fix(deps): bump pypdf, python-multipart, authlib, langsmith to fix CVEs#1250
Conversation
Addresses remaining Dependabot security alerts (151 open): - pypdf 6.10.0 → 6.10.2 (medium CVE) - python-multipart, authlib (1.6.11), langsmith (0.7.31): transitive bumps via uv lock upgrade - langchain-text-splitters: final remaining lock file updated Changes: - pypdf==6.10.2 in constraint-dependencies across 19 pyproject.toml files - Regenerated 38 uv.lock files (incl. mcp/ subworkspaces) upgrading: pypdf, python-multipart, authlib, langsmith, langchain-text-splitters - scrapy: no fix available upstream, left as-is Assisted-by: Claude:claude-sonnet-4-6 Signed-off-by: Sri Aradhyula <sraradhy@cisco.com>
|
✅ No proprietary content detected. This PR is clear for review! |
🐳 Prebuild Dynamic Agents Docker Image PublishedRepository: Usagedocker pull ghcr.io/cnoe-io/prebuild/caipe-dynamic-agents:fix-pypdf-authlib-langsmith-vulnerabilities-2Test in Helm valuesdynamic-agents:
image:
repository: ghcr.io/cnoe-io/prebuild/caipe-dynamic-agents
tag: "fix-pypdf-authlib-langsmith-vulnerabilities-2"
|
🐳 Prebuild Docker Image PublishedAgent: Usagedocker pull ghcr.io/cnoe-io/prebuild/mcp-jira:fix-pypdf-authlib-langsmith-vulnerabilities-2
|
🐳 Prebuild Docker Image PublishedAgent: Usagedocker pull ghcr.io/cnoe-io/prebuild/mcp-confluence:fix-pypdf-authlib-langsmith-vulnerabilities-2
|
🐳 Prebuild Docker Image PublishedRepository: Usagedocker pull ghcr.io/cnoe-io/prebuild/ai-platform-engineering:fix-pypdf-authlib-langsmith-vulnerabilities-2
|
🐳 Prebuild Docker Image PublishedAgent: Usagedocker pull ghcr.io/cnoe-io/prebuild/mcp-pagerduty:fix-pypdf-authlib-langsmith-vulnerabilities-2
|
🐳 Prebuild Docker Image PublishedAgent: Usagedocker pull ghcr.io/cnoe-io/prebuild/mcp-victorops:fix-pypdf-authlib-langsmith-vulnerabilities-2
|
🐳 Prebuild Docker Image PublishedAgent: Usagedocker pull ghcr.io/cnoe-io/prebuild/mcp-netutils:fix-pypdf-authlib-langsmith-vulnerabilities-2
|
🐳 Prebuild Docker Image PublishedAgent: Usagedocker pull ghcr.io/cnoe-io/prebuild/mcp-splunk:fix-pypdf-authlib-langsmith-vulnerabilities-2
|
🐳 Prebuild Docker Image PublishedComponent: Usagedocker pull ghcr.io/cnoe-io/prebuild/caipe-rag-ingestors:fix-pypdf-authlib-langsmith-vulnerabilities-2
|
🐳 Prebuild Docker Image PublishedAgent: Usagedocker pull ghcr.io/cnoe-io/prebuild/mcp-webex:fix-pypdf-authlib-langsmith-vulnerabilities-2
|
🐳 Prebuild Docker Image PublishedAgent: Usagedocker pull ghcr.io/cnoe-io/prebuild/mcp-komodor:fix-pypdf-authlib-langsmith-vulnerabilities-2
|
🐳 Prebuild Docker Image PublishedAgent: Usagedocker pull ghcr.io/cnoe-io/prebuild/mcp-argocd:fix-pypdf-authlib-langsmith-vulnerabilities-2
|
eti-sre-cicd
deleted the
prebuild/fix/pypdf-authlib-langsmith-vulnerabilities
branch
github-project-automation
bot
moved this to Done
in CAIPE (AI Platform Engineering) Project Backlog
🐳 Prebuild Docker Image PublishedAgent: Usagedocker pull ghcr.io/cnoe-io/prebuild/mcp-backstage:fix-pypdf-authlib-langsmith-vulnerabilities-2
|
🐳 Prebuild Docker Image PublishedComponent: Usagedocker pull ghcr.io/cnoe-io/prebuild/caipe-rag-server:fix-pypdf-authlib-langsmith-vulnerabilities-1
|
🐳 Prebuild Docker Image PublishedAgent: Usagedocker pull ghcr.io/cnoe-io/prebuild/agent-github:fix-pypdf-authlib-langsmith-vulnerabilities-2
|
🐳 Prebuild Docker Image PublishedAgent: Usagedocker pull ghcr.io/cnoe-io/prebuild/agent-argocd:fix-pypdf-authlib-langsmith-vulnerabilities-1
|
🐳 Prebuild Docker Image PublishedComponent: Usagedocker pull ghcr.io/cnoe-io/prebuild/caipe-rag-agent-ontology:fix-pypdf-authlib-langsmith-vulnerabilities-1
|
🐳 Prebuild Docker Image PublishedAgent: Usagedocker pull ghcr.io/cnoe-io/prebuild/agent-netutils:fix-pypdf-authlib-langsmith-vulnerabilities-1
|
🐳 Prebuild Docker Image PublishedAgent: Usagedocker pull ghcr.io/cnoe-io/prebuild/agent-jira:fix-pypdf-authlib-langsmith-vulnerabilities-1
|
🐳 Prebuild Docker Image PublishedAgent: Usagedocker pull ghcr.io/cnoe-io/prebuild/agent-aws:fix-pypdf-authlib-langsmith-vulnerabilities-1
|
🐳 Prebuild Docker Image PublishedAgent: Usagedocker pull ghcr.io/cnoe-io/prebuild/agent-confluence:fix-pypdf-authlib-langsmith-vulnerabilities-1
|
🐳 Prebuild Docker Image PublishedAgent: Usagedocker pull ghcr.io/cnoe-io/prebuild/agent-webex:fix-pypdf-authlib-langsmith-vulnerabilities-1
|
🐳 Prebuild Docker Image PublishedAgent: Usagedocker pull ghcr.io/cnoe-io/prebuild/agent-slack:fix-pypdf-authlib-langsmith-vulnerabilities-1
|
🐳 Prebuild Docker Image PublishedAgent: Usagedocker pull ghcr.io/cnoe-io/prebuild/agent-gitlab:fix-pypdf-authlib-langsmith-vulnerabilities-1
|
🐳 Prebuild Docker Image PublishedAgent: Usagedocker pull ghcr.io/cnoe-io/prebuild/agent-splunk:fix-pypdf-authlib-langsmith-vulnerabilities-1
|
🐳 Prebuild Docker Image PublishedAgent: Usagedocker pull ghcr.io/cnoe-io/prebuild/agent-weather:fix-pypdf-authlib-langsmith-vulnerabilities-1
|
🐳 Prebuild Docker Image PublishedAgent: Usagedocker pull ghcr.io/cnoe-io/prebuild/agent-victorops:fix-pypdf-authlib-langsmith-vulnerabilities-1
|
🐳 Prebuild Docker Image PublishedAgent: Usagedocker pull ghcr.io/cnoe-io/prebuild/agent-pagerduty:fix-pypdf-authlib-langsmith-vulnerabilities-1
|
🐳 Prebuild Docker Image PublishedAgent: Usagedocker pull ghcr.io/cnoe-io/prebuild/agent-backstage:fix-pypdf-authlib-langsmith-vulnerabilities-1
|
🐳 Prebuild Docker Image PublishedAgent: Usagedocker pull ghcr.io/cnoe-io/prebuild/agent-template:fix-pypdf-authlib-langsmith-vulnerabilities-1
|
🐳 Prebuild Docker Image PublishedAgent: Usagedocker pull ghcr.io/cnoe-io/prebuild/agent-komodor:fix-pypdf-authlib-langsmith-vulnerabilities-1
|
2 participants
Summary
pypdffrom6.10.0to6.10.2in constraint-dependencies across 19 pyproject.toml files (medium CVE)authlibupgraded to1.6.11via transitive lock update (medium CVE)langsmithupgraded to0.7.31via transitive lock update (medium CVE)python-multipartupgraded to0.0.26via transitive lock update (medium CVE)langchain-text-splitterslock file updated (jira agent)Dependabot alerts addressed
Resolves ~149 of the 151 remaining open Dependabot alerts. The 2 remaining (scrapy DoS) have no upstream fix available.
Notes
Test plan