Skip to content

Commit

Permalink
chore(python-runtime): pin libexpat version to fix CVE-2023-52425 (#3142
Browse files Browse the repository at this point in the history
)
  • Loading branch information
mowies authored Feb 28, 2024
1 parent 4febd99 commit 79870f4
Show file tree
Hide file tree
Showing 2 changed files with 2 additions and 4 deletions.
3 changes: 1 addition & 2 deletions .github/actions/spelling/expect.txt
Original file line number Diff line number Diff line change
Expand Up @@ -45,7 +45,6 @@ argocd
argoproj
ARMO
artifacthub
Artificathub
asdfg
authurl
automerge
Expand Down Expand Up @@ -373,6 +372,7 @@ kyverno
lastword
Lato
LFC
libexpat
Lifcycle
lifecyclekeptnsh
linenums
Expand Down Expand Up @@ -448,7 +448,6 @@ onsi
opencontainers
openfeature
Openshift
openssf
opentelemetry
opentracing
operatorcommon
Expand Down
3 changes: 1 addition & 2 deletions runtimes/python-runtime/Dockerfile
Original file line number Diff line number Diff line change
Expand Up @@ -6,8 +6,7 @@ LABEL org.opencontainers.image.source="https://github.com/keptn/lifecycle-toolki
org.opencontainers.image.vendor="Keptn" \
org.opencontainers.image.licenses="Apache-2.0"


RUN apk --no-cache add curl
RUN apk --no-cache add curl libexpat==2.6.0-r0

RUN pip install -q --disable-pip-version-check pyyaml GitPython requests

Expand Down

0 comments on commit 79870f4

Please sign in to comment.