Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[CT-2112] [Bug] Snyk: dependency vulnerability snowflake-connector-python==2.8.2 #469

Closed
2 tasks done
dataders opened this issue Feb 14, 2023 · 3 comments · Fixed by #472, #476, #506, #507 or #508
Closed
2 tasks done

[CT-2112] [Bug] Snyk: dependency vulnerability snowflake-connector-python==2.8.2 #469

dataders opened this issue Feb 14, 2023 · 3 comments · Fixed by #472, #476, #506, #507 or #508
Assignees
@mikealfare @dbeatty10
Labels
bug Something isn't working

Comments

@dataders
Copy link
Contributor

Is this a new bug in dbt-snowflake?

  • I believe this is a new bug in dbt-snowflake
  • I have searched the existing issues, and I could not find an existing issue for this bug

Current Behavior

@QMalcolm brought Snyk Vulnerability report for snowflake-connector-python==2.8.2 to our attention.

Add this to the list of reasons why we release a patch release for 1.4 where snowflake-connector-python>=3.0.0:

Expected Behavior

No Snyk vulnerabilities?

Steps To Reproduce

See Snyk report

Relevant log output

No response

Environment

- OS:
- Python:
- dbt-core:
- dbt-snowflake:

Additional Context

No response
@dataders dataders added bug Something isn't working triage labels Feb 14, 2023
@github-actions github-actions bot changed the title [Bug] Snyk: dependency vulnerability snowflake-connector-python==2.8.2 [CT-2112] [Bug] Snyk: dependency vulnerability snowflake-connector-python==2.8.2 Feb 14, 2023
@dbeatty10 dbeatty10 removed the triage label Feb 14, 2023
@dbeatty10 dbeatty10 self-assigned this Feb 16, 2023
@dbeatty10 dbeatty10 mentioned this issue Feb 16, 2023
Merged
6 tasks
@dbeatty10
Copy link
Contributor

Re-opening since #472 was reverted in #473

@dbeatty10 dbeatty10 reopened this Feb 17, 2023
@mikealfare mikealfare self-assigned this Feb 17, 2023
@mikealfare mikealfare mentioned this issue Feb 17, 2023
Merged
6 tasks
@mikealfare
Copy link
Contributor

Closed due to automation. This needs to be backported to dbt-snowflake>=1.1 and then it can be marked done.

@mikealfare mikealfare reopened this Mar 8, 2023
This was referenced Mar 8, 2023
Merged
Merged
Merged
Merged
This was linked to pull requests Mar 8, 2023
CT-2112: bump snowflake connector python (#476) #506
Merged
CT-2112: bump snowflake connector python (#476) #507
Merged
CT-2112: bump snowflake connector python (#476) #508
Merged
CT-2112: bump snowflake connector python (#476) #509
Merged
@mikealfare
Copy link
Contributor

This has been patched (1.5) and backported to versions 1.1 through 1.4

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@mikealfare mikealfare

@dbeatty10 dbeatty10

Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
3 participants
@dataders @mikealfare @dbeatty10