Skip to content

CTM-324 Update urllib3 et al.#803

Merged
aednichols merged 4 commits intomasterfrom
aen_ctm_324
Feb 6, 2026
Merged

CTM-324 Update urllib3 et al.#803
aednichols merged 4 commits intomasterfrom
aen_ctm_324

Conversation

@aednichols
Copy link
Collaborator

@aednichols aednichols commented Feb 6, 2026

  • Primary objective: upgrade urllib3 to latest version to address security issue
    • We do not use it directly, it is used by requests
  • Upgrade requests to latest version
    • Not strictly necessary but seems wise given urllib3 change
  • Update Java image to latest. It is used to run a prebuilt JAR when generating Swagger YAML, so Any Java Will Do
    • This will help DSP Devops retire the old Java 11 image
  • Update Python runtime to 3.11
    • Current Python 3.10 is EOL in October 2026
    • 3.12 is a bridge too far, would need to upgrade one of our deps

Tested by building job-manager-api-cromwell image and deploying on Terra Dev. Job Manager runs and works as expected.

> kubectl exec -it -n terra-dev jobmanager-deployment-87c99ff44-bqv7f -c jobmanager-api  -- bash
root@jobmanager-deployment-87c99ff44-bqv7f:/app# python --version
Python 3.11.14

root@jobmanager-deployment-87c99ff44-bqv7f:~# cat /app/jobs/requirements.txt 
[...]
requests==2.32.5
[...]
urllib3==2.6.3
[...]

@aednichols aednichols merged commit 29d15d6 into master Feb 6, 2026
5 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@LizBaldo LizBaldo LizBaldo approved these changes

@lucymcnatt lucymcnatt lucymcnatt approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@aednichols @LizBaldo @lucymcnatt