test #1613
Open
test #1613
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#1529) * [RAPTOR-13903] Bump moderation lib version again (#1527) * [RAPTOR-13903] Bump moderation lib version again This version has a critical fix while posting custom metrics and also updates the Bedrock models support * Reconcile dependencies, updated IDs, tags --------- Co-authored-by: svc-harness-git2 <svc-harness-git2@datarobot.com> * Reconcile dependencies, updated IDs, tags --------- Co-authored-by: svc-harness-git2 <svc-harness-git2@datarobot.com>
… (#1533) This environment was specifically used for global models work. We are now maintaining the global models environment in its own repository and not here. Removing all references to this environment from here
* [VUL-11510] Bulk resolved CVEs (#1541) * [RAPTOR-13878] Bumped protobuf version * [RAPTOR-13876] Bumped protobuf version for env-python * [RAPTOR-13874] Bumped protobuf version for env-python-xgboost * [RAPTOR-13872] Bumped protobuf version for env-python-sklearn * [RAPTOR-13869] Bumped protobuf version for python3-pytorch * [RAPTOR-13867] Bumped protobuf version for python3-pmml * [RAPTOR-13865] Bumped protobuf version for python3-onnx * [RAPTOR-13863] Bumped protobuf version for python3-keras * [RAPTOR-13861] Bumped protobuf version for java-codegen * Reconcile dependencies, updated IDs, tags --------- Co-authored-by: svc-harness-git2 <svc-harness-git2@datarobot.com> * Reconcile dependencies, updated IDs, tags --------- Co-authored-by: Petro Zdeb <petro.zdeb@datarobot.com> Co-authored-by: svc-harness-git2 <svc-harness-git2@datarobot.com>
* [RAPTOR-14067] bump drum and mlops in all the envs (#1546) * [YOLO] bump drum and mlops in all the envs * Reconcile dependencies, updated IDs, tags --------- Co-authored-by: svc-harness-git2 <svc-harness-git2@datarobot.com> * Reconcile dependencies, updated IDs, tags --------- Co-authored-by: svc-harness-git2 <svc-harness-git2@datarobot.com>
…uirements and run_agent for GenAI Agents (#1549) * Cherry pick environment changes to release 11.1 * Update requirements.txt * Fix rebase * Newline
This reverts commit 383f993.
* [RAPTOR-14113] bump drum in VLLM env to 1.16.20 * Reconcile dependencies, updated IDs, tags --------- Co-authored-by: svc-harness-git2 <svc-harness-git2@datarobot.com>
…19] Fixing CVE-2025-48379, CVE-2024-47081, CVE-2025-50181 and CVE-2025-50182 (#1555) (#1556) * [VUL-14360][VUL-9146][VUL-11518][VUL-11519] Fixing CVE-2025-48379, CVE-2024-47081, CVE-2025-50181 and CVE-2025-50182 (#1555) * [RAPTOR-14094][RAPTOR-14095][RAPTOR-14096][RAPTOR-14097][RAPTOR-14098][RAPTOR-14099][RAPTOR-14100][RAPTOR-14101][RAPTOR-14102] Bumped up a version of Pillow for CVE * Reconcile dependencies, updated IDs, tags * [RAPTOR-13877] Bumped up a version of urllib3 for CVE * [RAPTOR-13875] Bumped up a version of urllib3 for CVE * [RAPTOR-13873] Bumped up a version of urllib3 for CVE * [RAPTOR-13871] Bumped up a version of urllib3 for CVE * [RAPTOR-13868] Bumped up a version of urllib3 for CVE * [RAPTOR-13866] Bumped up a version of urllib3 for CVE * [RAPTOR-13864] Bumped up a version of urllib3 for CVE * [RAPTOR-13862] Bumped up a version of urllib3 for CVE * [RAPTOR-13879] Bumped up a version of urllib3 for CVE * [BUZZOK-26501] Bumped up a version of urllib3 for CVE * [RAPTOR-12952] Bumped up a version of requests for CVE * [RAPTOR-12949] Bumped up a version of requests for CVE * [RAPTOR-12947] Bumped up a version of requests for CVE * [RAPTOR-12945] Bumped up a version of requests for CVE * [RAPTOR-12942] Bumped up a version of requests for CVE * [RAPTOR-12940] Bumped up a version of requests for CVE * [RAPTOR-12938] Bumped up a version of requests for CVE * [RAPTOR-12936] Bumped up a version of requests for CVE * [RAPTOR-12933] Bumped up a version of requests for CVE * Reconcile dependencies, updated IDs, tags --------- Co-authored-by: svc-harness-git2 <svc-harness-git2@datarobot.com> * Reconcile dependencies, updated IDs, tags --------- Co-authored-by: svc-harness-git2 <svc-harness-git2@datarobot.com>
* [cherry-pick][RAPTOR-14144] Bump moderation lib version This version of the moderation library uses the non-deprecated version of azure/gpt-4o for LLM gateway and is required for agentic image * Reconcile dependencies, updated IDs, tags --------- Co-authored-by: svc-harness-git2 <svc-harness-git2@datarobot.com>
…ritical bugfixes for tracing (#1565) * Update source * Lint * Fix * CVE * Reconcile dependencies, updated IDs, tags * Fix reqs * CVEs --------- Co-authored-by: svc-harness-git2 <svc-harness-git2@datarobot.com>
…nai agents environment (#1567) * Cherry pick CVE fix to 11.1 * Reconcile dependencies, updated IDs, tags --------- Co-authored-by: svc-harness-git2 <svc-harness-git2@datarobot.com>
…om container, it breaks codespaces (#1575) * Force remove asyncio lib * Reconcile dependencies, updated IDs, tags * hadolint --------- Co-authored-by: svc-harness-git2 <svc-harness-git2@datarobot.com>
Note that this bumps all version ids in public drop environments to trigger rebuild, pulling in the latest base image, as the old one had CVE-2025-6069. This impacts the following list of tickets: * RAPTOR-14179 * RAPTOR-14180 * RAPTOR-14181 * RAPTOR-14182 * RAPTOR-14183 * RAPTOR-14199 * RAPTOR-14184 * RAPTOR-14185 * RAPTOR-14186 * RAPTOR-14187 * RAPTOR-14188 * RAPTOR-14189 * RAPTOR-14190 * RAPTOR-14191 * RAPTOR-14192 * RAPTOR-14200 * RAPTOR-14193 * RAPTOR-14194 * RAPTOR-14195
* [cherry-pick][RAPTOR-14202] Fix annoylib compilation nemoguardrails use annoy library which is mostly in C++ with python bindings. On EKS clusters, running nemoguard in playground and prod results in "Invalid opcode (core dumped)". This is because while installation of the annoy library, it is compiled using gcc and the compiled .so has some optimized instructions which become invalid on EKS - leading to core dumped With exporting compilation flags specifically for annoy lib, we make sure that the binary .so is compatible with x86_64 and works on all regression environments Tested this change for EKS cluster to ensure that nemo guard works and on AKS cluster to ensure that it is not introducing regression * Reconcile dependencies, updated IDs, tags --------- Co-authored-by: svc-harness-git2 <svc-harness-git2@datarobot.com>
* [APP-4435] Fix CVEs in Apps Dockefiles * Reconcile dependencies, updated IDs, tags --------- Co-authored-by: svc-harness-git2 <svc-harness-git2@datarobot.com>
* [BUZZOK-26790] Remove asyncio from datarobot moderations 11.1.23 removes the asyncio as separate wheel dependency of datarobot moderation library. It also has CVE fixes. * Reconcile dependencies, updated IDs, tags --------- Co-authored-by: svc-harness-git2 <svc-harness-git2@datarobot.com>
This should fix about 50 CVEs by rebuilding on the latest chainguard base.
yakov-g
force-pushed
the
yakov/11-1-test
branch
from
a7c0a08 to
d9af7d3
Compare
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This repository is public. Do not put here any private DataRobot or customer's data: code, datasets, model artifacts, .etc.
Summary
Rationale