Skip to content

Avoid using --extra-index-url for security #2062

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
umangyadav wants to merge 6 commits into
base: develop
Choose a base branch
from
Open

Avoid using --extra-index-url for security #2062

umangyadav wants to merge 6 commits into from

Conversation

@umangyadav
Copy link
Member

@umangyadav umangyadav commented Oct 24, 2025
edited
Loading

Motivation

pip3 install searches for a package both on PyPI and on --extra-index-url if it is provided. If a package with same name exists on both then it picks the package with higher version from both.

Currently on PyPI hip-python package doesn't exist. Therefore someone can publish hip-python package with higher version on PyPI and in that case rocMLIR will fetch that one. This is a security vulnerability. This PR fixes that.

Technical Details

Specifying --index-url will force pip to install package from specific URL only. hip-python package on TestPyPI is owned by AMD. Therefore need to use that specific URL only.

--index-url can not be specific per package basis in requirements.txt file therefore i've moved it directly into Dockerfile.

https://www.websecuritylens.org/how-dependency-confusion-attack-works-and-how-to-prevent-it/

https://medium.com/@alex.birsan/dependency-confusion-4a5d60fec610

@umangyadav umangyadav requested a review from causten as a code owner October 24, 2025 16:19
Copilot AI reviewed Oct 24, 2025
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR addresses a dependency confusion security vulnerability by changing how the hip-python package is installed. Instead of using --extra-index-url which searches both PyPI and TestPyPI (potentially allowing a malicious package takeover), it now uses --index-url to exclusively install from AMD's TestPyPI repository.

Key Changes:

  • Removed --extra-index-url configuration and hip-python from pip_requirements.txt
  • Added explicit pip3 install command with --index-url in the Dockerfile to install hip-python exclusively from TestPyPI

Reviewed Changes

Copilot reviewed 2 out of 2 changed files in this pull request and generated 2 comments.

File Description
pip_requirements.txt Removed TestPyPI index URL and hip-python dependency to prevent dependency confusion attacks
mlir/utils/jenkins/Dockerfile Added dedicated install command for hip-python using --index-url to restrict package source to TestPyPI only

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@umangyadav umangyadav requested a review from Copilot October 24, 2025 16:27
Copilot AI reviewed Oct 24, 2025
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

Copilot reviewed 2 out of 2 changed files in this pull request and generated no new comments.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

This was referenced Nov 10, 2025
Closed
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@dhernandez0 dhernandez0 dhernandez0 approved these changes

@justinrosner justinrosner justinrosner approved these changes

@dorde-antic dorde-antic dorde-antic approved these changes

@pabloantoniom pabloantoniom Awaiting requested review from pabloantoniom

@mirza-halilcevic mirza-halilcevic Awaiting requested review from mirza-halilcevic

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@umangyadav @dhernandez0 @justinrosner @dorde-antic