2342: Cache the API root endpoint for longer. r=tiftran a=smarnach
The information at the API root endpoints virtually never changes; it's just a list of endpoints in the API with no dynamic information. At the same time, it's the endpoint we get by far the most requests for. We can reduce the load on the origin servers considerably if we cache this endpoint for a whole day instead of just 30 seconds.
Co-authored-by: Sven Marnach <sven@mozilla.com>
2335: Remove check about Remote Settings group_check_enabled r=tiftran a=leplatrem
From kinto-dist >= 27, we don't offer the possibility to disable the group check on a particular collection. Hence, there's no need to check it anymore (the field will always be `true`).
Plus, the check in this code was wrong, it was raising `Review was not disabled ...` when the `group_check_enabled` field was `True`
Co-authored-by: Mathieu Leplatre <mathieu@mozilla.com>
2327: Disable Renovate r=tiftran a=mythmon
We don't need the latest libraries any more, since we aren't actively working on Normandy. Github's Dependabot will provide security updates.
Co-authored-by: Michael Cooper <mythmon@gmail.com>
2319: Bump lodash from 4.17.19 to 4.17.21 r=mythmon a=dependabot[bot]
Bumps [lodash](https://github.com/lodash/lodash) from 4.17.19 to 4.17.21.
<details>
<summary>Commits</summary>
<ul>
<li><a href="f299b52f39"><code>f299b52</code></a> Bump to v4.17.21</li>
<li><a href="c4847ebe7d"><code>c4847eb</code></a> Improve performance of <code>toNumber</code>, <code>trim</code> and <code>trimEnd</code> on large input strings</li>
<li><a href="3469357cff"><code>3469357</code></a> Prevent command injection through <code>_.template</code>'s <code>variable</code> option</li>
<li><a href="ded9bc6658"><code>ded9bc6</code></a> Bump to v4.17.20.</li>
<li><a href="63150ef764"><code>63150ef</code></a> Documentation fixes.</li>
<li><a href="00f0f62a97"><code>00f0f62</code></a> test.js: Remove trailing comma.</li>
<li><a href="846e434c7a"><code>846e434</code></a> Temporarily use a custom fork of <code>lodash-cli</code>.</li>
<li><a href="5d046f39cb"><code>5d046f3</code></a> Re-enable Travis tests on <code>4.17</code> branch.</li>
<li><a href="aa816b36d4"><code>aa816b3</code></a> Remove <code>/npm-package</code>.</li>
<li>See full diff in <a href="https://github.com/lodash/lodash/compare/4.17.19...4.17.21">compare view</a></li>
</ul>
</details>
<details>
<summary>Maintainer changes</summary>
<p>This version was pushed to npm by <a href="https://www.npmjs.com/~bnjmnt4n">bnjmnt4n</a>, a new releaser for lodash since your current version.</p>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Tif Tran
bors[bot]
Sven Marnach
Mathieu Leplatre
Michael Cooper