build(deps): bump github/codeql-action from 3 to 4#10
Open
dependabot[bot] wants to merge 47 commits into
Open
Conversation
Allowing everyone to work on the individual files and run the app locally.
I downloaded npm to be able to run locally on my machine as well as add auth path
downloading npm to run on dev server & adding auth page for sign up and log in.
Add sign-in and sign-up pages with placeholder logic
Implement autosave, version history tracking, and Cosmos DB integration for document persistence. Add reset button to clear all version history with confirmation dialog. Include localStorage fallback for offline support.
…ates feat: add version control with Cosmos DB and reset functionality
Add dashboard page with placeholder
Adding a feature that can be added due to being ahead of schedule
…teractions, Sessions
Implemented Foundry AI from Microsoft using OpenAI chatgpt 5.1 for chat about resume and adding inline edits as well.
AI chat backend working with foundry which is needed for the imagine cup. LLM being used to read resume and suggest changes to resume based on information provided to make better. This feature does not change the words on the resume yet.
…tical fixes - Added Claude AI integration via secure MCP server with API authentication - Implemented multi-format support (PDF, DOCX, LaTeX, RTF, TXT) - Complete landing page redesign for new product capabilities - Fixed critical PDF upload parsing and export corruption bugs - Implemented working user profile dropdown with sign out/re-login - Fixed guide modal close button and improved UI consistency - Updated design system with Claude branding and consistent iconography - Added comprehensive security measures for API key protection - Enhanced document parsing and export for professional output - Removed template selector and updated all product messaging BREAKING CHANGES: Major architecture overhaul with new authentication flow and document handling system. This transforms the product into a fully-functional, enterprise-ready resume editor with AI assistance.
- Added Claude AI integration via secure MCP server with API authentication - Implemented multi-format support (PDF, DOCX, LaTeX, RTF, TXT) - Complete landing page redesign for new product capabilities - Implemented working user profile dropdown with sign out/re-login - Fixed guide modal close button and improved UI consistency - Updated design system with Claude branding and consistent iconography - Added comprehensive security measures for API key protection - Enhanced document parsing and export for professional output - Removed template selector and updated all product messaging
…nk, close mobile menu on nav
…v, test, stage, prod) Replace server-only CI with full-stack workflows covering both Next.js frontend and Express backend. Deployments are branch-driven (develop→dev, test→test, staging→stage, main→prod) with manual dispatch support.
…ment Provision all Azure resources (CosmosDB, Blob Storage, Container Apps, App Service, Redis, ACR, Monitoring) across dev/test/stage/prod with environment-specific sizing via tfvars files.
# Conflicts: # package-lock.json
Changes for backend to work with sup abase as well as the auth. Project is working on local and AWS with good auth and backend migrated
- Fix handleFileUpload to use actual parsed file content instead of hardcoded data - Add real DOCX export using docx library (was faking it with RTF) - Improve parseResumeText with smart date/location extraction and better entry detection - Add 10MB file size validation on upload - Remove dead code: unused suggestion popup, formatLastSaved, stale state variables - Fix VersionHistory type mismatch for optional content field Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
…envs - Add GitHub Actions Terraform workflow for dev/test/stage/prod (validate + plan) - Add missing Terraform CosmosDB module (account, SQL database, containers) - Document per-env backend state keys in init-backend.sh - Fix deploy workflow server artifact paths for correct upload - Add multi-stage server Dockerfile with /api/health check - Add frontend Dockerfile (Next.js standalone) and DOCKER_BUILD in next.config Made-with: Cursor
- CI: add timeouts, NODE_VERSION env, job summaries - Deploy: add branch output, deployment summary job, structured notifications - Terraform: add fmt check, job summary - Add dependabot.yml for npm and github-actions - Add CodeQL security analysis workflow - Add PULL_REQUEST_TEMPLATE.md - Terraform: cost allocation tags, environment output, tfvars.example - Terraform: storage lifecycle block, .terraform-version, README Made-with: Cursor
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3 to 4. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@v3...v4) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
Bot
added
dependencies
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
5 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Bumps github/codeql-action from 3 to 4.
Release notes
Sourced from github/codeql-action's releases.
... (truncated)
Changelog
Sourced from github/codeql-action's changelog.
... (truncated)
Commits
4cd47adAddress review comments5fa8dadUseResults for enablement return types6a77217Add disabled by env var disablement reasonb6dfacbMerge pull request #3542 from github/henrymercer/parallel-unit-tests6123416Merge remote-tracking branch 'origin/main' into henrymercer/parallel-unit-testsa6594f9Merge pull request #3540 from github/henrymercer/stub-actions-varsDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)