From 0712c7b8b7a9b0380cda97ebf08c89bc72760b03 Mon Sep 17 00:00:00 2001 From: hallvictoria Date: Mon, 28 Oct 2024 10:20:58 -0500 Subject: [PATCH 1/3] run base tests for 312 --- eng/templates/official/jobs/base-unit-tests.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/eng/templates/official/jobs/base-unit-tests.yml b/eng/templates/official/jobs/base-unit-tests.yml index 87b79b8..db37bd4 100644 --- a/eng/templates/official/jobs/base-unit-tests.yml +++ b/eng/templates/official/jobs/base-unit-tests.yml @@ -12,6 +12,8 @@ jobs: PYTHON_VERSION: '3.10' python311: PYTHON_VERSION: '3.11' + python312: + PYTHON_VERSION: '3.12' steps: - task: UsePythonVersion@0 From 081259fabacb44bed14b6e1f123ee5d4513d2b4c Mon Sep 17 00:00:00 2001 From: Victoria Hall Date: Tue, 3 Dec 2024 11:00:20 -0600 Subject: [PATCH 2/3] adding pip audit, run 312 for all extensions --- azurefunctions-extensions-bindings-blob/pyproject.toml | 3 ++- eng/templates/jobs/build.yml | 5 +++++ eng/templates/official/jobs/blob-unit-tests.yml | 2 ++ eng/templates/official/jobs/build-artifacts.yml | 5 +++++ eng/templates/official/jobs/fastapi-unit-tests.yml | 2 ++ 5 files changed, 16 insertions(+), 1 deletion(-) diff --git a/azurefunctions-extensions-bindings-blob/pyproject.toml b/azurefunctions-extensions-bindings-blob/pyproject.toml index 53aa090..e0d9827 100644 --- a/azurefunctions-extensions-bindings-blob/pyproject.toml +++ b/azurefunctions-extensions-bindings-blob/pyproject.toml @@ -25,7 +25,8 @@ classifiers= [ ] dependencies = [ 'azurefunctions-extensions-base', - 'azure-storage-blob==12.24.0' + 'azure-storage-blob==12.24.0', + 'werkzeug==2.*' # testing pip-audit ] [project.optional-dependencies] diff --git a/eng/templates/jobs/build.yml b/eng/templates/jobs/build.yml index c53fba1..ed99244 100644 --- a/eng/templates/jobs/build.yml +++ b/eng/templates/jobs/build.yml @@ -27,3 +27,8 @@ jobs: cd $(EXTENSION_DIRECTORY) python -m build displayName: 'Build $(EXTENSION_NAME) Extension' + - bash: | + pip install pip-audit + cd $(EXTENSION_DIRECTORY) + pip-audit . + displayName: 'Run vulnerability scan' diff --git a/eng/templates/official/jobs/blob-unit-tests.yml b/eng/templates/official/jobs/blob-unit-tests.yml index 363e54e..b8499c7 100644 --- a/eng/templates/official/jobs/blob-unit-tests.yml +++ b/eng/templates/official/jobs/blob-unit-tests.yml @@ -10,6 +10,8 @@ jobs: PYTHON_VERSION: '3.10' python311: PYTHON_VERSION: '3.11' + python312: + PYTHON_VERSION: '3.12' steps: - task: UsePythonVersion@0 diff --git a/eng/templates/official/jobs/build-artifacts.yml b/eng/templates/official/jobs/build-artifacts.yml index 2086f2b..5f12e1a 100644 --- a/eng/templates/official/jobs/build-artifacts.yml +++ b/eng/templates/official/jobs/build-artifacts.yml @@ -33,3 +33,8 @@ jobs: cd $(EXTENSION_DIRECTORY) python -m build displayName: 'Build $(EXTENSION_NAME) Extension' + - bash: | + pip install pip-audit + cd $(EXTENSION_DIRECTORY) + pip-audit . + displayName: 'Run vulnerability scan' diff --git a/eng/templates/official/jobs/fastapi-unit-tests.yml b/eng/templates/official/jobs/fastapi-unit-tests.yml index 8f8fda6..59f0678 100644 --- a/eng/templates/official/jobs/fastapi-unit-tests.yml +++ b/eng/templates/official/jobs/fastapi-unit-tests.yml @@ -12,6 +12,8 @@ jobs: PYTHON_VERSION: '3.10' python311: PYTHON_VERSION: '3.11' + python312: + PYTHON_VERSION: '3.12' steps: - task: UsePythonVersion@0 From a7a1b3aaee35578d039a93e528f3b9be83feb518 Mon Sep 17 00:00:00 2001 From: Victoria Hall Date: Wed, 4 Dec 2024 09:57:27 -0600 Subject: [PATCH 3/3] clean up --- azurefunctions-extensions-bindings-blob/pyproject.toml | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/azurefunctions-extensions-bindings-blob/pyproject.toml b/azurefunctions-extensions-bindings-blob/pyproject.toml index e0d9827..53aa090 100644 --- a/azurefunctions-extensions-bindings-blob/pyproject.toml +++ b/azurefunctions-extensions-bindings-blob/pyproject.toml @@ -25,8 +25,7 @@ classifiers= [ ] dependencies = [ 'azurefunctions-extensions-base', - 'azure-storage-blob==12.24.0', - 'werkzeug==2.*' # testing pip-audit + 'azure-storage-blob==12.24.0' ] [project.optional-dependencies]