Skip to content

Commit a79c418

Browse files
marcorosamarcorosa
authored
Merge branch 'develop' into dependabot/uv/backend-agent/python-multipart-0.0.27
2 parents 6cf71ea + 518e112 commit a79c418

14 files changed

Lines changed: 4034 additions & 4028 deletions

File tree

.github/workflows/docker.yml

Lines changed: 6 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -97,14 +97,14 @@ jobs:
9797
uses: docker/setup-buildx-action@v3
9898

9999
- name: Log in to Docker Registry
100-
uses: docker/login-action@v3
100+
uses: docker/login-action@v4
101101
with:
102102
registry: ${{ secrets.DOCKER_REGISTRY_URL }}
103103
username: ${{ secrets.DOCKER_REGISTRY_USERNAME }}
104104
password: ${{ secrets.DOCKER_REGISTRY_TOKEN }}
105105

106106
- name: 🐳 Build and push Backend Docker image
107-
uses: docker/build-push-action@v6
107+
uses: docker/build-push-action@v7
108108
with:
109109
context: ./backend-agent
110110
file: ./backend-agent/Dockerfile
@@ -150,14 +150,14 @@ jobs:
150150
uses: docker/setup-buildx-action@v3
151151

152152
- name: Log in to Docker Registry
153-
uses: docker/login-action@v3
153+
uses: docker/login-action@v4
154154
with:
155155
registry: ${{ secrets.DOCKER_REGISTRY_URL }}
156156
username: ${{ secrets.DOCKER_REGISTRY_USERNAME }}
157157
password: ${{ secrets.DOCKER_REGISTRY_TOKEN }}
158158

159159
- name: 🐳 Build and push Frontend Docker image
160-
uses: docker/build-push-action@v6
160+
uses: docker/build-push-action@v7
161161
with:
162162
context: ./frontend
163163
file: ./frontend/Dockerfile
@@ -213,7 +213,7 @@ jobs:
213213
runs-on: ubuntu-latest
214214
steps:
215215
- name: Set up kubectl
216-
uses: azure/setup-kubectl@v4
216+
uses: azure/setup-kubectl@v5
217217
with:
218218
version: 'latest'
219219

@@ -246,7 +246,7 @@ jobs:
246246
runs-on: ubuntu-latest
247247
steps:
248248
- name: Set up kubectl
249-
uses: azure/setup-kubectl@v4
249+
uses: azure/setup-kubectl@v5
250250
with:
251251
version: 'latest'
252252

.github/workflows/lint-backend.yml

Lines changed: 4 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
name: Lint backend
22

33
on:
4-
pull_request_target:
4+
pull_request:
55
branches:
66
- develop
77
- main
@@ -13,12 +13,14 @@ on:
1313
permissions:
1414
checks: write
1515
contents: read
16-
pull-requests: write
1716

1817
jobs:
1918
lint-backend:
2019
name: Run backend linter
2120
runs-on: ubuntu-latest
21+
permissions:
22+
contents: read
23+
pull-requests: write
2224

2325
steps:
2426
- name: Check out Git repository

.github/workflows/lint-frontend.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
name: Lint frontend
22

33
on:
4-
pull_request_target:
4+
pull_request:
55
branches:
66
- develop
77
- main
@@ -14,7 +14,7 @@ on:
1414

1515
permissions:
1616
checks: write
17-
contents: write
17+
contents: read
1818

1919
jobs:
2020
lint-frontend:

.github/workflows/pr-bot.yml

Lines changed: 12 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -1,28 +1,35 @@
11
name: AI-assisted
22
on:
3-
pull_request_target:
3+
pull_request:
44
types: [ready_for_review, opened, reopened]
55

66
jobs:
7+
approve:
8+
name: Approve
9+
runs-on: ubuntu-latest
10+
environment: ${{ github.event.pull_request.head.repo.fork == true && 'manual-approval' || '' }}
11+
712
summary:
813
name: PR Summary
9-
if: github.actor != 'dependabot'
14+
needs: approve
15+
if: github.actor != 'dependabot[bot]'
1016
runs-on: [ubuntu-latest]
1117
steps:
1218
- uses: SAP/ai-assisted-github-actions/pr-summary@v3
1319
with:
1420
aicore-service-key: ${{ secrets.AICORE_SERVICE_KEY }}
15-
model: gpt-4o
21+
model: gpt-4.1-nano
1622
exclude-files: package-lock.json, uv.lock
1723
review:
1824
name: PR Review
19-
if: github.actor != 'dependabot'
25+
needs: approve
26+
if: github.actor != 'dependabot[bot]'
2027
runs-on: [ubuntu-latest]
2128
steps:
2229
- uses: SAP/ai-assisted-github-actions/pr-review@v3
2330
with:
2431
aicore-service-key: ${{ secrets.AICORE_SERVICE_KEY }}
25-
model: anthropic--claude-4-sonnet
32+
model: anthropic--claude-4.6-sonnet
2633
exclude-files: package-lock.json, uv.lock
2734
footer-text: |
2835
---

CHANGELOG.md

Lines changed: 18 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,3 +1,21 @@
1+
# Version: v0.6.6
2+
3+
* [#182](https://github.com/SAP/STARS/pull/182): Bump pypdf from 6.0.0 to 6.6.0 in /backend-agent
4+
* [#183](https://github.com/SAP/STARS/pull/183): Bump unstructured from 0.18.21 to 0.18.27 in /backend-agent
5+
* [#185](https://github.com/SAP/STARS/pull/185): Bump filelock from 3.19.1 to 3.20.3 in /backend-agent
6+
* [#186](https://github.com/SAP/STARS/pull/186): Bump azure-core from 1.35.0 to 1.38.0 in /backend-agent
7+
* [#187](https://github.com/SAP/STARS/pull/187): Bump pyasn1 from 0.6.1 to 0.6.2 in /backend-agent
8+
* [#189](https://github.com/SAP/STARS/pull/189): Bump weasyprint from 67.0 to 68.0 in /backend-agent
9+
* [#191](https://github.com/SAP/STARS/pull/191): Bump lodash from 4.17.21 to 4.17.23 in /frontend
10+
* [#192](https://github.com/SAP/STARS/pull/192): Bump weasyprint from 67.0 to 68.0 in /backend-agent
11+
* [#193](https://github.com/SAP/STARS/pull/193): Bump pypdf from 6.0.0 to 6.6.2 in /backend-agent
12+
* [#194](https://github.com/SAP/STARS/pull/194): Bump python-multipart from 0.0.20 to 0.0.22 in /backend-agent
13+
* [#196](https://github.com/SAP/STARS/pull/196): Bump sentence-transformers from 5.2.0 to 5.2.2 in /backend-agent
14+
* [#197](https://github.com/SAP/STARS/pull/197): Bump unstructured from 0.18.27 to 0.18.31 in /backend-agent
15+
* [#199](https://github.com/SAP/STARS/pull/199): Bump protobuf from 5.29.5 to 5.29.6 in /backend-agent
16+
* [#201](https://github.com/SAP/STARS/pull/201): Bump langsmith from 0.4.23 to 0.6.3 in /backend-agent
17+
18+
119
# Version: v0.6.5
220

321
* [#168](https://github.com/SAP/STARS/pull/168): Bump weasyprint from 66.0 to 67.0 in /backend-agent

backend-agent/llm.py

Lines changed: 14 additions & 19 deletions
Original file line numberDiff line numberDiff line change
@@ -23,34 +23,27 @@
2323
logger.addHandler(status.trace_logging)
2424

2525
AICORE_MODELS = {
26-
'aicore-ibm':
27-
[
28-
'ibm--granite-13b-chat'
29-
],
3026
'aicore-mistralai':
3127
[
3228
'mistralai--mistral-large-instruct',
3329
'mistralai--mistral-medium-instruct',
3430
'mistralai--mistral-small-instruct',
3531
],
36-
'aicore-opensource':
37-
[
38-
'meta--llama3.1-70b-instruct',
39-
],
4032
'aws-bedrock':
4133
[
4234
'amazon--nova-lite',
4335
'amazon--nova-micro',
4436
'amazon--nova-pro',
4537
'amazon--nova-premier',
4638
'anthropic--claude-3-haiku',
47-
'anthropic--claude-3-opus',
48-
'anthropic--claude-3.5-sonnet',
4939
'anthropic--claude-3.7-sonnet',
50-
'anthropic--claude-4-sonnet',
5140
'anthropic--claude-4-opus',
52-
'anthropic--claude-4.5-sonnet',
41+
'anthropic--claude-4-sonnet',
5342
'anthropic--claude-4.5-haiku',
43+
'anthropic--claude-4.5-opus',
44+
'anthropic--claude-4.5-sonnet',
45+
'anthropic--claude-4.6-opus',
46+
'anthropic--claude-4.6-sonnet',
5447
],
5548
'azure-openai':
5649
[
@@ -62,6 +55,7 @@
6255
'gpt-5',
6356
'gpt-5-mini',
6457
'gpt-5-nano',
58+
'gpt-5.2',
6559
'o1',
6660
'o3',
6761
'o3-mini',
@@ -79,6 +73,7 @@
7973
[
8074
'sonar',
8175
'sonar-pro',
76+
'sonar-deep-research',
8277
],
8378
}
8479

@@ -97,28 +92,28 @@ def from_model_name(cls, model_name: str) -> 'LLM':
9792
Useful because the user can specify only the name in the agent.
9893
"""
9994
# Foundation-models scenarios in AI Core
100-
if model_name in AICORE_MODELS['azure-openai']:
95+
if model_name in AICORE_MODELS.get('azure-openai', []):
10196
return AICoreOpenAILLM(model_name)
10297
# IBM models are compatible with OpenAI completion API
103-
if model_name in AICORE_MODELS['aicore-ibm']:
98+
if model_name in AICORE_MODELS.get('aicore-ibm', []):
10499
return AICoreOpenAILLM(model_name)
105-
if model_name in AICORE_MODELS['aicore-opensource']:
100+
if model_name in AICORE_MODELS.get('aicore-opensource', []):
106101
return AICoreOpenAILLM(model_name, False)
107102
# Mistral models are compatible with OpenAI completion API
108-
if model_name in AICORE_MODELS['aicore-mistralai']:
103+
if model_name in AICORE_MODELS.get('aicore-mistralai', []):
109104
return AICoreOpenAILLM(model_name, False)
110105
# Perplexity models are compatible with OpenAI completion API
111-
if model_name in AICORE_MODELS['perplexity-ai']:
106+
if model_name in AICORE_MODELS.get('perplexity-ai', []):
112107
return AICoreOpenAILLM(model_name)
113108

114109
# Non OpenAI-compatible models in AI Core
115-
if model_name in AICORE_MODELS['aws-bedrock']:
110+
if model_name in AICORE_MODELS.get('aws-bedrock', []):
116111
if 'titan' in model_name:
117112
# Titan models don't support system prompts
118113
return AICoreAmazonBedrockLLM(model_name, False)
119114
else:
120115
return AICoreAmazonBedrockLLM(model_name)
121-
if model_name in AICORE_MODELS['gcp-vertexai']:
116+
if model_name in AICORE_MODELS.get('gcp-vertexai', []):
122117
return AICoreGoogleVertexLLM(model_name)
123118

124119
# Custom models

backend-agent/pyproject.toml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,6 @@
11
[project]
22
name = 'stars'
3-
version = '0.6.5'
3+
version = '0.6.6'
44
description = 'Smart Threat AI Reporting Scanner (STARS)'
55
readme = 'README.md'
66
license = {text = 'Apache-2.0'}
@@ -26,16 +26,16 @@ dependencies = [
2626
'langchain-text-splitters>=0.3.0,<0.4.0',
2727
'PyYAML==6.0.3',
2828
'requests==2.32.5',
29-
'unstructured==0.18.21',
29+
'unstructured==0.18.31',
3030
'art==6.5',
3131
'pandas==2.3.3',
3232
'ollama==0.6.1',
33-
'weasyprint==67.0',
33+
'weasyprint==68.0',
3434
'pyrit==0.9.0',
3535
'codeattack @ git+https://github.com/marcorosa/CodeAttack',
3636
'gptfuzzer @ git+https://github.com/marcorosa/GPTFuzz@no-vllm',
3737
'garak==0.11.0',
38-
'sentence-transformers==5.2.0',
38+
'sentence-transformers==5.2.2',
3939
]
4040

4141
[project.optional-dependencies]

0 commit comments

Comments
 (0)