Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Updating fixes to vulnerabilities after new observations in Docker image #940

Merged
merged 3 commits into from
Oct 7, 2023
Merged

Updating fixes to vulnerabilities after new observations in Docker image #940

merged 3 commits into from
Oct 7, 2023

Conversation

MukuFlash03
Copy link
Contributor

@MukuFlash03 MukuFlash03 commented Oct 6, 2023
edited
Loading

Creating this Commit / PR to fix observed vulnerabilities after updating in earlier PR.

  • Cryptography vulnerability fixed and not being detected in latest image.
  • Certifi is also updated to recommended version but a slightly older version also exists which will be removed in this commit.
  • Flask still shows up as a vulnerability, but unable to find the package actually being installed when using find ~/miniconda-23.5.2/ -name flask*

For handling the flask vulnerability,

  • Observed that the flask package isn't actually installed but just a part of a requirements.txt file in the file path in a conda tests directory.
  • Deleting this file since it doesn't seem to be of use in our codebase.

Mahadik, Mukul Chandrakant added 2 commits October 6, 2023 15:55
Updating fixed vulnerabilities after new observations
f53085f 
Creating this Commit / PR to fix observed vulnerabilities after updating in earlier PR.

- Cryptography vulnerability fixed and not being detected in latest image.
- Certifi is also updated to recommended version but a slightly older version also exists which will be removed in this commit.
- Flask still shows up as a vulnerability, but unable to find the package actually being installed when using find ~/miniconda-23.5.2/ -name flask*
Removed requirements.txt containing old flask package
5e4550f 
This vulnerability was detected as it mentioned an old version of flask 1.1.1 in the requirements.txt file.
- This file is in a conda tests directory and hence should be safe to remove.
shankari
shankari approved these changes Oct 7, 2023
View reviewed changes
.docker/setup_config.sh Outdated Show resolved Hide resolved
@shankari shankari merged commit 086f513 into e-mission:master Oct 7, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@shankari shankari shankari approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@MukuFlash03 @shankari