{Packaging} Use latest setuptools in Alpine docker image #29433

bebound · 2024-07-22T06:54:25Z

We always use latest setuptools in packages, see #27196.
This PR updates the setuptools and pip in Alpine docker image.

For Python<3.12, the docker images uses pinned setuptools. In 3.12, it uses the latest version by default.

ENV PYTHON_SETUPTOOLS_VERSION 65.5.1 --https://github.com/docker-library/python/blob/ec14acd6a0830012b4330429bc173247a375857e/3.11/alpine3.20/Dockerfile#L136

For now, the docker-library team does not want to bump the setuptools version because of the compatibility concern: docker-library/python#942

History Notes

[Core] Resolve CVE-2024-6345

azure-client-tools-bot-prd · 2024-07-22T06:54:28Z

️✔️AzureCLI-FullTest

️✔️acr

️✔️2020-09-01-hybrid

️✔️3.11

️✔️3.9

️✔️latest

️✔️3.11

️✔️3.9

️✔️acs

️✔️2020-09-01-hybrid

️✔️3.11

️✔️3.9

️✔️latest

️✔️3.11

️✔️3.9

️✔️advisor

️✔️latest

️✔️3.11

️✔️3.9

️✔️ams

️✔️latest

️✔️3.11

️✔️3.9

️✔️apim

️✔️latest

️✔️3.11

️✔️3.9

️✔️appconfig

️✔️latest

️✔️3.11

️✔️3.9

️✔️appservice

️✔️latest

️✔️3.11

️✔️3.9

️✔️aro

️✔️latest

️✔️3.11

️✔️3.9

️✔️backup

️✔️latest

️✔️3.11

️✔️3.9

️✔️batch

️✔️latest

️✔️3.11

️✔️3.9

️✔️batchai

️✔️latest

️✔️3.11

️✔️3.9

️✔️billing

️✔️latest

️✔️3.11

️✔️3.9

️✔️botservice

️✔️latest

️✔️3.11

️✔️3.9

️✔️cdn

️✔️latest

️✔️3.11

️✔️3.9

️✔️cloud

️✔️latest

️✔️3.11

️✔️3.9

️✔️cognitiveservices

️✔️latest

️✔️3.11

️✔️3.9

️✔️compute_recommender

️✔️latest

️✔️3.11

️✔️3.9

️✔️config

️✔️latest

️✔️3.11

️✔️3.9

️✔️configure

️✔️latest

️✔️3.11

️✔️3.9

️✔️consumption

️✔️latest

️✔️3.11

️✔️3.9

️✔️container

️✔️latest

️✔️3.11

️✔️3.9

️✔️containerapp

️✔️latest

️✔️3.11

️✔️3.9

️✔️core

️✔️2018-03-01-hybrid

️✔️3.11

️✔️3.9

️✔️2019-03-01-hybrid

️✔️3.11

️✔️3.9

️✔️2020-09-01-hybrid

️✔️3.11

️✔️3.9

️✔️latest

️✔️3.11

️✔️3.9

️✔️cosmosdb

️✔️latest

️✔️3.11

️✔️3.9

️✔️databoxedge

️✔️2019-03-01-hybrid

️✔️3.11

️✔️3.9

️✔️2020-09-01-hybrid

️✔️3.11

️✔️3.9

️✔️latest

️✔️3.11

️✔️3.9

️✔️dla

️✔️latest

️✔️3.11

️✔️3.9

️✔️dls

️✔️latest

️✔️3.11

️✔️3.9

️✔️dms

️✔️latest

️✔️3.11

️✔️3.9

️✔️eventgrid

️✔️latest

️✔️3.11

️✔️3.9

️✔️eventhubs

️✔️latest

️✔️3.11

️✔️3.9

️✔️feedback

️✔️latest

️✔️3.11

️✔️3.9

️✔️find

️✔️latest

️✔️3.11

️✔️3.9

️✔️hdinsight

️✔️latest

️✔️3.11

️✔️3.9

️✔️identity

️✔️latest

️✔️3.11

️✔️3.9

️✔️iot

️✔️2019-03-01-hybrid

️✔️3.11

️✔️3.9

️✔️2020-09-01-hybrid

️✔️3.11

️✔️3.9

️✔️latest

️✔️3.11

️✔️3.9

️✔️keyvault

️✔️2018-03-01-hybrid

️✔️3.11

️✔️3.9

️✔️2020-09-01-hybrid

️✔️3.11

️✔️3.9

️✔️latest

️✔️3.11

️✔️3.9

️✔️kusto

️✔️latest

️✔️3.11

️✔️3.9

️✔️lab

️✔️latest

️✔️3.11

️✔️3.9

️✔️managedservices

️✔️latest

️✔️3.11

️✔️3.9

️✔️maps

️✔️latest

️✔️3.11

️✔️3.9

️✔️marketplaceordering

️✔️latest

️✔️3.11

️✔️3.9

️✔️monitor

️✔️latest

️✔️3.11

️✔️3.9

️✔️mysql

️✔️latest

️✔️3.11

️✔️3.9

️✔️netappfiles

️✔️latest

️✔️3.11

️✔️3.9

️✔️network

️✔️2018-03-01-hybrid

️✔️3.11

️✔️3.9

️✔️latest

️✔️3.11

️✔️3.9

️✔️policyinsights

️✔️latest

️✔️3.11

️✔️3.9

️✔️privatedns

️✔️latest

️✔️3.11

️✔️3.9

️✔️profile

️✔️latest

️✔️3.11

️✔️3.9

️✔️rdbms

️✔️latest

️✔️3.11

️✔️3.9

️✔️redis

️✔️latest

️✔️3.11

️✔️3.9

️✔️relay

️✔️latest

️✔️3.11

️✔️3.9

️✔️resource

️✔️2018-03-01-hybrid

️✔️3.11

️✔️3.9

️✔️2019-03-01-hybrid

️✔️3.11

️✔️3.9

️✔️latest

️✔️3.11

️✔️3.9

️✔️role

️✔️latest

️✔️3.11

️✔️3.9

️✔️search

️✔️latest

️✔️3.11

️✔️3.9

️✔️security

️✔️latest

️✔️3.11

️✔️3.9

️✔️servicebus

️✔️latest

️✔️3.11

️✔️3.9

️✔️serviceconnector

️✔️latest

️✔️3.11

️✔️3.9

️✔️servicefabric

️✔️latest

️✔️3.11

️✔️3.9

️✔️signalr

️✔️latest

️✔️3.11

️✔️3.9

️✔️sql

️✔️latest

️✔️3.11

️✔️3.9

️✔️sqlvm

️✔️latest

️✔️3.11

️✔️3.9

️✔️storage

️✔️2018-03-01-hybrid

️✔️3.11

️✔️3.9

️✔️2019-03-01-hybrid

️✔️3.11

️✔️3.9

️✔️2020-09-01-hybrid

️✔️3.11

️✔️3.9

️✔️latest

️✔️3.11

️✔️3.9

️✔️synapse

️✔️latest

️✔️3.11

️✔️3.9

️✔️telemetry

️✔️2018-03-01-hybrid

️✔️3.11

️✔️3.9

️✔️2019-03-01-hybrid

️✔️3.11

️✔️3.9

️✔️2020-09-01-hybrid

️✔️3.11

️✔️3.9

️✔️latest

️✔️3.11

️✔️3.9

️✔️util

️✔️latest

️✔️3.11

️✔️3.9

️✔️vm

️✔️2018-03-01-hybrid

️✔️3.11

️✔️3.9

️✔️2019-03-01-hybrid

️✔️3.11

️✔️3.9

️✔️2020-09-01-hybrid

️✔️3.11

️✔️3.9

️✔️latest

️✔️3.11

️✔️3.9

azure-client-tools-bot-prd · 2024-07-22T06:54:31Z

️✔️AzureCLI-BreakingChangeTest

️✔️Non Breaking Changes

yonzhan · 2024-07-22T06:54:38Z

Packaging

jiasli · 2024-07-25T06:10:48Z

Isn't #27196 only affecting Homebrew? Why does Alpine also require the latest setuptools?

bebound · 2024-07-25T06:33:47Z

Isn't #27196 only affecting Homebrew? Why does Alpine also require the latest setuptools?

Actually, all packages contain setuptools package, but they always install the latest version (except macOS?). Alpine's setuptools is pinned to 65.5.1

Init

48702b1

azure-client-tools-bot-prd bot added this to the July 2024 (2024-08-06) milestone Jul 22, 2024

microsoft-github-policy-service bot requested review from jiasli and wangzelin007 July 22, 2024 06:54

microsoft-github-policy-service bot requested a review from yonzhan July 22, 2024 06:54

microsoft-github-policy-service bot added the Auto-Assign Auto assign by bot label Jul 22, 2024

microsoft-github-policy-service bot assigned bebound Jul 22, 2024

microsoft-github-policy-service bot added the Packaging label Jul 22, 2024

bebound mentioned this pull request Jul 22, 2024

Please update Docker Image due to Security Issues CVE-2024-39689 CVE-2024-6345 #29397

Closed

bebound marked this pull request as ready for review July 22, 2024 07:13

yonzhan approved these changes Jul 22, 2024

View reviewed changes

bebound changed the title ~~{Packaging} Always use latest setuptools in Alpine docker image~~ {Packaging} Use latest setuptools in Alpine docker image Jul 22, 2024

bebound merged commit 413d13a into Azure:dev Jul 25, 2024
57 checks passed

bebound deleted the update-setuptools branch July 25, 2024 08:18

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

{Packaging} Use latest setuptools in Alpine docker image #29433

{Packaging} Use latest setuptools in Alpine docker image #29433

bebound commented Jul 22, 2024 •

edited

Loading

azure-client-tools-bot-prd bot commented Jul 22, 2024 •

edited

Loading

azure-client-tools-bot-prd bot commented Jul 22, 2024 •

edited

Loading

yonzhan commented Jul 22, 2024

jiasli commented Jul 25, 2024 •

edited

Loading

bebound commented Jul 25, 2024

{Packaging} Use latest setuptools in Alpine docker image #29433

{Packaging} Use latest setuptools in Alpine docker image #29433

Conversation

bebound commented Jul 22, 2024 • edited Loading

azure-client-tools-bot-prd bot commented Jul 22, 2024 • edited Loading

azure-client-tools-bot-prd bot commented Jul 22, 2024 • edited Loading

yonzhan commented Jul 22, 2024

jiasli commented Jul 25, 2024 • edited Loading

bebound commented Jul 25, 2024

bebound commented Jul 22, 2024 •

edited

Loading

azure-client-tools-bot-prd bot commented Jul 22, 2024 •

edited

Loading

azure-client-tools-bot-prd bot commented Jul 22, 2024 •

edited

Loading

jiasli commented Jul 25, 2024 •

edited

Loading