rommapp/romm
1
0
Fork 0
mirror of https://github.com/rommapp/romm.git synced 2026-02-18 00:27:41 +01:00
Code Issues Packages Projects Releases Wiki Activity
8,680 Commits 29 Branches 168 Tags
fe5b831afc6cb08c41da217410b07af2fbdfefe6
Commit Graph

52 Commits

Author SHA1 Message Date
dependabot[bot]
bcdb1a1c74 Bump pillow from 10.4.0 to 12.1.1 
Bumps [pillow](https://github.com/python-pillow/Pillow) from 10.4.0 to 12.1.1.
- [Release notes](https://github.com/python-pillow/Pillow/releases)
- [Changelog](https://github.com/python-pillow/Pillow/blob/main/CHANGES.rst)
- [Commits](https://github.com/python-pillow/Pillow/compare/10.4.0...12.1.1)

---
updated-dependencies:
- dependency-name: pillow
  dependency-version: 12.1.1
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-02-11 16:07:03 +00:00
dependabot[bot]
8f3b22d39a Bump cryptography from 45.0.5 to 46.0.5 
Bumps [cryptography](https://github.com/pyca/cryptography) from 45.0.5 to 46.0.5.
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/pyca/cryptography/compare/45.0.5...46.0.5)

---
updated-dependencies:
- dependency-name: cryptography
  dependency-version: 46.0.5
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-02-11 02:25:30 +00:00
dependabot[bot]
55b524d1ea Bump protobuf from 6.31.1 to 6.33.5 
Bumps [protobuf](https://github.com/protocolbuffers/protobuf) from 6.31.1 to 6.33.5.
- [Release notes](https://github.com/protocolbuffers/protobuf/releases)
- [Commits](https://github.com/protocolbuffers/protobuf/commits)

---
updated-dependencies:
- dependency-name: protobuf
  dependency-version: 6.33.5
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-02-03 14:23:27 +00:00
dependabot[bot]
45a5a68c4c Bump python-multipart from 0.0.20 to 0.0.22 
Bumps [python-multipart](https://github.com/Kludex/python-multipart) from 0.0.20 to 0.0.22.
- [Release notes](https://github.com/Kludex/python-multipart/releases)
- [Changelog](https://github.com/Kludex/python-multipart/blob/master/CHANGELOG.md)
- [Commits](https://github.com/Kludex/python-multipart/compare/0.0.20...0.0.22)

---
updated-dependencies:
- dependency-name: python-multipart
  dependency-version: 0.0.22
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-01-27 00:00:11 +00:00
Georges-Antoine Assi
cb5e598509 Merge pull request #2912 from rommapp/dependabot/uv/python-socketio-5.14.0 
Bump python-socketio from 5.11.1 to 5.14.0
 2026-01-17 17:12:34 -05:00
dependabot[bot]
e38da5b8fa Bump python-socketio from 5.11.1 to 5.14.0 
Bumps [python-socketio](https://github.com/miguelgrinberg/python-socketio) from 5.11.1 to 5.14.0.
- [Release notes](https://github.com/miguelgrinberg/python-socketio/releases)
- [Changelog](https://github.com/miguelgrinberg/python-socketio/blob/main/CHANGES.md)
- [Commits](https://github.com/miguelgrinberg/python-socketio/compare/v5.11.1...v5.14.0)

---
updated-dependencies:
- dependency-name: python-socketio
  dependency-version: 5.14.0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-01-17 20:47:14 +00:00
Georges-Antoine Assi
736fe79539 Merge pull request #2911 from rommapp/dependabot/uv/aiohttp-3.13.3 
Bump aiohttp from 3.12.14 to 3.13.3
 2026-01-17 15:47:08 -05:00
Georges-Antoine Assi
599780a201 Merge pull request #2910 from rommapp/dependabot/uv/urllib3-2.6.3 
Bump urllib3 from 2.6.2 to 2.6.3
 2026-01-17 15:46:31 -05:00
dependabot[bot]
34ba3ea9dc Bump aiohttp from 3.12.14 to 3.13.3 
---
updated-dependencies:
- dependency-name: aiohttp
  dependency-version: 3.13.3
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-01-17 16:59:01 +00:00
dependabot[bot]
a454345081 Bump urllib3 from 2.6.2 to 2.6.3 
Bumps [urllib3](https://github.com/urllib3/urllib3) from 2.6.2 to 2.6.3.
- [Release notes](https://github.com/urllib3/urllib3/releases)
- [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst)
- [Commits](https://github.com/urllib3/urllib3/compare/2.6.2...2.6.3)

---
updated-dependencies:
- dependency-name: urllib3
  dependency-version: 2.6.3
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-01-17 16:58:50 +00:00
dependabot[bot]
c20a0f5aa9 Bump authlib from 1.6.5 to 1.6.6 
Bumps [authlib](https://github.com/authlib/authlib) from 1.6.5 to 1.6.6.
- [Release notes](https://github.com/authlib/authlib/releases)
- [Changelog](https://github.com/authlib/authlib/blob/main/docs/changelog.rst)
- [Commits](https://github.com/authlib/authlib/compare/v1.6.5...v1.6.6)

---
updated-dependencies:
- dependency-name: authlib
  dependency-version: 1.6.6
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-01-17 16:58:41 +00:00
Michael Manganiello
47c6f4a06b misc: Configure and run deptry (#2859) 
`deptry` [1] is a tool to check for unused and missing dependencies in
Python projects.

By running it, we already found that `pydantic` should be added as a
direct dependency, that `types-*` packages can be moved to the `dev`
group, and that `user-agents` is no longer used and can be removed.

Ideally, a future PR can include the `trunk` related configuration to
run `deptry` automatically.

[1] https://deptry.com/
 2026-01-03 19:33:40 -03:00
Georges-Antoine Assi
d86c2d25d2 bump urllib3 2025-12-15 18:15:55 -05:00
Georges-Antoine Assi
307a3f3dc3 bump joserfc to 1.3.5 2025-12-08 10:13:55 -05:00
Georges-Antoine Assi
6a1a344ba2 add tests for middlewares 2025-11-17 23:40:00 -05:00
Georges-Antoine Assi
551ff72a8a implement csrf middleware directly in repo 2025-11-17 21:12:29 -05:00
Georges-Antoine Assi
c79e2f14ad bump starlette to 0.49.1 2025-11-10 15:56:18 -05:00
Georges-Antoine Assi
c37ea7f923 bump authlib to 1.6.5 2025-10-20 08:47:24 -04:00
Georges-Antoine Assi
bf85a89265 set jose lock version correctly 2025-10-06 10:03:55 -04:00
Georges-Antoine Assi
9a31135643 bump joserfc to 1.3.4 2025-10-06 09:20:01 -04:00
Georges-Antoine Assi
08bbb92e3c bump authlib to 1.6 2025-09-29 08:14:44 -04:00
Georges-Antoine Assi
347767e437 Update joserfc to 1.3 to fix CVA 2025-09-08 11:56:50 -04:00
Michael Manganiello
7b1cd8a079 misc: Allow minor upgrades for backend dependencies 2025-09-04 23:31:57 -03:00
Michael Manganiello
652df5d4cd feat: Add OpenTelemetry integration for API service 
This change introduces OpenTelemetry dependencies, and uses
`opentelemetry-instrument` auto-instrumentation to allow users to
configure OpenTelemetry settings via environment variables [1].

The only custom environment variable added is
`OTEL_SERVICE_NAME_PREFIX`, which allows users to set a prefix to the
service names included by RomM to differentiate between `api`, `worker`,
and `watcher` services.

The instrumentation of RQ workers and file watcher will be added in
subsequent pull requests.

[1] https://opentelemetry.io/docs/specs/otel/configuration/sdk-environment-variables/
 2025-08-12 09:18:59 -03:00
Georges-Antoine Assi
69079b2a90 Merge branch 'master' into find-best-match 2025-08-08 16:55:39 -04:00
Georges-Antoine Assi
659a3eb104 use jaro-winkler algo 2025-08-08 16:54:26 -04:00
Michael Manganiello
26177eb95e misc: Remove indirect dependency freezegun 
Update `rq-scheduler` fork to remove the unnecessary dependency on
`freezegun`.
 2025-08-08 11:37:49 -03:00
Georges-Antoine Assi
de42333f2f Merge pull request #2232 from rommapp/native-7z-parse 
Use native 7z to extract files and calculate hashes
 2025-08-08 09:23:29 -04:00
Georges-Antoine Assi
b247a5c5bb small tweaks 2025-08-07 17:39:57 -04:00
Michael Manganiello
76db0ab98c feat: Migrate watcher to use watchfiles library 
The `watchfiles` library supports event batching, which allows us to
process multiple filesystem changes in a single run.

This change also avoids database calls in the watcher as much as
possible.
 2025-08-07 13:28:49 -03:00
Michael Manganiello
1e6bfffe92 Merge pull request #2229 from rommapp/misc/move-pytest-cov-to-test-extra 
misc: Move pytest-cov dependency to test extra
 2025-08-07 12:45:33 -03:00
Georges-Antoine Assi
a90bc75b92 Merge branch 'master' into romm-2142 2025-08-07 10:34:19 -04:00
Georges-Antoine Assi
00c9d740c7 Merge pull request #2227 from rommapp/worker-native-process 
Migrate worker to native rq process
 2025-08-07 10:04:21 -04:00
Michael Manganiello
0f8d0ffecd misc: Move pytest-cov dependency to test extra 2025-08-07 11:00:48 -03:00
Georges-Antoine Assi
836e7358c2 fix issues from code review 2025-08-07 09:34:43 -04:00
Michael Manganiello
097818d560 misc: Replace emoji dependency with constants 
The `emoji` library has been removed, in favor of using constants for
the few emojis used in the codebase. This reduces memory usage, and
avoids calling `emojize` for Python to discover where to replace emojis
in pre-defined strings.
 2025-08-07 09:50:14 -03:00
Michael Manganiello
5dcc1bd31c feat: Migrate scheduler to native RQ process 
This change replaces our custom `scheduler.py` script with the
`rqscheduler` command, allowing us to run the RQ scheduler as a
separate, low-memory process, by avoiding the need to maintain
the Python app in memory.

* Remove `scheduler.py` script.
* Move initialization of scheduled tasks to `worker.py`.
* Update `docker/init_scripts/init` to start the `rqscheduler`
  command instead of the custom script.
* Fix scheduled tasks' `func` paths to the new project structure.
* Temporarily use a fork of `rq-scheduler` to support
  username and SSL settings in the `rqscheduler` command.
 2025-08-06 19:13:12 -03:00
Georges-Antoine Assi
eb6498da61 custom similarity implementation 2025-08-06 10:27:04 -04:00
Georges-Antoine Assi
e4d46f3e1a upgrade starlette to 0.47.2 2025-07-24 21:55:09 -04:00
Georges-Antoine Assi
d6e80526fc bump joserfc 2025-07-19 21:25:24 -04:00
Georges-Antoine Assi
b852be258c bump uv to 3.12.14 2025-07-15 13:02:46 -04:00
zurdi
dbe2566fe8 feat: integrate Levenshtein distance for improved fuzzy matching in SGDBBaseHandler 2025-07-15 09:31:04 +00:00
Michael Manganiello
cd9a6e60a3 misc: Upgrade FastAPI to v0.116 
The latest minor version `0.116` of FastAPI changes the `standard` extra
to include extra dependencies to deploy to FastAPI Cloud, which we don't
need.

This change moves to the new `standard-no-fastapi-cloud-cli` extra,
which maintains the previous set of dependencies.
 2025-07-12 13:31:22 -03:00
Michael Manganiello
a89028d7e4 misc: Upgrade py7zr to v1.0.0 2025-07-12 13:20:22 -03:00
Michael Manganiello
f1474582b9 fix: watchdog: Only subscribe to relevant filesystem events 
The `watchdog` observer supports filtering events based on their type,
so unwanted events don't get dispatched.
 2025-07-07 00:35:42 -03:00
Georges-Antoine Assi
b797e63fdf augment pytest with coverage 2025-07-05 23:20:52 -04:00
Georges-Antoine Assi
13b6fe2157 add test for updaing launchbox data 2025-07-05 22:04:03 -04:00
Georges-Antoine Assi
d2cd8270b3 start work on code coverage 2025-07-05 19:17:40 -04:00
Michael Manganiello
ea9def4b85 misc: Replace deprecated uvicorn.workers with uvicorn-worker 
According to the `uvicorn` docs [1], the `uvicorn.workers.UvicornWorker`
class is deprecated and replaced by the `uvicorn-worker` package [2].

[1] https://www.uvicorn.org/deployment/#gunicorn
[2] https://github.com/Kludex/uvicorn-worker
 2025-07-05 12:59:49 -03:00
Michael Manganiello
2a0c328771 misc: Remove Python dependencies not being directly used 
We can see in the `uv.lock` changes that we aren't actually removing
anything, but as these dependencies are not being directly accessed,
it's better to rely on direct dependencies only, in case they change
in the future and these indirect dependencies are no longer needed.
 2025-07-05 00:11:17 -03:00