- 09 8月, 2023 1 次提交
-
-
由 Andrey Zhavoronkov 提交于
-
- 27 7月, 2023 1 次提交
-
-
由 Andrey Zhavoronkov 提交于
-
- 25 7月, 2023 1 次提交
-
-
由 Kirill Lakhov 提交于
-
- 20 7月, 2023 1 次提交
-
-
由 Andrey Zhavoronkov 提交于
## \[2.5.1\] - 2023-07-19 ### Fixed - Memory leak related to unclosed av container (<https://github.com/opencv/cvat/pull/6501>)
-
- 05 7月, 2023 1 次提交
-
-
由 Andrey Zhavoronkov 提交于
-
- 29 6月, 2023 2 次提交
-
-
由 Roman Donchenko 提交于
The current mitigation approach (resolving the IP address and checking if it's in the private range) is insufficient for a few reasons: * It is susceptible to DNS rebinding (an attacker-controlled DNS name resolving to a public IP address when queried during the check, and to a private IP address afterwards). * It is susceptible to redirect-based attacks (a server with a public address redirecting to a server with a private address). * It is only applied when downloading remote files of tasks (and is not easily reusable). Replace it with an approach based on smokescreen, a proxy that blocks connections to private IP addresses. In addition, use this proxy for webhooks, since they also make requests to untrusted URLs. The benefits of smokescreen are as follows: * It's not susceptible to the problems listed above. * It's configurable, so system administrators can allow certain private IP ranges if necessary. This configurability is exposed via the `SMOKESCREEN_OPTS` environment variable. * It doesn't require much code to use. The drawbacks of smokescreen are: * It's not as clear when the request fails due to smokescreen (compared to manual IP validation). To compensate, make the error message in `_download_data` more verbose. * The smokescreen project seems to be in early development (judging by the 0.0.x version numbers). Still, Stripe itself uses it, so it should be good enough. It's also not very convenient to set up (on account of not providing binaries), so disable it in development environments. Keep the scheme check from `_validate_url`. I don't think this check prevents any attacks (as requests only supports http/https to begin with), but it provides a friendly error message in case the user tries to use an unsupported scheme.
-
由 Andrey Zhavoronkov 提交于
-
- 22 6月, 2023 1 次提交
-
-
由 Andrey Zhavoronkov 提交于
-
- 16 6月, 2023 3 次提交
-
-
由 Andrey Zhavoronkov 提交于
## \[2.4.7] - 2023-06-16 ### Added - \[API\] API Now supports the creation and removal of Ground Truth jobs. (<https://github.com/opencv/cvat/pull/6204>) - \[API\] We've introduced task quality estimation endpoints. (<https://github.com/opencv/cvat/pull/6204>) - \[CLI\] An option to select the organization. (<https://github.com/opencv/cvat/pull/6317>) ### Fixed - Issues with running serverless models for EXIF-rotated images. (<https://github.com/opencv/cvat/pull/6275/>) - File uploading issues when using https configuration. (<https://github.com/opencv/cvat/pull/6308>) - Dataset export error with `outside` property of tracks. (<https://github.com/opencv/cvat/issues/5971>) - Broken logging in the TransT serverless function. (<https://github.com/opencv/cvat/pull/6290>) --------- Co-authored-by: NAnastasia Yasakova <yasakova_anastasiya@mail.ru> Co-authored-by: NMariia Acoca <39969264+mdacoca@users.noreply.github.com> Co-authored-by: NMaxim Zhiltsov <zhiltsov.max35@gmail.com> Co-authored-by: Nklakhov <kirill.9992@gmail.com> Co-authored-by: NRoman Donchenko <roman@cvat.ai> Co-authored-by: NKirill Sizov <kirill.sizov@cvat.ai> Co-authored-by: NBoris Sekachev <boris.sekachev@yandex.ru> Co-authored-by: NPaweł Kotiuk <kotiuk@zohomail.eu> Co-authored-by: NNikita Manovich <nikita@cvat.ai>
-
由 Andrey Zhavoronkov 提交于
-
由 Andrey Zhavoronkov 提交于
-
- 12 6月, 2023 1 次提交
-
-
由 Maxim Zhiltsov 提交于
The server part of #6039 - Added support for Ground Truth jobs in a task - Added support for job creation and removal (only Ground Truth jobs can be created or removed in a task) - Added a component to autocompute quality metrics for a task - Added tests - Fixed https://github.com/opencv/cvat/issues/5971 (both parts - the outside problem and the manifest problem, the manifest part fix is also available in #6216) Co-authored-by: Nklakhov <kirill.9992@gmail.com> Co-authored-by: NRoman Donchenko <roman@cvat.ai> Co-authored-by: NKirill Sizov <kirill.sizov@cvat.ai>
-
- 09 6月, 2023 1 次提交
-
-
由 Andrey Zhavoronkov 提交于
-
- 02 6月, 2023 2 次提交
-
-
由 Andrey Zhavoronkov 提交于
## \[2.4.5] - 2023-06-02 ### Added - Integrated support for sharepoint and cloud storage files, along with directories to be omitted during task creation (server) (<https://github.com/opencv/cvat/pull/6074>) - Enabled task creation with directories from cloud storage or sharepoint (<https://github.com/opencv/cvat/pull/6074>) - Enhanced task creation to support any data type supported by the server by default, from cloud storage without the necessity for the `use_cache` option (<https://github.com/opencv/cvat/pull/6074>) - Added capability for task creation with data from cloud storage without the `use_cache` option (<https://github.com/opencv/cvat/pull/6074>) ### Changed - User can now access resource links from any organization or sandbox, granted it's available to them (<https://github.com/opencv/cvat/pull/5892>) - Cloud storage manifest files have been made optional (<https://github.com/opencv/cvat/pull/6074>) - Updated Django to the 4.2.x version (<https://github.com/opencv/cvat/pull/6122>) - Renamed certain Nuclio functions to adhere to a common naming convention. For instance, `onnx-yolov7` -> `onnx-wongkinyiu-yolov7`, `ultralytics-yolov5` -> `pth-ultralytics-yolov5` (<https://github.com/opencv/cvat/pull/6140>) ### Deprecated - Deprecated the endpoint `/cloudstorages/{id}/content` (<https://github.com/opencv/cvat/pull/6074>) ### Fixed - Fixed the issue of skeletons dumping on created tasks/projects (<https://github.com/opencv/cvat/pull/6157>) - Resolved an issue related to saving annotations for skeleton tracks (<https://github.com/opencv/cvat/pull/6075>) --------- Signed-off-by: Ndependabot[bot] <support@github.com> Co-authored-by: NBoris Sekachev <boris.sekachev@yandex.ru> Co-authored-by: NRoman Donchenko <roman@cvat.ai> Co-authored-by: NMaria Khrustaleva <maya17grd@gmail.com> Co-authored-by: NBoris Sekachev <sekachev.bs@gmail.com> Co-authored-by: NNikita Manovich <nikita@cvat.ai> Co-authored-by: NAnastasia Yasakova <yasakova_anastasiya@mail.ru> Co-authored-by: NSnyk bot <snyk-bot@snyk.io> Co-authored-by: Ndependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: NKirill Sizov <kirill.sizov@cvat.ai> Co-authored-by: NPaweł Kotiuk <kotiuk@zohomail.eu> Co-authored-by: NSK <450723+senthilkumarkj@users.noreply.github.com> Co-authored-by: NKirill Lakhov <kirill.9992@gmail.com>
-
由 Maria Khrustaleva 提交于
Fixed: - wrong location of tmp file when importing job annotations - ```Traceback (most recent call last): File "/home/maya/Documents/cvat/.env/lib/python3.8/site-packages/rq/worker.py", line 795, in work self.execute_job(job, queue) File "/home/maya/Documents/cvat/cvat/rqworker.py", line 37, in execute_job return self.perform_job(*args, **kwargs) File "/home/maya/Documents/cvat/.env/lib/python3.8/site-packages/rq/worker.py", line 1389, in perform_job self.handle_exception(job, *exc_info) File "/home/maya/Documents/cvat/.env/lib/python3.8/site-packages/rq/worker.py", line 1438, in handle_exception fallthrough = handler(job, *exc_info) File "/home/maya/Documents/cvat/cvat/apps/engine/views.py", line 2233, in rq_exception_handler rq_job.exc_info = "".join( AttributeError: can't set attribute ``` Resolves https://github.com/opencv/cvat/issues/5773 Resolves https://github.com/opencv/cvat/issues/5563 - root causes of the issues: - the annotation file was uploaded to the server by tus protocol and rq job was created but no one next requests for checking status were not made. (e.g. user closed the browser tab) - the annotation file was uploaded to the server by tus protocol but rq job has not yet been created (e.g cvat instance restarted) - tasks/projects creation from backups with the same name at the same time by different users Co-authored-by: NRoman Donchenko <roman@cvat.ai> Co-authored-by: NMaxim Zhiltsov <zhiltsov.max35@gmail.com>
-
- 30 5月, 2023 1 次提交
-
-
由 Andrey Zhavoronkov 提交于
-
- 18 5月, 2023 1 次提交
-
-
由 Andrey Zhavoronkov 提交于
-
- 17 5月, 2023 1 次提交
-
-
由 Andrey Zhavoronkov 提交于
This reverts commit 2754504b. <!-- Raise an issue to propose your change (https://github.com/opencv/cvat/issues). It helps to avoid duplication of efforts from multiple independent contributors. Discuss your ideas with maintainers to be sure that changes will be approved and merged. Read the [Contribution guide](https://opencv.github.io/cvat/docs/contributing/). --> <!-- Provide a general summary of your changes in the Title above --> ### Motivation and context <!-- Why is this change required? What problem does it solve? If it fixes an open issue, please link to the issue here. Describe your changes in detail, add screenshots. --> Resolved in https://github.com/docker-library/postgres/issues/1076 ### How has this been tested? <!-- Please describe in detail how you tested your changes. Include details of your testing environment, and the tests you ran to see how your change affects other areas of the code, etc. --> ### Checklist <!-- Go over all the following points, and put an `x` in all the boxes that apply. If an item isn't applicable for some reason, then ~~explicitly strikethrough~~ the whole line. If you don't do that, GitHub will show incorrect progress for the pull request. If you're unsure about any of these, don't hesitate to ask. We're here to help! --> - [x] I submit my changes into the `develop` branch ~~- [ ] I have added a description of my changes into the [CHANGELOG](https://github.com/opencv/cvat/blob/develop/CHANGELOG.md) file~~ ~~- [ ] I have updated the documentation accordingly~~ ~~- [ ] I have added tests to cover my changes~~ ~~- [ ] I have linked related issues (see [GitHub docs]( https://help.github.com/en/github/managing-your-work-on-github/linking-a-pull-request-to-an-issue#linking-a-pull-request-to-an-issue-using-a-keyword))~~ ~~- [ ] I have increased versions of npm packages if it is necessary ([cvat-canvas](https://github.com/opencv/cvat/tree/develop/cvat-canvas#versioning), [cvat-core](https://github.com/opencv/cvat/tree/develop/cvat-core#versioning), [cvat-data](https://github.com/opencv/cvat/tree/develop/cvat-data#versioning) and [cvat-ui](https://github.com/opencv/cvat/tree/develop/cvat-ui#versioning))~~ ### License - [x] I submit _my code changes_ under the same [MIT License]( https://github.com/opencv/cvat/blob/develop/LICENSE) that covers the project. Feel free to contact the maintainers if that's a concern. Co-authored-by: NMaxim Zhiltsov <zhiltsov.max35@gmail.com>
-
- 12 5月, 2023 1 次提交
-
-
由 Kirill Sizov 提交于
-
- 25 4月, 2023 2 次提交
-
-
由 Maxim Zhiltsov 提交于
-
由 Andrey Zhavoronkov 提交于
-
- 19 4月, 2023 1 次提交
-
-
由 Roman Donchenko 提交于
This originally started as a security update for redis-py (see <https://github.com/redis/redis-py/releases/tag/v4.5.3>, <https://github.com/redis/redis-py/releases/tag/v4.5.4>). However, I also had to update other Redis-related components because of incompatibilities. * The old version of fakeredis is not compatible with the redis-py 4.x, so I bumped it too. This also allowed me to remove the six workaround. * redis-py 4.1.0 and newer don't support Redis < 5, so I bumped Redis itself in `docker-compose.yml`. Note that the Helm chart is already using Redis 7.0.x. Obsoletes #5946.
-
- 14 4月, 2023 1 次提交
-
-
由 Andrey Zhavoronkov 提交于
-
- 06 4月, 2023 2 次提交
-
-
由 Andrey Zhavoronkov 提交于
OPA currently logs every request to the console and this results in huge docker log files. I don't think these logs can be useful for enabling docker-level log size limits.
-
由 Nikita Manovich 提交于
-
- 05 4月, 2023 1 次提交
-
-
由 Andrey Zhavoronkov 提交于
-
- 16 3月, 2023 2 次提交
-
-
由 Andrey Zhavoronkov 提交于
-
由 Andrey Zhavoronkov 提交于
-
- 02 3月, 2023 1 次提交
-
-
由 Maria Khrustaleva 提交于
-
- 28 2月, 2023 1 次提交
-
-
由 Andrey Zhavoronkov 提交于
-
- 23 2月, 2023 1 次提交
-
-
由 Maria Khrustaleva 提交于
-
- 21 2月, 2023 1 次提交
-
-
由 Roman Donchenko 提交于
The root process of the container is `/bin/sh`, which ignores the initial `SIGTERM` that Docker sends. So Docker has to wait 10 seconds and then kill everything with `SIGKILL`. Make Grafana itself the root process instead. Grafana handles the `SIGTERM` and shuts down quickly.
-
- 19 2月, 2023 1 次提交
-
-
由 Andrey Zhavoronkov 提交于
-
- 19 1月, 2023 1 次提交
-
-
由 Roman Donchenko 提交于
-
- 18 1月, 2023 1 次提交
-
-
由 ddx-day 提交于
Issue: https://github.com/opencv/cvat/issues/1217 Currently there are a few proposals for SSO authentication to bypass the current user/password login on the UI. By using Django social accounts it is also possible to use SSO on the API, retrieving the security token by passing the code from the OAuth2 workflow. This is an example using Amazon Cognito, but any other social account could also be added. ### Motivation and context Currently CVAT has no functionality to log in with SSO. Other current proposals bypass the current Django framework to add SSO in the UI only, but still use username and password for the API. Using Django social accounts integrates SSO with the API as well, allowing it to be used as an alternative to the username and password, but can also be used together with other SSO frameworks that are UI only. ### How has this been tested? Unit tests for SSO manager in cvat-core and integration test with cvat-sdk for /auth/cognito endpoint. ### Checklist <!-- Go over all the following points, and put an `x` in all the boxes that apply. If an item isn't applicable by a reason then ~~explicitly strikethrough~~ the whole line. If you don't do that github will show an incorrect process for the pull request. If you're unsure about any of these, don't hesitate to ask. We're here to help! --> - [x] I submit my changes into the `develop` branch - [ ] I have added a description of my changes into [CHANGELOG](https://github.com/cvat-ai/cvat/blob/develop/CHANGELOG.md) file - [x] I have updated the [documentation]( https://github.com/cvat-ai/cvat/blob/develop/README.md#documentation) accordingly - [x] I have added tests to cover my changes - [x] I have linked related issues ([read github docs]( https://help.github.com/en/github/managing-your-work-on-github/linking-a-pull-request-to-an-issue#linking-a-pull-request-to-an-issue-using-a-keyword)) - [ ] I have increased versions of npm packages if it is necessary ([cvat-canvas](https://github.com/cvat-ai/cvat/tree/develop/cvat-canvas#versioning), [cvat-core](https://github.com/cvat-ai/cvat/tree/develop/cvat-core#versioning), [cvat-data](https://github.com/cvat-ai/cvat/tree/develop/cvat-data#versioning) and [cvat-ui](https://github.com/cvat-ai/cvat/tree/develop/cvat-ui#versioning)) ### License - [x] I submit _my code changes_ under the same [MIT License]( https://github.com/cvat-ai/cvat/blob/develop/LICENSE) that covers the project. Feel free to contact the maintainers if that's a concern. Co-authored-by: NMelanie Day <mday@EYEDIAGNOSIS.local> Co-authored-by: NMaria Khrustaleva <maria@cvat.ai> Co-authored-by: NNikita Manovich <nikita@cvat.ai>
-
- 07 1月, 2023 1 次提交
-
-
由 Andrey Zhavoronkov 提交于
-
- 29 12月, 2022 2 次提交
-
-
由 Andrey Zhavoronkov 提交于
-
由 Roman Donchenko 提交于
Also, migrate to the version less Compose file format. Compose V1 is EOL: <https://www.docker.com/blog/announcing-compose-v2-general-availability/>.
-
- 28 12月, 2022 1 次提交
-
-
由 Maxim Zhiltsov 提交于
- Added explanatory messages for actions denied for user limits - Fixed few rules and checks - Upgraded OPA version
-
- 17 12月, 2022 1 次提交
-
-
由 Roman Donchenko 提交于
-