ansible / awx-ee

An Ansible execution environment for AWX project
https://quay.io/ansible/awx-ee
Other
139 stars 162 forks source link

Are there incompatibilities between AWX and the latest version of setuptools/paramiko/pip? #227

Closed jean-christophe-manciot closed 11 months ago

jean-christophe-manciot commented 11 months ago

I have noticed some security vulnerabilities in the latest official awx-ee available here. Updating some python packages with their latest version would solve those flaws:

It could be performed with the following lines added in execution-environment.yml:

additional_build_steps:
  append_final:
    - RUN pip3 --disable-pip-version-check list --outdated --format=json | python3 -c "import json, sys; print('\n'.join([x['name'] for x in json.load(sys.stdin)]))" | xargs -n1 pip3 install -U

The fact that it has not been done might suggest some sort of incompatibilities with AWX. Is it the case or is it safe to upgrade them?

jean-christophe-manciot commented 11 months ago

Migrated to ansible community.