v4.0.0

Key changes

• Find MoJ data no longer displays data owners. Instead, it displays data custodians (which have a distinct meaning within the government data quality framework). See Fmd 984 by @hjribeiro-moj in #1059
• Added a new entity type for GOV.UK publications - see Fmd 1081 publication details page by @hjribeiro-moj in #1112

Other features

• CSV exports by @MatMoore in #1020
• feat: add trivy image scanning by @MatMoore in #1030
• Add metadata items to tables and databases (CaDeT) by @murdo-moj in #1040
• Use CSS class for footer styling by @murdo-moj in #1067
• Fmd 984 replace owner refs from app by @hjribeiro-moj in #1045

Security & bugfixes

• Don't ask for email when reporting issues by @MatMoore in #1009
• Apply per request rate limiting to nginx by @mitchdawson1982 in #1029
• Update Docker images to Alpine3.20 by @mitchdawson1982 in #1044
• Add IP limit-whitelist by @mitchdawson1982 in #1031
• Fix Dockerfile build issue by @mitchdawson1982 in #1075
• Fix issues with translations not being applied by @mitchdawson1982 in #1079
• Account for non cadet refresh period by @murdo-moj in #1074
• Change casing of success status by @mitchdawson1982 in #1083
• fix: fetch lastIngested for charts, and correctly show data last updated by @MatMoore in #1116
• fix: publication breadcrumb entity type and add platform by @LavMatt in #1142
• fmd-1082 - Fix Data Custodian email not being sent to feedback service by @hjribeiro-moj in #1093

Maintenence

• Chore(deps): Bump kunalnagarco/action-cve from 1.14.1 to 1.14.2 by @dependabot in #1013
• Chore(deps): Bump sass from 1.80.5 to 1.80.6 by @dependabot in #1015
• Chore(deps): Bump sentry-sdk from 2.17.0 to 2.18.0 by @dependabot in #1016
• Chore(deps): Bump @ministryofjustice/frontend from 3.0.1 to 3.0.2 by @dependabot in #1018
• Chore(deps): Bump django from 5.1.2 to 5.1.3 in the django-dependencies group by @dependabot in #1019
• ci: enable trivy scan on push to main by @MatMoore in #1042
• Chore(deps): Bump github/codeql-action from 3.27.0 to 3.27.4 by @dependabot in #1062
• Chore(deps): Bump @ministryofjustice/frontend from 3.0.2 to 3.0.3 by @dependabot in #1047
• Chore(deps): Bump sass from 1.80.6 to 1.80.7 by @dependabot in #1046
• Chore(deps-dev): Bump faker from 30.8.2 to 33.0.0 in the dev-dependencies group across 1 directory by @dependabot in #1061
• Reminder to check for MOJ IP address updates by @MatMoore in #1060
• Docker file refactor by @MatMoore in #1066
• Chore(deps): Bump aiohttp from 3.10.2 to 3.10.11 in the pip group by @dependabot in #1077
• Chore(deps): Bump slackapi/slack-github-action from 1.26.0 to 2.0.0 by @dependabot in #1063
• Chore(deps): Bump django-waffle from 4.1.0 to 4.2.0 in the django-dependencies group by @dependabot in #1068
• Chore(deps): Bump sass from 1.80.7 to 1.81.0 by @dependabot in #1069
• Chore(deps): Bump aquasecurity/trivy-action from 0.28.0 to 0.29.0 by @dependabot in #1087
• Chore(deps): Bump github/codeql-action from 3.27.4 to 3.27.5 by @dependabot in #1086
• Chore(deps): Bump aiohttp from 3.10.2 to 3.10.11 in /lib/datahub-client in the pip group across 1 directory by @dependabot in #1076
• Preprod successful deployment notification login by @mitchdawson1982 in #1085
• Add environment to the ingress name by @mitchdawson1982 in #1109
• 🗑️ delete unused file by @hjribeiro-moj in #1111
• refactor: rename timestamps by @MatMoore in #1110
• Chore(deps-dev): Bump the dev-dependencies group across 1 directory with 2 updates by @dependabot in #1114
• Chore(deps): Bump sentry-sdk from 2.18.0 to 2.19.0 by @dependabot in #1090
• Chore(deps-dev): Bump axe from 12.2.9 to 13.0.0 by @dependabot in #1104
• Chore(deps): Bump @ministryofjustice/frontend from 3.0.3 to 3.1.0 by @dependabot in #1105
• docs: update service description copy by @LavMatt in #1107
• Chore(deps): Bump nanasess/setup-chromedriver from 2.2.2 to 2.3.0 by @dependabot in #1129
• Chore(deps): Bump kunalnagarco/action-cve from 1.14.2 to 1.14.3 by @dependabot in #1130
• Chore(deps): Bump sass from 1.81.0 to 1.81.1 by @dependabot in #1133
• Chore(deps): Bump github/codeql-action from 3.27.5 to 3.27.6 by @dependabot in #1134
• Chore(deps): Bump sentry-sdk from 2.19.0 to 2.19.1 by @dependabot in #1138
• Chore(deps): Bump sass from 1.81.1 to 1.82.0 by @dependabot in #1136
• Chore(deps): Bump django from 5.1.3 to 5.1.4 in the django-dependencies group by @dependabot in #1137

Full Changelog: v3.1.0...d3298df

v3.1.0

What's Changed

Improvements

• Fmd 912 add GA4 events by @LavMatt in #970
• Report issues with metadata by @mitchdawson1982 in #953
• Squash migrations by @mitchdawson1982 in #978
• Fmd 911 workflow changes by @mitchdawson1982 in #971
• Re add error message for additional info by @mitchdawson1982 in #981
• Altered breadcrumbs to collapse on mobile by @murdo-moj in #1003
• feat: add more contact options for ask a question by @LavMatt in #992
• 🚧 Responsive tables by @mitchdawson1982 in #934
• Show data custodian if set in datahub by @MatMoore in #993

Fixes

• Don't hardcode platform name on chart/dashboard links by @MatMoore in #949
• fix(auth): ensure users are created using emails as returned from azure by @LavMatt in #964
• fix: remove dynamic content from translations by @MatMoore in #972
• Fix errors in variables by @mitchdawson1982 in #973
• Remove id attribute from ul elements in results by @mitchdawson1982 in #975
• Modsec .profile Rule Issue by @mitchdawson1982 in #990
• Fix modsec comment by @mitchdawson1982 in #997

Maintenence

• Chore(deps-dev): Bump faker from 30.3.0 to 30.6.0 in the dev-dependencies group across 1 directory by @dependabot in #947
• Chore(deps): Bump sass from 1.79.5 to 1.80.2 by @dependabot in #955
• Chore(deps): Bump django-azure-auth from 2.0.2 to 2.1.0 in the django-dependencies group by @dependabot in #946
• Chore(deps): Bump sass from 1.80.2 to 1.80.4 by @dependabot in #979
• Chore(deps): Bump sentry-sdk from 2.16.0 to 2.17.0 by @dependabot in #957
• Chore(deps): Bump node from 22-bullseye to 23-bullseye by @dependabot in #958
• Chore(deps-dev): Bump faker from 30.6.0 to 30.8.0 in the dev-dependencies group by @dependabot in #968
• Chore(deps-dev): Bump @testing-library/jest-dom from 6.5.0 to 6.6.2 by @dependabot in #956
• Chore(deps): Bump @babel/preset-env from 7.25.8 to 7.25.9 by @dependabot in #974
• Chore(deps-dev): Bump faker from 30.8.0 to 30.8.1 in the dev-dependencies group by @dependabot in #986
• Chore(deps): Bump actions/setup-python from 5.2.0 to 5.3.0 by @dependabot in #985
• Chore(deps): Bump redis from 5.1.1 to 5.2.0 by @dependabot in #987
• Chore(deps): Bump @babel/preset-env from 7.25.9 to 7.26.0 by @dependabot in #991

Full Changelog: v3.0.0...9ca9c9b

v3.0.0

What's Changed

Accessibility

• Fix focus colours for masthead component by @MatMoore in #793
• Opt into new type scale by @MatMoore in #723
• Fix low colour contrast and incorrect label markup by @MatMoore in #889
• fix(accessibility): home page link text improved and added aria label for better accessibility by @LavMatt in #892
• fix(accessibility): add entity type to details page titles by @LavMatt in #894
• Fmd-883-orphaned-form-label by @murdo-moj in #893
• fix(accessibility): add visually hidden description text in tables by @LavMatt in #896
• Remove max length and associated test by @mitchdawson1982 in #937
• fix(accessibility): improved aria label for filters by @LavMatt in #942
• Fix broken labels on home page by @MatMoore in #897
• Make chart name in dashboard a href by @murdo-moj in #887

UI changes

• feat: sort non keyword search results a-z by @LavMatt in #854
• feat: add switch for table details is_nullable column by @LavMatt in #927
• Hide schema section for performance hub metrics and display caveats by @MatMoore in #943

Performance

• perf: remove unused javascripts by @MatMoore in #828
• Disable datahub telemetry and force debug off by @MatMoore in #857
• Added GZip middleware for http compression by @murdo-moj in #909

Fixes

• fix: use STORAGES instead of STATICFILES_STORAGE by @MatMoore in #827
• Quoted search fix by @mitchdawson1982 in #839
• Fix sentence casing on subject area, entity type labels when filters are selected by @MatMoore in #829
• Corrected href for organisation name in nav bar by @murdo-moj in #849
• Corrected MOJ -> MoJ by @murdo-moj in #870
• Changed h3 to h2 fordescription heading on data pages by @murdo-moj in #888
• Render correct Http404 error response by @mitchdawson1982 in #898

Docs

• docs: update request access link text by @LavMatt in #872

Maintenance

• feat: add django-debug-toolbar by @tom-webber in #575
• Dependabot issue creation by @mitchdawson1982 in #802
• Initial commit of esda scripts by @murdo-moj in #790
• Make it easier to see what's deployed by @MatMoore in #816
• ci: fix typo in prod notification check by @MatMoore in #818
• Improve body text of automated prod push ticket by @murdo-moj in #817
• Add an end to end test that checks breadcrumbs by @MatMoore in #786
• build: allow tag to be overwritten by @MatMoore in #819
• ci: skip end to end test in deploy pipeline by @MatMoore in #820
• ci: allow sentry to be configured per environment by @MatMoore in #821
• Chore(deps): Bump sass from 1.77.8 to 1.78.0 by @dependabot in #777
• Chore(deps): Bump actions/setup-python from 5.1.1 to 5.2.0 by @dependabot in #737
• Chore(deps): Bump cryptography from 42.0.7 to 43.0.1 in the pip group by @dependabot in #770
• Chore(deps): Bump django from 5.1 to 5.1.1 in the django-dependencies group across 1 directory by @dependabot in #792
• ci: completely remove e2e test from ci by @MatMoore in #822
• Chore(deps-dev): Bump the dev-dependencies group across 1 directory with 3 updates by @dependabot in #776
• Revert "Dependabot issue creation" by @mitchdawson1982 in #823
• Update Psycopg lib and binary to v3.2.2 by @mitchdawson1982 in #850
• Chore(deps): Bump actions/checkout from 2 to 4 by @dependabot in #806
• Chore(deps): Bump sass from 1.78.0 to 1.79.1 by @dependabot in #853
• Chore(deps-dev): Bump faker from 28.4.1 to 29.0.0 in the dev-dependencies group by @dependabot in #859
• Chore(deps-dev): Bump selenium from 4.24.0 to 4.25.0 in the dev-dependencies group by @dependabot in #863
• Chore(deps): Bump sass from 1.79.1 to 1.79.3 by @dependabot in #864
• Chore(deps): Bump sentry-sdk from 2.13.0 to 2.14.0 by @dependabot in #805
• Chore(deps-dev): Bump faker from 29.0.0 to 30.0.0 in the dev-dependencies group by @dependabot in #891
• Chore(deps): Bump govuk-frontend from 5.5.0 to 5.6.0 by @dependabot in #738
• Chore(deps): Bump redis from 5.0.8 to 5.1.0 by @dependabot in #895
• Chore(deps): Bump @babel/preset-env from 7.25.4 to 7.25.7 by @dependabot in #914
• Chore(deps-dev): Bump faker from 30.0.0 to 30.1.0 in the dev-dependencies group by @dependabot in #900
• Chore(deps): Bump sentry-sdk from 2.14.0 to 2.15.0 by @dependabot in #906
• Chore(deps): Bump psycopg from 3.2.2 to 3.2.3 by @dependabot in #901
• Chore(deps): Bump psycopg-binary from 3.2.2 to 3.2.3 by @dependabot in #902
• Chore(deps): Bump sass from 1.79.3 to 1.79.4 by @dependabot in #903
• Chore(deps): Bump @ministryofjustice/frontend from 2.2.0 to 2.2.4 by @dependabot in #904
• Chore(deps): Bump redis from 5.1.0 to 5.1.1 by @dependabot in #923
• Chore(deps): Bump govuk-frontend from 5.6.0 to 5.7.1 by @dependabot in #939
• Chore(deps): Bump @babel/preset-env from 7.25.7 to 7.25.8 by @dependabot in #936
• Chore(deps-dev): Bump the dev-dependencies group across 1 directory with 3 updates by @dependabot in #931
• Chore(deps): Bump django from 5.1.1 to 5.1.2 in the django-dependencies group by @dependabot in #929
• Chore(deps): Bump sentry-sdk from 2.15.0 to 2.16.0 by @dependabot in #930
• Chore(deps): Bump sass from 1.79.4 to 1.79.5 by @dependabot in #940

Full Changelog: v2.9.0...d00b11e

v2.9.0

What's Changed

• Corrected typo by @murdo-moj in #779
• tests: add extra test case for parent entity by @MatMoore in #775
• fix: remove django admin by @MatMoore in #787
• Centralised server cache by @mitchdawson1982 in #773
• Update AAD Lib by @mitchdawson1982 in #791
• Block search engines and remove redundant element from error pages by @MatMoore in #795

Full Changelog: v2.8.1...e499263

v2.8.1

What's Changed

Fixes

• Set the secure flag on all django cookies by @MatMoore in #748
• Dockerfile: FROM / AS casing and ENV key=value format by @jemnery in #754
• Add username param to custom user manager by @mitchdawson1982 in #759
• Added --no-recommends flag to apt-get install by @murdo-moj in #766

Deployment & CI

• Configured pod securityContext by @murdo-moj in #767
• Rolling deployment by @MatMoore in #753
• feat(k8s): add a horizontal pod autoscaler by @MatMoore in #768
• ci: update notifications to match new workflow structure by @MatMoore in #758
• use makefile to run tests by @hjribeiro-moj in #772

Full Changelog: V2.9.0...c3c4203

Release candidate (13a6b19fef1678228ab44ced3a6ad11becf5b6ea)

What's Changed

• ⬇️ Downgrade azure auth to v1.3.0 by @mitchdawson1982 in #750

Full Changelog: v2.8.0...13a6b19

v2.8.0

What's Changed

• updates for homepage design and add help us grow section by @LavMatt in #724
• Fmd-666-tweak-error-pages by @murdo-moj in #726
• fmd-718 - Add 404 handler by @hjribeiro-moj in #729
• ci: remove pypi release by @MatMoore in #730
• feat: add back button to cookie page by @tom-webber in #728

Full Changelog: v2.7.0...v2.8.0

v2.7.0

What's Changed

• Improve dependency management by @MatMoore in #706
• Bump the dev-dependencies group with 2 updates by @dependabot in #707
• Bump gunicorn from 22.0.0 to 23.0.0 by @dependabot in #702
• fix: add a few more dev dependencies to the dependabot group by @MatMoore in #709
• Bump pre-commit from 3.7.1 to 3.8.0 by @dependabot in #703
• Bump @babel/preset-env from 7.25.3 to 7.25.4 by @dependabot in #710
• feat: update global nav and footer by @MatMoore in #711
• chore: Refactor GitHub workflows for streamlined build and deploy process by @tom-webber in #712
• fix: swap image_tag for "latest" as env can't be passed to with action block. by @tom-webber in #713
• fix: unite reusable push and deploy jobs for single stage during workflow, mask image_path, fix docker tag statement env reference by @tom-webber in #714
• fix: do not open global links in new tabs by @MatMoore in #717
• Chore(deps-dev): Bump faker from 27.4.0 to 28.0.0 in the dev-dependencies group by @dependabot in #715
• Chore(deps-dev): Bump @testing-library/jest-dom from 6.4.8 to 6.5.0 by @dependabot in #716
• Chore(deps): Bump micromatch from 4.0.5 to 4.0.8 in the npm_and_yarn group by @dependabot in #719
• ci: move prod deploy back into staged workflow by @MatMoore in #721
• feat: add cookie page by @MatMoore in #722
• fix: add GH_TOKEN env var for gh cli by @MatMoore in #725

Full Changelog: v2.6.0...eb411a1

v2.6.0

What's Changed

• Changed lineage description copy by @murdo-moj in #687
• Update pyyaml to 6.0.2 by @mitchdawson1982 in #696
• Bump flake8 from 7.1.0 to 7.1.1 by @dependabot in #691
• Bump markdown from 3.6 to 3.7 by @dependabot in #692
• Bump axe from 12.2.7 to 12.2.9 by @dependabot in #519
• fix: use correct labels for "Selected filters" panel by @MatMoore in #695
• Bump kunalnagarco/action-cve from 1.14.0 to 1.14.1 by @dependabot in #694
• Bump @ministryofjustice/frontend from 2.1.3 to 2.2.0 by @dependabot in #689
• Bump django from 5.0.7 to 5.1 by @dependabot in #693
• Bump the pip group with 2 updates by @dependabot in #688
• Copy updates by @MatMoore in #699

Full Changelog: v2.5.1...v2.5.2

v2.5.1

What's Changed

• fix: refer to subject area in matched fields by @MatMoore in #686
• Bump whitenoise from 6.6.0 to 6.7.0 by @dependabot in #468

Full Changelog: v2.5.0...v2.5.1