• Home
  • Features
  • Pricing
  • Docs
  • Announcements
  • Sign In

jtschladen / lemur
60%
main: 61%

Build:
Build:
LAST BUILD BRANCH: jschladen/fix-test-failures-post-ghsa
DEFAULT BRANCH: main
Repo Added 13 Jan 2022 01:47AM UTC
Token YT0yrIyquXVYAuDT4xzlOZm0PMhBjUaHz regen
Build 274 Last
Files 13
Badge
Embed ▾
README BADGES
x

If you need to use a raster PNG badge, change the '.svg' to '.png' in the link

Markdown

Textile

RDoc

HTML

Rst

LAST BUILD ON BRANCH jschladen/fix-test-failures-post-ghsa
branch: SELECT
CHANGE BRANCH
x
Sync Branches
  • No branch selected
  • ENABLE_AUTOROTATION_FILTER_FOR_ENDPOINT
  • add-update-owner-endpoint
  • admin-only-authority-creation
  • allow-duplicate-s3-destinations
  • audit-message
  • authority-roles
  • avoid-duplicate-roles
  • change-load-to-resolve
  • change-resolve-to-load
  • changelog-1.2.0
  • codeql-update
  • correct-owner-role-update-cert-owner
  • dep-update
  • dependabot-auto-merge
  • dependabot-auto-strategy
  • dependabot-githubactions
  • dependabot/github_actions/actions/checkout-4
  • dependabot/github_actions/actions/setup-node-4
  • dependabot/github_actions/actions/setup-python-5
  • dependabot/github_actions/github/codeql-action-3
  • dependabot/pip/acme-2.7.4
  • dependabot/pip/acme-2.8.0
  • dependabot/pip/boto3-1.28.1
  • dependabot/pip/boto3-1.28.15
  • dependabot/pip/boto3-1.28.18
  • dependabot/pip/boto3-1.28.20
  • dependabot/pip/boto3-1.28.35
  • dependabot/pip/boto3-1.28.40
  • dependabot/pip/boto3-1.28.53
  • dependabot/pip/boto3-1.28.57
  • dependabot/pip/boto3-1.28.58
  • dependabot/pip/boto3-1.28.72
  • dependabot/pip/boto3-1.28.78
  • dependabot/pip/boto3-1.33.11
  • dependabot/pip/botocore-1.31.20
  • dependabot/pip/botocore-1.31.25
  • dependabot/pip/botocore-1.31.30
  • dependabot/pip/botocore-1.31.35
  • dependabot/pip/botocore-1.31.40
  • dependabot/pip/botocore-1.31.44
  • dependabot/pip/botocore-1.31.49
  • dependabot/pip/botocore-1.31.58
  • dependabot/pip/botocore-1.31.62
  • dependabot/pip/botocore-1.31.72
  • dependabot/pip/botocore-1.31.78
  • dependabot/pip/botocore-1.31.85
  • dependabot/pip/celery-redis--5.3.4
  • dependabot/pip/certbot-2.7.4
  • dependabot/pip/cloudflare-2.11.7
  • dependabot/pip/cloudflare-2.12.4
  • dependabot/pip/coverage-7.3.0
  • dependabot/pip/coverage-7.3.1
  • dependabot/pip/coverage-7.3.2
  • dependabot/pip/fakeredis-2.20.0
  • dependabot/pip/fakeredis-2.20.1
  • dependabot/pip/flask-migrate-4.0.5
  • dependabot/pip/hvac-1.2.1
  • dependabot/pip/hvac-2.0.0
  • dependabot/pip/josepy-1.14.0
  • dependabot/pip/moto-all--4.2.12
  • dependabot/pip/moto-all--4.2.5
  • dependabot/pip/moto-all--4.2.7
  • dependabot/pip/paramiko-3.3.1
  • dependabot/pip/pre-commit-3.4.0
  • dependabot/pip/psycopg2-2.9.7
  • dependabot/pip/psycopg2-2.9.8
  • dependabot/pip/pyjwt-2.8.0
  • dependabot/pip/redis-5.0.1
  • dependabot/pip/sentry-sdk-1.27.1
  • dependabot/pip/sentry-sdk-1.28.1
  • dependabot/pip/sentry-sdk-1.29.2
  • dependabot/pip/sentry-sdk-1.30.0
  • dependabot/pip/sentry-sdk-1.31.0
  • dependabot/pip/sentry-sdk-1.34.0
  • dependabot/pip/sentry-sdk-1.35.0
  • dependabot/pip/sentry-sdk-1.38.0
  • dependabot/pip/sphinx-4.5.0
  • dependabot/pip/twine-3.8.0
  • dependabot/pip/types-redis-4.6.0.10
  • dependabot/pip/types-redis-4.6.0.9
  • dependabot/pip/urllib3-1.26.17
  • dependabot/pip/validators-0.21.2
  • dependabot/pip/validators-0.22.0
  • dependabot/pip/werkzeug-3.0.0
  • dependency-update
  • dependency-updates
  • doc-update
  • downgrade-celery
  • enable-coveralls
  • enforce-dupe-destination-check-update
  • fix-github-actions
  • fix-link-syntax
  • fix-message
  • fix-pagination
  • github-actions
  • jschladen/automatically_enable_autorotate_with_endpoint-handle-exception
  • jschladen/fix-auth
  • jschladen/fix-issues
  • jschladen/fix-tag-check
  • jschladen/fix-test-failures-post-ghsa
  • jschladen/fix-test-user-service-lint
  • jschladen/log-attach-warning
  • jschladen/pin-otel
  • jschladen/refreshable-credentials
  • jschladen/sync-fixes
  • log-expiring-deployed
  • main
  • master
  • metric-api-key
  • postgres-17
  • readthedocs-remove-systempackages
  • remove-redis-lock
  • remove-setuptools-from-requirements.txt
  • update-disclosure-process
  • update-setuptools
  • utc

10 Jun 2026 06:37PM UTC coverage: 59.879%. Remained the same
27297912863

push

github

web-flow
Merge branch 'main' into jschladen/fix-test-failures-post-ghsa

594 of 992 relevant lines covered (59.88%)

0.6 hits per line

Relevant lines Covered
Build:
Build:
992 RELEVANT LINES 594 COVERED LINES
0.6 HITS PER LINE
Source Files on main
  • Tree
  • List 13
  • Changed 0
  • Source Changed 0
  • Coverage Changed 0
Coverage ∆ File Lines Relevant Covered Missed Hits/Line

Recent builds

Builds Branch Commit Type Ran Committer Via Coverage
27297912863 jschladen/fix-test-failures-post-ghsa Merge branch 'main' into jschladen/fix-test-failures-post-ghsa push 10 Jun 2026 06:43PM UTC web-flow github
59.88
27297431505 jschladen/fix-test-failures-post-ghsa fix: update tests to reflect GHSA security hardening changes - test_role_put: non-admin users now get 403 (admin-only) before schema validation can return 400 - test_role_put_with_data_and_user: role members no longer permitted to update role... push 10 Jun 2026 06:35PM UTC jtschladen github
59.88
26980609255 jschladen/fix-test-user-service-lint test: add read-only user coverage across all StrictRolePermission-gated endpoints Every write endpoint gated by StrictRolePermission now has an HTTP-level test verifying that a read-only user gets 403. Endpoints covered: - POST /notifications (c... push 04 Jun 2026 09:32PM UTC jtschladen github
60.86
26978985051 jschladen/fix-test-user-service-lint docs: document authz surface and security implications of default-open model Add a security note to LEMUR_STRICT_ROLE_ENFORCEMENT explaining that any authenticated user can manage notifications (webhook SSRF), upload certs to destinations, and ma... push 04 Jun 2026 09:00PM UTC jtschladen github
60.86
26978088232 jschladen/fix-test-user-service-lint fix: remove extra blank line in test_permissions.py (E303) Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com> push 04 Jun 2026 08:42PM UTC jtschladen github
60.86
26923379791 jschladen/fix-test-user-service-lint test: add read-only user coverage for GHSA-qcqw-jwxc-2hqg Add VALID_READ_ONLY_HEADER_TOKEN (sub=3) and a read-only user fixture to conftest. Tests that read-only users are denied write operations via StrictRolePermission: notification delete (403... push 04 Jun 2026 01:11AM UTC jtschladen github
60.86
26921906730 jschladen/fix-test-user-service-lint fix: block read-only users from write ops without requiring admin/operator The GHSA-qcqw-jwxc-2hqg fix changed LEMUR_STRICT_ROLE_ENFORCEMENT to default True, which correctly closed the empty-needs Flask-Principal bypass but broke normal cert issu... push 04 Jun 2026 12:32AM UTC jtschladen github
60.86
26471797818 main Merge pull request #5464 from Netflix/dependabot/pip/pyopenssl-26.2.0 Build(deps): Bump pyopenssl from 26.1.0 to 26.2.0 push 26 May 2026 08:04PM UTC web-flow github
60.86
23616185830 jschladen/fix-auth Update lemur/auth/service.py Co-authored-by: Sayali Charhate <charhate@usc.edu> push 26 Mar 2026 08:28PM UTC web-flow github
60.86
23615843703 jschladen/fix-auth Add test push 26 Mar 2026 08:19PM UTC jtschladen github
60.86
See All Builds (209)

Badge your Repo: lemur

We detected this repo isn’t badged! Grab the embed code to the right, add it to your repo to show off your code coverage, and when the badge is live hit the refresh button to remove this message.

Could not find badge in README.

Embed ▾
README BADGES
x

If you need to use a raster PNG badge, change the '.svg' to '.png' in the link

Markdown

Textile

RDoc

HTML

Rst

Refresh
  • Settings
  • Repo on GitHub
STATUS · Troubleshooting · Open an Issue · Sales · Support · CAREERS · ENTERPRISE · START FREE · SCHEDULE DEMO
ANNOUNCEMENTS · TWITTER · TOS & SLA · Supported CI Services · What's a CI service? · Automated Testing

© 2026 Coveralls, Inc