[Snyk] Security upgrade python from 3.11.8-slim-bookworm to 3.12.4-slim-bookworm #4224
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
* feat(frontend): Rich result by id component * feat(frontend): add waitJob helper * feat(frontend): improve code * feat(frontend): improve code * feat(frontend): fix build
* fix(frontend): wip * fix(frontend): wip * fix(frontend): add missing iter input for while loops * fix(frontend): improve code * fix(frontend): improve code * fix(frontend): failure status for fake modules on hold * fix(frontend): wip * fix(frontend): improve flow step warnings * fix(frontend): add debounce * fix(frontend): improve rpath detection * feat(frontend): improve code * fix(frontend): use the code parser to detect missing dependencies * fix(frontend): improve code * fix(frontend): improve code
* Add standalone mode without indexer * Imporve flag logic
* chore(main): release 1.363.0 * Apply automatic changes --------- Co-authored-by: rubenfiszel <[email protected]>
* feat: rehydrate instance settings/configs/users from CLI * fix: nits * feat: encryption key, saved instances, include all workspaces * preshot client version * Update deps.ts
* chore(main): release 1.364.0 * Apply automatic changes --------- Co-authored-by: rubenfiszel <[email protected]>
* chore(main): release 1.364.1 * Apply automatic changes --------- Co-authored-by: rubenfiszel <[email protected]>
* chore(main): release 1.364.2 * Apply automatic changes --------- Co-authored-by: rubenfiszel <[email protected]>
…ry (#4087) * add more logs, change a fetch_one to opt and add back show memory every * Update ee repo ref
* Refactored nested match expressions into inline pattern matching with early returns for improved readability and reduced nesting * Updated fn naming, map_while instead of filter_map fix --------- Co-authored-by: HugoCasa <[email protected]>
* feat: rhl9 img test * fix: action * fix: action * fix: build * don't use rustup * fix: rustfmt * fix: second apt-get * fix * fix: try xmlsec1 no-dev * fix: remove scache * fix: 1.75 rust support * fix: rust 1.75 * fix: xmlsec1 * fix: nit * fix: missing async recursion * fix: missing dep + unregister from RH * fix: add xmlsec1 openssl * fix: check binary is running * add link * feat: clean rhel files * fix: lock
* chore(main): release 1.364.3 * Apply automatic changes --------- Co-authored-by: rubenfiszel <[email protected]>
* chore: publish oneOf parser improvement * fix: indent
* feat(frontend): wip * feat(frontend): wip * feat(frontend): wip * feat(frontend): improve search modal style * feat(frontend): fix content search height * feat(frontend): fix overflow * feat(frontend): revert unrelated changes
* fix(frontend): Fix json editor wip * fix(frontend): Fix 'Use input' in the test flow drawer
rubenfiszel
force-pushed
the
main
branch
3 times, most recently
from
413dad5 to
ad69876
Compare
rubenfiszel
force-pushed
the
main
branch
3 times, most recently
from
9a08368 to
779a788
Compare
rubenfiszel
force-pushed
the
main
branch
7 times, most recently
from
e80f43d to
9c506a8
Compare
rubenfiszel
force-pushed
the
main
branch
3 times, most recently
from
ec6b974 to
8e0eb3d
Compare
rubenfiszel
force-pushed
the
main
branch
7 times, most recently
from
c858c24 to
3cd30d2
Compare
rubenfiszel
force-pushed
the
main
branch
4 times, most recently
from
8756adb to
41acd56
Compare
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to fix 4 vulnerabilities in the dockerfile dependencies of this project.
Keeping your Docker base image up-to-date means you’ll benefit from security fixes in the latest version of your chosen image.
Snyk changed the following file(s):
DockerfileWe recommend upgrading to
python:3.12.4-slim-bookworm, as this image has only 47 known vulnerabilities. To do this, merge this pull request, then verify your application still works as expected.Vulnerabilities that will be fixed with an upgrade:
SNYK-DEBIAN12-SYSTEMD-6277507
SNYK-DEBIAN12-SYSTEMD-6277507
SNYK-DEBIAN12-OPENSSL-6048820
SNYK-DEBIAN12-OPENSSL-6148845
SNYK-DEBIAN12-OPENSSL-6190223
Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Allocation of Resources Without Limits or Throttling
Summary:
Update
Dockerfileto usepython:3.12.4-slim-bookwormto address security vulnerabilities.Key points:
Dockerfileto usepython:3.12.4-slim-bookworminstead ofpython:3.11.8-slim-bookworm.Generated with ❤️ by ellipsis.dev