[Snyk] Security upgrade python from 3.10-slim to 3.14.0a3-slim #205
Conversation
The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-DEBIAN12-ZLIB-6008963 - https://snyk.io/vuln/SNYK-DEBIAN12-KRB5-1549480 - https://snyk.io/vuln/SNYK-DEBIAN12-KRB5-6277411 - https://snyk.io/vuln/SNYK-DEBIAN12-KRB5-6277412 - https://snyk.io/vuln/SNYK-DEBIAN12-KRB5-6277421
|
![github-actions[bot]](https://avatars.githubusercontent.com/in/15368?s=60&v=4){kind=small}
There was a problem hiding this comment.
Scan Summary
| Tool | Critical | High | Medium | Low | Status |
|---|---|---|---|---|---|
| Dependency Scan (universal) | 18 | 177 | 140 | 2 | ❌ |
| Python Security Analysis | 0 | 0 | 4 | 2 | ✅ |
| Python Source Analyzer | 0 | 0 | 0 | 0 | ✅ |
| Secrets Audit | 0 | 3 | 0 | 0 | ❌ |
| Security Audit for Infrastructure | 3 | 26 | 2 | 12 | ❌ |
Recommendation
Please review the findings from Code scanning alerts before approving this pull request. You can also configure the build rules or add suppressions to customize this bot 👍
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
| @@ -1,4 +1,4 @@ | |||
| FROM python:3.10-slim | |||
| FROM python:3.14.0a3-slim | |||
Check notice
Code scanning / Security Audit for Infrastructure
Ensure that a user for the container has been created. Note
| @@ -1,4 +1,4 @@ | |||
| FROM python:3.10-slim | |||
| FROM python:3.14.0a3-slim | |||
Check notice
Code scanning / Security Audit for Infrastructure
Ensure that HEALTHCHECK instructions have been added to container images. Note
Snyk has created this PR to fix 5 vulnerabilities in the dockerfile dependencies of this project.
Keeping your Docker base image up-to-date means you’ll benefit from security fixes in the latest version of your chosen image.
Snyk changed the following file(s):
argo/DockerfileWe recommend upgrading to
python:3.14.0a3-slim, as this image has only 34 known vulnerabilities. To do this, merge this pull request, then verify your application still works as expected.Vulnerabilities that will be fixed with an upgrade:
SNYK-DEBIAN12-ZLIB-6008963
SNYK-DEBIAN12-KRB5-1549480
SNYK-DEBIAN12-KRB5-6277411
SNYK-DEBIAN12-KRB5-6277412
SNYK-DEBIAN12-KRB5-6277421
Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.