Skip to content

fix(docker): upgrade python-plotting to 3.14.2-alpine for security patches #287

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
adthrasher merged 2 commits into from
Jan 13, 2026
Merged

fix(docker): upgrade python-plotting to 3.14.2-alpine for security patches #287

adthrasher merged 2 commits into from
Jan 13, 2026
+2 −2

Conversation

Copy link

Copilot AI commented Jan 13, 2026
edited
Loading

Upgrades Python base image from 3.13.1-alpine to 3.14.2-alpine to address 4 vulnerabilities in SQLite and musl (2 critical, 2 high severity).

Before submitting this PR, please make sure:

  • You have added a few sentences describing the PR here.
  • The code passes all CI tests without any errors or warnings.
  • You have added tests (when appropriate).
  • You have added an entry in any relevant CHANGELOGs (when appropriate).
  • If you have made any changes to the scripts/ or docker/ directories, please ensure any image versions have been incremented accordingly!
  • You have updated the README or other documentation to account for these changes (when appropriate).

Changes

  • docker/python-plotting/Dockerfile: Base image python:3.13.1-alpinepython:3.14.2-alpine
  • docker/python-plotting/package.json: Version bump 2.0.62.0.7
  • workflows/methylation/methylation-cohort.wdl: Container reference updated to 2.0.7

Security Impact

Fixes vulnerabilities:

  • SNYK-ALPINE321-SQLITE-12675067 (Critical, CVE score 264)
  • SNYK-ALPINE321-SQLITE-11191065 (Critical, CVE-2025-6965, CVE score 263)
  • SNYK-ALPINE321-SQLITE-9712340 (High, CVE score 161)
  • SNYK-ALPINE321-MUSL-8720634 (High, CVE-2025-26519, CVE score 139)
Original prompt

Pull Request: #285

💬 We'd love your input! Share your thoughts on Copilot coding agent in our 2 minute survey.

@adthrasher
Bump python-plotting version to 2.0.7 for Python 3.14.2-alpine upgrade
c9b78bf 
Co-authored-by: adthrasher <1165729+adthrasher@users.noreply.github.com>
Copilot AI changed the title [WIP] Add new steps to workflow for better efficiency fix(docker): upgrade python-plotting to 3.14.2-alpine for security patches Jan 13, 2026
Copilot AI requested a review from adthrasher January 13, 2026 15:10
@adthrasher adthrasher marked this pull request as ready for review January 13, 2026 15:17
@adthrasher adthrasher merged commit 36c1bc2 into snyk-fix-ea1cc9c84bf033ad26092e5ee131a5e3 Jan 13, 2026
20 checks passed
@adthrasher adthrasher deleted the copilot/add-new-workflow-steps branch January 13, 2026 15:18
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@adthrasher adthrasher Awaiting requested review from adthrasher

Assignees

@adthrasher adthrasher

Copilot code review Copilot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@adthrasher