Fix dependabot-cve

[trispera]

• Update requirements
• Update image
• Update celery-deployment

IMPORTANT: Please create an issue before filing a pull request! Changes need to be discussed before proceeding. Please read the contribution guidelines.

Details

Please provide enough information so that others can review your pull request. Give a brief summary of the motivation. Refer to the corresponding issue/s with #XXXX for more information.

Testing

Write the appropriate unit and integration tests, if applicable. Make sure these and all other tests pass.

Documentation

Please document your changes and test cases in the appropriate places, if applicable.

Style

Make sure your changes adhere to the coding/documentation style used throughout the project.

Closing issues

If your changes fix any issue/s, put closes #XXXX in your comment to auto-close it/them.

Credit

Add your credentials to the list of contributors once your pull request was merged.

Summary by Sourcery

Update runtime and worker images along with Celery configuration and Python packaging dependencies.

Bug Fixes:

• Adjust Celery worker startup arguments to reference the correct application module.

Enhancements:

• Update WES and Celery worker container images to newer elixircloud/cwl-wes builds.

Build:

• Bump setuptools dependency to a newer compatible version in requirements.

Deployment:

• Align deployment values and Celery deployment manifest with the updated container images.

[sourcery-ai]

Reviewer's guide (collapsed on small PRs)

Reviewer's Guide

Updates deployment images to a newer elixircloud/cwl-wes build, aligns the Celery worker command with the new image’s module layout, and bumps setuptools to a newer compatible version to address a Dependabot CVE.

File-Level Changes

Change	Details	Files
Upgrade WES and Celery worker container images to a current elixircloud/cwl-wes tag.	Update the main WES service image tag to elixircloud/cwl-wes:20260116 Update the Celery worker image to use elixircloud/cwl-wes:20260116 instead of the older lvarin image	deployment/values.yaml
Adjust Celery worker startup command to match the worker module name expected by the new image.	Change Celery invocation to use '-A worker' instead of '-A celery_worker' while preserving other Celery arguments	deployment/templates/wes/celery-deployment.yaml
Update setuptools dependency to a secure, modern version compatible with Dependabot recommendations.	Relax setuptools constraint from '<69' to '~=78.1.1' in requirements to pick up a current, non-vulnerable release	requirements.txt

---

Tips and commands

Interacting with Sourcery

• Trigger a new review: Comment @sourcery-ai review on the pull request.
• Continue discussions: Reply directly to Sourcery's review comments.
• Generate a GitHub issue from a review comment: Ask Sourcery to create an
  issue from a review comment by replying to it. You can also reply to a
  review comment with @sourcery-ai issue to create an issue from it.
• Generate a pull request title: Write @sourcery-ai anywhere in the pull
  request title to generate a title at any time. You can also comment
  @sourcery-ai title on the pull request to (re-)generate the title at any time.
• Generate a pull request summary: Write @sourcery-ai summary anywhere in
  the pull request body to generate a PR summary at any time exactly where you
  want it. You can also comment @sourcery-ai summary on the pull request to
  (re-)generate the summary at any time.
• Generate reviewer's guide: Comment @sourcery-ai guide on the pull
  request to (re-)generate the reviewer's guide at any time.
• Resolve all Sourcery comments: Comment @sourcery-ai resolve on the
  pull request to resolve all Sourcery comments. Useful if you've already
  addressed all the comments and don't want to see them anymore.
• Dismiss all Sourcery reviews: Comment @sourcery-ai dismiss on the pull
  request to dismiss all existing Sourcery reviews. Especially useful if you
  want to start fresh with a new review - don't forget to comment
  @sourcery-ai review to trigger a new review!

Customizing Your Experience

Access your dashboard to:

• Enable or disable review features such as the Sourcery-generated pull request
  summary, the reviewer's guide, and others.
• Change the review language.
• Add, remove or edit custom review instructions.
• Adjust other review settings.

Getting Help

• Contact our support team for questions or feedback.
• Visit our documentation for detailed guides and information.
• Keep in touch with the Sourcery team by following us on X/Twitter, LinkedIn or GitHub.

[sourcery-ai]

Hey - I've left some high level feedback:

• The Celery command now uses -A worker instead of -A celery_worker; double-check that this matches the module name exposed in the new elixircloud/cwl-wes:20260116 image and that there are no remaining references to the old module name elsewhere in the deployment templates.
• The setuptools version constraint changed from <69 to ~=78.1.1; consider confirming that any tooling or packaging logic that previously relied on an older setuptools behavior still works and, if needed, using a compatible range rather than a single recent minor pin.

Prompt for AI Agents

Please address the comments from this code review:

## Overall Comments
- The Celery command now uses `-A worker` instead of `-A celery_worker`; double-check that this matches the module name exposed in the new `elixircloud/cwl-wes:20260116` image and that there are no remaining references to the old module name elsewhere in the deployment templates.
- The setuptools version constraint changed from `<69` to `~=78.1.1`; consider confirming that any tooling or packaging logic that previously relied on an older setuptools behavior still works and, if needed, using a compatible range rather than a single recent minor pin.

---

Sourcery is free for open source - if you like our reviews please consider sharing them ✨

• X
• Mastodon
• LinkedIn
• Facebook

_{Help me be more useful! Please click 👍 or 👎 on each comment and I'll use the feedback to improve your reviews.}

[lvarin]

LGTM