search

scalyr / scalyr-agent-2

The source code for Scalyr Agent 2, the daemon process Scalyr customers run on their servers to collect metrics and logs.
Apache License 2.0
70 stars 60 forks source link

[Snyk] Security upgrade python from 3.8-slim to 3.13.0a3-slim #1239

Closed jmakar-s1 closed 3 months ago

jmakar-s1 commented 7 months ago

This PR was automatically created by Snyk using the credentials of a real user.


Keeping your Docker base image up-to-date means you’ll benefit from security fixes in the latest version of your chosen image. #### Changes included in this PR - docker/Dockerfile.docker_monitor_testing_config We recommend upgrading to `python:3.13.0a3-slim`, as this image has only 45 known vulnerabilities. To do this, merge this pull request, then verify your application still works as expected. Some of the most important vulnerabilities in your base image include: | Severity | Priority Score / 1000 | Issue | Exploit Maturity | | :------: | :-------------------- | :---- | :--------------- | | ![low severity](https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/l.png "low severity") | **** | CVE-2023-6779
[SNYK-DEBIAN12-GLIBC-6210088](https://snyk.io/vuln/SNYK-DEBIAN12-GLIBC-6210088) | No Known Exploit | | ![low severity](https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/l.png "low severity") | **** | CVE-2023-6779
[SNYK-DEBIAN12-GLIBC-6210088](https://snyk.io/vuln/SNYK-DEBIAN12-GLIBC-6210088) | No Known Exploit | | ![low severity](https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/l.png "low severity") | **** | CVE-2023-6246
[SNYK-DEBIAN12-GLIBC-6210098](https://snyk.io/vuln/SNYK-DEBIAN12-GLIBC-6210098) | No Known Exploit | | ![low severity](https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/l.png "low severity") | **** | CVE-2023-6780
[SNYK-DEBIAN12-GLIBC-6210099](https://snyk.io/vuln/SNYK-DEBIAN12-GLIBC-6210099) | No Known Exploit | | ![critical severity](https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/c.png "critical severity") | **500** | Integer Overflow or Wraparound
[SNYK-DEBIAN12-ZLIB-6008963](https://snyk.io/vuln/SNYK-DEBIAN12-ZLIB-6008963) | No Known Exploit | --- **Note:** _You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs._ For more information: 🧐 [View latest project report](https://app.snyk.io/org/data_platformengineering/project/3278b9c4-b414-49a7-ad7a-38814354948e?utm_source=github&utm_medium=referral&page=fix-pr) πŸ›  [Adjust project settings](https://app.snyk.io/org/data_platformengineering/project/3278b9c4-b414-49a7-ad7a-38814354948e?utm_source=github&utm_medium=referral&page=fix-pr/settings) [//]: # 'snyk:metadata:{"prId":"9313dd5a-2ffd-457e-8cbd-a5c2c4a03c71","prPublicId":"9313dd5a-2ffd-457e-8cbd-a5c2c4a03c71","dependencies":[{"name":"python","from":"3.8-slim","to":"3.13.0a3-slim"}],"packageManager":"dockerfile","projectPublicId":"3278b9c4-b414-49a7-ad7a-38814354948e","projectUrl":"https://app.snyk.io/org/data_platformengineering/project/3278b9c4-b414-49a7-ad7a-38814354948e?utm_source=github&utm_medium=referral&page=fix-pr","type":"auto","patch":[],"vulns":["SNYK-DEBIAN12-ZLIB-6008963","SNYK-DEBIAN12-GLIBC-6210088","SNYK-DEBIAN12-GLIBC-6210098","SNYK-DEBIAN12-GLIBC-6210099"],"upgrade":["SNYK-DEBIAN12-GLIBC-6210088","SNYK-DEBIAN12-GLIBC-6210088","SNYK-DEBIAN12-GLIBC-6210098","SNYK-DEBIAN12-GLIBC-6210099","SNYK-DEBIAN12-ZLIB-6008963"],"isBreakingChange":false,"env":"prod","prType":"fix","templateVariants":["updated-fix-title","priorityScore"],"priorityScoreList":[500,null,null,null],"remediationStrategy":"vuln"}' --- **Learn how to fix vulnerabilities with free interactive lessons:** πŸ¦‰ [Learn about vulnerability in an interactive lesson of Snyk Learn.](https://learn.snyk.io/?loc=fix-pr)
github-actions[bot] commented 7 months ago

Test Results

βŸβ€„β€ˆβŸβ€„20 files  Β±0β€‚β€ƒβŸβ€„β€ˆβŸβ€„20 suites  Β±0   32m 47s :stopwatch: +57s 1β€ˆ477 tests Β±0  1β€ˆ457 :heavy_check_mark: Β±0β€‚β€ƒβŸβ€„20 :zzz: Β±0  0 :x: Β±0  7β€ˆ060 runs  Β±0  6β€ˆ835 :heavy_check_mark: Β±0  225 :zzz: Β±0  0 :x: Β±0 

Results for commit 78367b3d. ± Comparison against base commit c065ef06.

codecov[bot] commented 7 months ago

Codecov Report

All modified and coverable lines are covered by tests :white_check_mark:

Comparison is base (c065ef0) 81.58% compared to head (78367b3) 81.58%.

Additional details and impacted files [![Impacted file tree graph](https://app.codecov.io/gh/scalyr/scalyr-agent-2/pull/1239/graphs/tree.svg?width=650&height=150&src=pr&token=KrvyP8n7be&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=scalyr)](https://app.codecov.io/gh/scalyr/scalyr-agent-2/pull/1239?src=pr&el=tree&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=scalyr) ```diff @@ Coverage Diff @@ ## master #1239 +/- ## ========================================== + Coverage 81.58% 81.58% +0.01% ========================================== Files 176 176 Lines 42565 42565 Branches 4749 4749 ========================================== + Hits 34723 34726 +3 + Misses 6611 6610 -1 + Partials 1231 1229 -2 ``` [see 7 files with indirect coverage changes](https://app.codecov.io/gh/scalyr/scalyr-agent-2/pull/1239/indirect-changes?src=pr&el=tree-more&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=scalyr)