Skip to content

Handles filelock issue fixed by CVE-2025-68146.#1808

Closed
omaciel wants to merge 1 commit intomainfrom
omaciel-CVE-2025-68146
Closed

Handles filelock issue fixed by CVE-2025-68146.#1808
omaciel wants to merge 1 commit intomainfrom
omaciel-CVE-2025-68146

Conversation

@omaciel
Copy link
Contributor

@omaciel omaciel commented Dec 26, 2025

Jira Issue: AAP-61320

Description

Handles pip audit issue related to firelock CVE-2025-68146. Related to #1807

Testing

Automated tests.

Steps to test

  1. Pull down the PR
  2. ...
  3. ...

Type of Change

  • Bug fix (non-breaking change fixing an issue)
  • New feature (non-breaking change adding functionality)
  • Breaking change (fix or feature causing existing functionality to break)
  • Security fix
  • Performance improvement
  • Code refactoring
  • Documentation update
  • CI/CD update

Backport Policy

This change should be:

  • Not backported - main/master only
  • Backported to specific releases (add labels after merge)

Automated Backport Instructions

After this PR is merged, add one or more labels to automatically create backport PRs:

  • backport/stable-2.4 - Backport to stable-2.4 branch
  • backport/stable-2.5 - Backport to stable-2.5 branch
  • backport/stable-2.6 - Backport to stable-2.6 branch
  • backport/all - Backport to all active stable branches
  • no-backport - Explicitly mark as not needing backport

Backport Justification

Special backport considerations:

Scenarios tested

Production deployment

  • This code change is ready for production on its own
  • This code change requires the following considerations before going to production:

manstis
manstis approved these changes Dec 26, 2025
View reviewed changes
Copy link
Contributor

@manstis manstis left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM 👍

@omaciel omaciel force-pushed the omaciel-CVE-2025-68146 branch from 3dcda08 to 51f05a1 Compare December 26, 2025 18:04
@omaciel
Copy link
Contributor Author

omaciel commented Dec 26, 2025

Decided to fix dependency issues in #1807

@omaciel omaciel closed this Dec 26, 2025
@omaciel omaciel deleted the omaciel-CVE-2025-68146 branch December 26, 2025 18:12
@sonarqubecloud
Copy link

sonarqubecloud bot commented Dec 26, 2025

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@acosferreira acosferreira Awaiting requested review from acosferreira

@de1987 de1987 Awaiting requested review from de1987

1 more reviewer

@manstis manstis manstis approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@omaciel @manstis

Comments