #23571
- Bump eslint-config-prettier from 9.1.0 to 10.1.5 by @dependabot in #23436
- Bump referencing from 0.35.1 to 0.36.2 in /requirements by @dependabot in #23203
- Bump exceptiongroup from 1.2.2 to 1.3.0 in /requirements by @dependabot in #23447
- Bump pluggy from 1.5.0 to 1.6.0 in /requirements by @dependabot in #23463
- Bump elasticsearch/elasticsearch from 8.17.4 to 8.18.2 by @dependabot in #23531
Full Changelog: 2025.06.12...2025.06.26
Contributors
diox, eviljeff, and 2 other contributors