Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

CVEs due the current version of Debian that Feast uses #3855

Open
sourabh-raja-murali opened this issue Dec 4, 2023 · 3 comments
Open

CVEs due the current version of Debian that Feast uses #3855

sourabh-raja-murali opened this issue Dec 4, 2023 · 3 comments
Assignees
@shuchu
Labels
kind/techdebt

Comments

@sourabh-raja-murali
Copy link

Above are some vulnerabilities as part of the current Debian version that Feast uses.

Possible Solution

Updating the Debian version would solve these CVEs.

PS: Have indicated just a few critical CVEs. There are other moderate ones as well again due to the Debian version.
@shuchu
Copy link
Collaborator

shuchu commented Dec 5, 2023
edited
Loading

Feast uses the Python3.8/3.9 images as base images. The Python3.10 does not seem to have high Vulnerabilities.

I'll keep an eyeeye on this when we do the upgration. It will involve multiple tests. The current CI/CD is using Python3.8.

@robhowley
Copy link
Contributor

at this point feast should prob drop 3.8 entirely and start phasing out 3.9. see python version calendar.

image

@shuchu shuchu self-assigned this Apr 16, 2024
@shuchu
Copy link
Collaborator

shuchu commented Apr 16, 2024
edited
Loading

Feast is upgraded to support Python >= 3.9.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@shuchu shuchu

Labels
kind/techdebt
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@jeremyary @shuchu @robhowley @sourabh-raja-murali