CPU count and vulnerabilities (!40) · Merge requests · sphn-semantic-framework / SPHN Connector

Nicola Stoira requested to merge sphnc-362 into main May 21, 2024

Main change is to set self.machine_cpus = psutil.cpu_count(logical=True) in config.py

In the CI/CD (not locally) the build was failing due to some packages versions conflicts. I tried to remove the versions for those packages and it is now able to build the images. The issue is that there is still a High vulnerability that I didn't manage to fix due to the following error:

 > [sphn-connector_reverse-proxy:latest 3/6] RUN apk update && apk add --no-cache curl==8.5.0-r0 libcrypto3 libcurl==8.5.0-r0 curl=8.5.0-r0 libssl3 libexpat=2.6.2-r0 libxml2=2.11.7-r0:
#0 3.479 v3.18.6-230-g10975133a7d [https://dl-cdn.alpinelinux.org/alpine/v3.18/community]
#0 3.479 OK: 20090 distinct packages available
#0 3.913 fetch https://dl-cdn.alpinelinux.org/alpine/v3.18/main/x86_64/APKINDEX.tar.gz
#0 4.269 fetch https://dl-cdn.alpinelinux.org/alpine/v3.18/community/x86_64/APKINDEX.tar.gz
#0 5.456 ERROR: unable to select packages:
#0 5.469   libxml2-2.11.6-r0:
#0 5.469     breaks: world[libxml2=2.11.7-r0]
#0 5.470     satisfies: nginx-module-njs-1.25.3.0.8.2-r1[so:libxml2.so.2]
#0 5.470                nginx-module-xslt-1.25.3-r1[so:libxml2.so.2]
#0 5.470                libxslt-1.1.38-r0[so:libxml2.so.2]

Moreover, there is another vulnerability related to a Python package. I'm not able to update it because Apache Airflow 2.9.0 requires it to be between 2.0 and 3.0.

We observe similar vulnerabilities on Einstein.

CPU count and vulnerabilities

Merge request reports