[Snyk] Security upgrade python from 3.10.14 to 3.14.0rc2 #740
Conversation
…ilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-DEBIAN12-FREETYPE-9402511 - https://snyk.io/vuln/SNYK-DEBIAN12-FREETYPE-9402511 - https://snyk.io/vuln/SNYK-DEBIAN12-FREETYPE-9402511 - https://snyk.io/vuln/SNYK-DEBIAN12-GIT-6846203 - https://snyk.io/vuln/SNYK-DEBIAN12-GIT-6846203
🎉 Snyk checks have passed. No issues have been found so far.✅ security/snyk check is complete. No issues have been found. (View Details) |
There was a problem hiding this comment.
Pull Request Overview
This PR upgrades the Python base image in a Dockerfile from version 3.10.14 to 3.14.0rc2 to address security vulnerabilities identified by Snyk. The upgrade aims to fix 2 critical/high severity vulnerabilities related to FreType and Git components in the Debian base image.
- Upgrades Python base image from 3.10.14 to 3.14.0rc2
- Addresses security vulnerabilities including CVE-2025-27363 and Git link following issues
- Maintains existing application functionality with updated base image
Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.
| @@ -1,4 +1,4 @@ | |||
| FROM python:3.10.14 | |||
| FROM python:3.14.0rc2 | |||
There was a problem hiding this comment.
Upgrading from Python 3.10.14 to 3.14.0rc2 is a major version jump that may introduce breaking changes. This could affect compatibility with existing code and dependencies. Consider testing thoroughly and potentially upgrading incrementally through stable intermediate versions.
| FROM python:3.14.0rc2 | |
| FROM python:3.10.14 |
Copilot uses AI. Check for mistakes.
Snyk has created this PR to fix 2 vulnerabilities in the dockerfile dependencies of this project.
Keeping your Docker base image up-to-date means you’ll benefit from security fixes in the latest version of your chosen image.
Snyk changed the following file(s):
kubernetes/workshop/pods101/pods02-DockerfileWe recommend upgrading to
python:3.14.0rc2, as this image has only 179 known vulnerabilities. To do this, merge this pull request, then verify your application still works as expected.Vulnerabilities that will be fixed with an upgrade:
SNYK-DEBIAN12-FREETYPE-9402511
SNYK-DEBIAN12-FREETYPE-9402511
SNYK-DEBIAN12-FREETYPE-9402511
SNYK-DEBIAN12-GIT-6846203
SNYK-DEBIAN12-GIT-6846203
Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.