Skip to content

Commit 3ffa292

Browse files
travis-bauertravis-bauer
committed
Update Dockerfile to ensure avoidance of pip vulnerability.
1 parent 3cd9936 commit 3ffa292

File tree

1 file changed

+2
-2
lines changed

1 file changed

+2
-2
lines changed

Dockerfile

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -34,7 +34,7 @@ COPY --chown=builder:builder src/ src/
3434
COPY --chown=builder:builder tests/ tests/
3535

3636
# Install Python dependencies and build the package
37-
RUN python3 -m pip install --user --upgrade pip setuptools wheel build
37+
RUN python3 -m pip install --user --upgrade 'pip>=25.3' setuptools wheel build
3838
RUN python3 -m pip install --user numpy pandas matplotlib scikit-learn scipy
3939
ENV SETUPTOOLS_SCM_PRETEND_VERSION_FOR_TALKPIPE=0.1.0
4040
RUN python3 -m pip install --user -e .[dev,all]
@@ -67,7 +67,7 @@ RUN mkdir -p /app/data && \
6767
COPY --from=builder --chown=app:app /build/dist/*.whl /tmp/
6868

6969
# Install runtime Python dependencies and the application
70-
RUN python3 -m pip install --no-cache-dir --upgrade pip && \
70+
RUN python3 -m pip install --no-cache-dir --upgrade 'pip>=25.3' && \
7171
python3 -m pip install --no-cache-dir \
7272
numpy pandas matplotlib scikit-learn scipy && \
7373
python3 -m pip install --no-cache-dir /tmp/*.whl && \

0 commit comments

Comments
 (0)