Skip to content

Dev#1084

Merged
umesh-more-cstk merged 7 commits into
pre-stagefrom
dev
Jun 8, 2026
Merged

Dev#1084
umesh-more-cstk merged 7 commits into
pre-stagefrom
dev

Conversation

@umesh-more-cstk

@umesh-more-cstk umesh-more-cstk commented Jun 8, 2026

Copy link
Copy Markdown
Contributor

🔗 Jira Ticket

Replace with your ticket link — required before requesting review.

MIGRATION-XXXX

📋 PR Type

  • ✨ Feature
  • 🐛 Bug Fix
  • 🔥 Hotfix
  • ♻️ Refactor
  • 🧹 Chore / Dependency Update
  • 📝 Documentation

📝 Description

What changed?

Why?

🧩 Affected Areas

  • api — Node.js backend
  • ui — React frontend
  • upload-api — Upload API server
  • docker / docker-compose
  • CI / GitHub Actions workflows
  • Environment variables / config
  • Other:

🧪 How to Test

Expected result:

📸 Screenshots / Recordings

Before After

🔗 Related PRs / Dependencies

✅ Author Checklist

Complete this before moving the PR out of Draft.

  • Branch follows naming convention: feature/, bugfix/, or hotfix/ + 5–30 lowercase chars
  • Jira ticket linked above
  • Self-reviewed the diff — no debug logs, commented-out code, or TODOs left in
  • .env / example.env updated if new environment variables were added
  • No sensitive credentials or secrets committed
  • Existing tests pass locally (npm test)
  • New tests written (or not applicable — explain why)
  • README.md / docs updated if behaviour changed
  • Talisman pre-push scan passes (no secrets flagged)

👀 Reviewer Notes

Migration v2 · Docs · Issues

yashin4112 and others added 7 commits June 8, 2026 10:38
@yashin4112
fix: prevent stale entry chunk files from clobbering current migratio…
f5070ee 
…n data

API:
- Add clearStaleEntries() to wipe the entries/ subtree before each
  (test) migration run, so orphaned chunk files from previous runs
  can't overwrite current entry data during the update step
- removeEntriesFromDatabase now reads index.json to process only the
  current chunk files, falling back to globbing for legacy data
- field-attacher: use customLogger instead of console.info for content
  type creation logs
- runCli: switch to writeUidMapping util for uid mapping

UI:
- Remove the auto-mapped content mapping merge flow (AutoMappedMergeConfirmModal,
  persistAutoMappedContentMapper, handleUpdateAutoMappedContentMapping,
  shouldPromptShowAutoMappedMerge) and the related Auto-mapped status/pill constants
@yashin4112
test: add unit tests for writeUidMapping utility function
29c3150
@yashin4112
fix: disable file format icon button in LoadFileFormat component to p…
3a5e9f5 
…revent it from editing
@yashin4112
fix: resolve review comments on entry-update, field-attacher, and Sav…
03a3683 
…eChangesModal
@yashin4112
snyk-fix: add path resolution checks in startTestMigration and startM…
3242888 
…igration to prevent path traversal vulnerabilities
@yashin4112
snyk-fix: add destination stack ID sanitization in fieldAttacher to p…
8417273 
…revent path traversal vulnerabilities
@umesh-more-cstk
Merge pull request #1083 from contentstack/bugfix/delta
0b6ff8b 
fix: prevent stale entry chunk files from clobbering current migratio…
@umesh-more-cstk umesh-more-cstk requested a review from a team as a code owner June 8, 2026 08:17
@umesh-more-cstk umesh-more-cstk merged commit 213e534 into pre-stage Jun 8, 2026
9 of 12 checks passed
@github-actions

github-actions Bot commented Jun 8, 2026

Copy link
Copy Markdown

🔒 Security Scan Results

ℹ️ Note: Only vulnerabilities with available fixes (upgrades or patches) are counted toward thresholds.

Check Type Count (with fixes) Without fixes Threshold Result
🔴 Critical Severity 0 0 10 ✅ Passed
🟠 High Severity 15 334 25 ✅ Passed
🟡 Medium Severity 20 3 500 ✅ Passed
🔵 Low Severity 0 0 1000 ✅ Passed

⏱️ SLA Breach Summary

⚠️ Warning: The following vulnerabilities have exceeded their SLA thresholds (days since publication).

Severity Breaches (with fixes) Breaches (no fixes) SLA Threshold (with/no fixes) Status
🔴 Critical 0 0 15 / 30 days ✅ Passed
🟠 High 0 0 30 / 120 days ✅ Passed
🟡 Medium 0 2 90 / 365 days ⚠️ Warning
🔵 Low 0 0 180 / 365 days ✅ Passed

ℹ️ Vulnerabilities Without Available Fixes (Informational Only)

The following vulnerabilities were detected but do not have fixes available (no upgrade or patch). These are excluded from failure thresholds:

  • Critical without fixes: 0
  • High without fixes: 334
  • Medium without fixes: 3
  • Low without fixes: 0

⚠️ BUILD PASSED WITH WARNINGS - SLA breaches detected for issues without available fixes

Consider reviewing these vulnerabilities when fixes become available.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@umesh-more-cstk @yashin4112