Conversation
|
In 5e3c00d, we fixed an additional CVE thanks to a new upstream release! |
|
I rebuilt the image with: |
BRONSOLO
left a comment
BRONSOLO
left a comment
There was a problem hiding this comment.
@antoinerg should this be landing against main with the idea being we'd cut the 5.4 release branch when we freeze off of main?
I initially wanted to do that, but Unless you have any objection, we'll merge cc @BRONSOLO |
|
Ah, interesting. @tarzzz @antoinerg sorry if this was already discussed by why the early branching for 5.4? |
|
@BRONSOLO We exclusively use branches for buildpacks work so that it's easier to sync main with upstream. There is documentation somewhere (i cant find) but the process to sync with upstream is:
Hope that's helpful. |
|
I think this one is ready for another round of review! See https://github.com/plotly/dek-deployment/pull/3963 for test details! |
* use newer cypthon build from PR plotly/paketo-buildpacks_cpython#8 * upgrade poetry-install@5.3-sp * upgrade poetry * upgrade pipenv-install * upgrade pip * upgrade pip-install * upgarde miniconda * upgrade conda-env-update * fixup pipenv * update version numbers * upgarde poetry-run to 0.4.22 * upgrade python-start * change buildpack versiont to `5.4.0`
4 participants
Closes https://github.com/plotly/dekn/issues/7363 by bringing the changes from #14
A bunch of my earlier PRs were merged upstream but no releases were made 😿
I decided to reuse the images I made for
5.3-spwhich were tested to work. This is less error-prone considering this is late.The only new PR to review in conjunction to this one is plotly/paketo-buildpacks_cpython#8
Components to upgrade:
v0.13.0paketo-buildpacks_cpython#8I built and pushed a new image: