exasol · ckunki · Feb 19, 2024 · Feb 14, 2024 · Feb 14, 2024 · Feb 14, 2024
diff --git a/.github/actions/prepare_poetry_env/action.yml b/.github/actions/prepare_poetry_env/action.yml
@@ -4,7 +4,7 @@ inputs:
   python-version:
     description: 'The Python version to use'
     required: true
-    default: '3.8'
+    default: '3.10'
 runs:
   using: "composite"
   steps:

diff --git a/.github/workflows/check_version.yaml b/.github/workflows/check_version.yaml
@@ -15,4 +15,4 @@ jobs:
       - name: Setup Python & Poetry Environment
         uses: ./.github/actions/prepare_poetry_env
       - name: Check Release
-        run: ./scripts/build/check_release.sh "python3.8"
+        run: ./scripts/build/check_release.sh "python3.10"
diff --git a/.github/workflows/release_droid_upload_github_release_assets.yml b/.github/workflows/release_droid_upload_github_release_assets.yml
@@ -17,7 +17,7 @@ jobs:
       - name: Setup Python & Poetry Environment
         uses: ./.github/actions/prepare_poetry_env
       - name: Build Release
-        run: ./scripts/build/check_release.sh "python3.8"
+        run: ./scripts/build/check_release.sh "python3.10"
 
   upload:
     needs: check-release

diff --git a/aws-code-build/ci/buildspec.yaml b/aws-code-build/ci/buildspec.yaml
@@ -10,12 +10,12 @@ phases:
 
   install:
     runtime-versions:
-      python: 3.8
+      python: 3.10
     commands:
       - git submodule update --init --recursive
       - curl -sSL https://install.python-poetry.org | python3 -
       - export PATH=$PATH:$HOME/.local/bin
-      - poetry env use $(command -v "python3.8")
+      - poetry env use $(command -v "python3.10")
       - poetry install
 
   pre_build:

diff --git a/aws-code-build/ci/buildspec_release.yaml b/aws-code-build/ci/buildspec_release.yaml
@@ -15,12 +15,12 @@ phases:
 
   install:
     runtime-versions:
-      python: 3.8
+      python: 3.10
     commands:
       - git submodule update --init --recursive
       - curl -sSL https://install.python-poetry.org | python3 -
       - export PATH=$PATH:$HOME/.local/bin
-      - poetry env use $(command -v "python3.8")
+      - poetry env use $(command -v "python3.10")
       - poetry install
 
   pre_build:

diff --git a/dependencies.md b/dependencies.md
@@ -1,6 +1,6 @@
 # Dependencies
 
-- Python 3.8
+- Python 3.10
 - Poetry
 - AWS
 
diff --git a/doc/changes/changelog.md b/doc/changes/changelog.md
@@ -1,4 +1,5 @@
 # Changes
 
+* [0.3.0](changes_0.3.0.md)
 * [0.2.0](changes_0.2.0.md)
 * [0.1.0](changes_0.1.0.md)
diff --git a/doc/changes/changes_0.2.0.md b/doc/changes/changes_0.2.0.md
@@ -12,6 +12,21 @@ Version: 0.2.0
 
 ## Features
 
+## Security
+
+* #187: Fixed vulnerabilities by updating dependencies
+  * `ansible` from 6.7.0 to 7.7.0 to fix CVE-2023-5115, CVE-2022-3697.
+  * `ansible-core` from 2.13.13 to 2.14.14 to fix CVE-2024-0690, CVE-2023-5764.
+  * `urllib3` from 1.26.16 to 1.26.18 to fix CVE-2023-45803, CVE-2023-43804.
+  * `tornado` from 6.3.2 to 6.4 to fix vulnerability to HTTP request smuggling via improper parsing of `Content-Length` fields and chunk lengths.
+  * `paramiko` from 3.2.0 to 3.4.0 to fix CVE-2023-48795.
+  * `jupyterlab` from 4.0.6 to 4.1.1 to fix CVE-2024-22420, CVE-2024-22421.
+  * `jinja2` from 3.1.2 to 3.1.3 to fix CVE-2024-22195.
+  * `gitpython` from 3.1.31 to 3.1.41 to fix CVE-2024-22190, CVE-2023-41040, CVE-2023-40590, CVE-2023-40267.
+  * `cryptography` from 41.0.1 to 42.0.2 to fix CVE-2023-50782, CVE-2023-49083, CVE-2023-38325.
+  * `certifi` from 2023.5.7 to 2024.2.2 to fix CVE-2023-37920.
+  * `requests` from 2.25.1 to 2.31.0 to fix CVE-2023-32681.
+
 ## Bug Fixes
 
 * #163: Fixed version number of VM images etc.

diff --git a/doc/changes/changes_0.3.0.md b/doc/changes/changes_0.3.0.md
@@ -0,0 +1,34 @@
+# ai-lab 0.3.0, released 2024-??-??
+
+Code name: Post release fixes
+
+## Summary
+
+This release fixes vulnerabilities by updating dependencies in file `poetry.lock` and Ansible files.
+
+## AI-Lab-Release
+
+Version: 0.3.0
+
+## Features
+
+## Security
+
+* #187: Fixed vulnerabilities by updating dependencies
+  * `ansible` from 6.7.0 to 7.7.0 to fix CVE-2023-5115, CVE-2022-3697.
+  * `ansible-core` from 2.13.13 to 2.14.14 to fix CVE-2024-0690, CVE-2023-5764.
+  * `urllib3` from 1.26.16 to 1.26.18 to fix CVE-2023-45803, CVE-2023-43804.
+  * `tornado` from 6.3.2 to 6.4 to fix vulnerability to HTTP request smuggling via improper parsing of `Content-Length` fields and chunk lengths.
+  * `paramiko` from 3.2.0 to 3.4.0 to fix CVE-2023-48795.
+  * `jupyterlab` from 4.0.6 to 4.1.1 to fix CVE-2024-22420, CVE-2024-22421.
+  * `jinja2` from 3.1.2 to 3.1.3 to fix CVE-2024-22195.
+  * `gitpython` from 3.1.31 to 3.1.41 to fix CVE-2024-22190, CVE-2023-41040, CVE-2023-40590, CVE-2023-40267.
+  * `cryptography` from 41.0.1 to 42.0.2 to fix CVE-2023-50782, CVE-2023-49083, CVE-2023-38325.
+  * `certifi` from 2023.5.7 to 2024.2.2 to fix CVE-2023-37920.
+  * `requests` from 2.25.1 to 2.31.0 to fix CVE-2023-32681.
+
+## Bug Fixes
+
+## Documentation
+
+## Refactoring
diff --git a/doc/developer_guide/developer_guide.md b/doc/developer_guide/developer_guide.md
@@ -10,7 +10,7 @@ the virtual image formats.
 
 This package requires:
 
-* Python (>=3.8)
+* Python (>=3.19)
 * Poetry (>=1.2.0)
 * Docker (for integration tests)
 * AWS CLI

diff --git a/exasol/ds/sandbox/runtime/ansible/roles/jupyter/files/notebook/utils/access_store_ui.ipynb b/exasol/ds/sandbox/runtime/ansible/roles/jupyter/files/notebook/utils/access_store_ui.ipynb
@@ -111,7 +111,7 @@
    "name": "python",
    "nbconvert_exporter": "python",
    "pygments_lexer": "ipython3",
-   "version": "3.8.10"
+   "version": "3.9.5.10"
   }
  },
  "nbformat": 4,

diff --git a/exasol/ds/sandbox/runtime/ansible/roles/jupyter/files/requirements_jupyter.txt b/exasol/ds/sandbox/runtime/ansible/roles/jupyter/files/requirements_jupyter.txt
@@ -1,4 +1,4 @@
-jupyterlab==4.0.6
+jupyterlab==4.1.1
 # enable interactive Javascript widgets in the notebooks
 ipywidgets==8.1.1
 pexpect==4.8.0