[mlflow] Update to MLflow>=2.2.1 - Patch Critical Remote file access vulnerability
#43
Labels
enhancement
New feature or request
Comments
|
We would appreciate this update as well, is there any way we can help @burakince ? |
|
Opened PR47 to upgrade MLFlow to 2.4.2. Note that this doesn't build/push the new image to ArtifactHub. That needs to happen before this will work. |
|
If it's helpful, I was able to use this chart with an updated mlflow by just changing the image to a more up-to-date version, such as bitnami/mlflow. Though this chart would definitely benefit from an update. |
|
We found the community too poorly supported and moved to Databricks. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Is your feature request related to a problem ?
There is a reported critical remote file access vulnerability within the older version of MLflow, with the
mlflow serverandmlflow ui. More details here: GHSA-xg73-94fp-g449Describe the solution you'd like.
Can we please get an update to
MLflow >= 2.21!Describe alternatives you've considered.
Additional context.
No response
The text was updated successfully, but these errors were encountered: