Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Python container images upgrade to latest minor version (security upgrade) #2233

Merged
merged 2 commits into from
Oct 31, 2023
Merged

Python container images upgrade to latest minor version (security upgrade) #2233

merged 2 commits into from
Oct 31, 2023

Conversation

mathieu-benoit
Copy link
Contributor

@mathieu-benoit mathieu-benoit commented Oct 31, 2023
edited
Loading

Python container images upgrade:

  • loadgenerator: 3.11.1 --> 3.11.6
  • emailservice and recommendationservice: 3.10.8 --> 3.10.13

It's just a security upgrade to the latest patch version for the 3 apps mentioned above. Not trying to upgrade to latest minor version. Upgrading to next or latest minor versions involves more work/research, you can see for example that the current tentative by Renovate is failing on trying to do this: #2226.

https://www.python.org/downloads/:

Currently, the GKE Security Posture feature highlights this:
image

With this PR, we are now at 0 vulnerabilities.

@mathieu-benoit mathieu-benoit marked this pull request as draft October 31, 2023 19:40
@mathieu-benoit mathieu-benoit changed the title Python container images upgrade Python container images upgrade to latest minor version (security upgrade) Oct 31, 2023
@mathieu-benoit
Copy link
Contributor Author

mathieu-benoit commented Oct 31, 2023
edited
Loading

Tested in ephemeral IP/env here: http://34.31.200.32/, working successfully. Also tested locally with these 3 associated images:

  • gcr.io/online-boutique-ci/refs/pull/2233/loadgenerator:2233
  • gcr.io/online-boutique-ci/refs/pull/2233/emailservice:2233
  • gcr.io/online-boutique-ci/refs/pull/2233/recommendationservice:2233

@mathieu-benoit mathieu-benoit marked this pull request as ready for review October 31, 2023 19:59
@mathieu-benoit
Copy link
Contributor Author

Ready for your review, thanks!

NimJay
NimJay approved these changes Oct 31, 2023
View reviewed changes
Copy link
Collaborator

@NimJay NimJay left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks so much for these updates (and the super descriptive PR description — helped me understand the impact here), @mathieu-benoit! 👏

@NimJay NimJay merged commit 21b5bd6 into GoogleCloudPlatform:main Oct 31, 2023
6 checks passed
@mathieu-benoit mathieu-benoit deleted the python-container-images-upgrade branch October 31, 2023 23:08
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@NimJay NimJay NimJay approved these changes

@yoshi-approver yoshi-approver Awaiting requested review from yoshi-approver yoshi-approver is a code owner

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@mathieu-benoit @NimJay