Apply security and compatibility updates for PyAirbyte dependencies (Sep 2024)

airbytehq / PyAirbyte

PyAirbyte brings the power of Airbyte to every Python developer.

https://docs.airbyte.com/pyairbyte

Other

207 stars 30 forks source link

Apply security and compatibility updates for PyAirbyte dependencies (Sep 2024) #386

Open aaronsteers opened 4 hours ago

aaronsteers commented 4 hours ago

There are a number of dependencies of PyAirbyte which are stale relative to security updates. We'd also like to build a formal process to stay on top of relevant security and dependency updates.

This issue will track a number of action items:

### Tasks
- [x] Enable GitHub security scanning
- [x] Enable dependabot in GitHub
- [x] Handle initial of dependabot recommendations
- [ ] #382
- [ ] https://github.com/airbytehq/PyAirbyte/pull/383
- [ ] Make issues for any other remaining long-term action items

aaronsteers commented 3 hours ago

As noted in task list above, this week we enabled dependabot updates and GitHub security scanning.

We've also merged 9 dependabot updates this week, which will release shortly.

The largest blocker right now for the other libraries is the SQLAlchemy 2.x bump. That was previously blocked by Snowflake and BigQuery drivers not supporting the 2.x, which both have now gotten caught up on. I have this draft PR as a WIP, but it may need to be broken into smaller updates.

aaronsteers commented 3 hours ago

Just released:

Patch release with low-hanging fruit dependabot updates:
- https://github.com/airbytehq/PyAirbyte/releases/tag/v0.17.8