Merge pull request #925 from exasol/develop

Changelist: - #904: Ignored Kernel CVE (#905) - #906: Updated APT package (#907) - #908 pined conda package (#909) - #910: Updated APT package (#911) - #892: Filtered out Linux Kernel related CVE's (#912) - #895: Fixed GH Action 'Publish Docker Test Container' (#913) - #856: Changed mirror for installing R packages (#914) - #917: Updated Ubuntu JDK package (#918) - #915: Updated Python (#916) - #902: fixed memory related bugs with emit dataframe (#920) - #921: Use exasol-python-test-framework 0.5.0 (#922) - #923: Use exasol-python-test-framework 0.5.1 (#924)
exasol · Jun 11, 2024 · 00996bf · 00996bf
2 parents 805d5bf + dd48bdd
commit 00996bf
Show file tree

Hide file tree

Showing 57 changed files with 860 additions and 1,181 deletions.
diff --git a/.current_gitmodules b/.current_gitmodules
diff --git a/.github/actions/prepare_poetry_env/action.yml b/.github/actions/prepare_poetry_env/action.yml
diff --git a/.github/workflows/check_current_gitmodules.yaml b/.github/workflows/check_current_gitmodules.yaml
@@ -13,7 +13,7 @@ jobs:
     runs-on: ubuntu-latest
 
     steps:
-    - uses: actions/checkout@v3
+    - uses: actions/checkout@v4
     - name: Init submodules
       run: git submodule update --init --recursive
     - name: Run update_current_submodules_file.sh

diff --git a/.github/workflows/check_error_codes.yml b/.github/workflows/check_error_codes.yml
@@ -13,7 +13,7 @@ jobs:
     runs-on: ubuntu-latest
 
     steps:
-    - uses: actions/checkout@v3
+    - uses: actions/checkout@v4
 
     - name: Init submodules
       run: git submodule update --init --recursive

diff --git a/.github/workflows/check_if_submodules_head_are_ancestors_of_origin_master.yaml b/.github/workflows/check_if_submodules_head_are_ancestors_of_origin_master.yaml
@@ -13,7 +13,7 @@ jobs:
     runs-on: ubuntu-latest
 
     steps:
-    - uses: actions/checkout@v3
+    - uses: actions/checkout@v4
 
     - name: Init submodules
       run: git submodule update --init --recursive

diff --git a/.github/workflows/check_markdown_links.yaml b/.github/workflows/check_markdown_links.yaml
@@ -12,7 +12,7 @@ jobs:
   markdown-link-check:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
       - name: Init submodules
         run: git submodule update --init --recursive
       - uses: gaurav-nelson/github-action-markdown-link-check@v1

diff --git a/.github/workflows/check_package_diffs.yaml b/.github/workflows/check_package_diffs.yaml
@@ -10,16 +10,21 @@ jobs:
     runs-on: ubuntu-latest
 
     steps:
-    - uses: actions/checkout@v3
+    - uses: actions/checkout@v4
 
     - name: Init submodules
       run: git submodule update --init --recursive
 
-    - uses: ./.github/actions/prepare_poetry_env
+    - name: Setup Python & Poetry Environment
+      uses: exasol/python-toolbox/.github/actions/[email protected]
+      with:
+        python-version: "3.10"
+        poetry-version: '1.8.2'
+
 
     - name: Setup Poetry
       run: |
-        PYTHON_BIN=$(command -v "python3.8")
+        PYTHON_BIN=$(command -v "python3.10")
         poetry env use "$PYTHON_BIN"
         poetry install
         poetry_env_path=$(poetry env info --path)

diff --git a/.github/workflows/check_version.yaml b/.github/workflows/check_version.yaml
@@ -9,12 +9,17 @@ jobs:
   check-version-numbers:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
         with:
           fetch-depth: 0
           submodules: 'recursive'
 
-      - uses: ./.github/actions/prepare_poetry_env
+      - name: Setup Python & Poetry Environment
+        uses: exasol/python-toolbox/.github/actions/[email protected]
+        with:
+          python-version: "3.10"
+          poetry-version: '1.8.2'
+
 
       - name: Check Release
-        run: ./scripts/check_release.sh "python3.8"
+        run: ./scripts/check_release.sh
diff --git a/.github/workflows/nigthly.yaml b/.github/workflows/nigthly.yaml
@@ -13,7 +13,7 @@ jobs:
     runs-on: ubuntu-latest
 
     steps:
-    - uses: actions/checkout@v3
+    - uses: actions/checkout@v4
 
     - name: Init submodules
       run: git submodule update --init --recursive

diff --git a/.github/workflows/push_docker_test_container.yaml b/.github/workflows/push_docker_test_container.yaml
@@ -20,15 +20,15 @@ jobs:
       - name: Push TestContainer image
         if: ${{ (github.ref == 'refs/heads/master') || (github.ref == 'refs/heads/main') }}
         run: |
-          ./exaslct push-test-container --source-docker-username "$SECRET_DOCKER_USER_NAME" --target-docker-username "$SECRET_DOCKER_USER_NAME" --force-push
+          ./exaslct push-test-container --source-docker-username "$SECRET_DOCKER_USER_NAME" --target-docker-username "$SECRET_DOCKER_USER_NAME" --force-push true
         env: # Set the secret as an input
           SECRET_DOCKER_USER_NAME: ${{ secrets.DOCKER_USER_NAME }}
           TARGET_DOCKER_PASSWORD: ${{ secrets.DOCKER_TOKEN }}
           SOURCE_DOCKER_PASSWORD: ${{ secrets.DOCKER_TOKEN }}
       - name: Push  ci-release-test TestContainer image
         if: ${{ (github.ref != 'refs/heads/master') && (github.ref != 'refs/heads/main') }}
         run: |
-          ./exaslct push-test-container --source-docker-username "$SECRET_DOCKER_USER_NAME" --target-docker-username "$SECRET_DOCKER_USER_NAME" --force-push --source-docker-tag-prefix ci_release_test --target-docker-tag-prefix ci_release_test
+          ./exaslct push-test-container --source-docker-username "$SECRET_DOCKER_USER_NAME" --target-docker-username "$SECRET_DOCKER_USER_NAME" --force-push true --source-docker-tag-prefix ci_release_test --target-docker-tag-prefix ci_release_test
         env: # Set the secret as an input
           SECRET_DOCKER_USER_NAME: ${{ secrets.DOCKER_USER_NAME }}
           TARGET_DOCKER_PASSWORD: ${{ secrets.DOCKER_TOKEN }}

diff --git a/.github/workflows/release_droid_upload_github_release_assets.yml b/.github/workflows/release_droid_upload_github_release_assets.yml
@@ -13,15 +13,16 @@ jobs:
     environment: AWS
     runs-on: ubuntu-latest
     steps:
-    - uses: actions/checkout@v3
+    - uses: actions/checkout@v4
 
     - name: Init submodules
       run: git submodule update --init --recursive
 
-    - uses: ./.github/actions/prepare_poetry_env
-
-    - name: Setup poetry env
-      run:  bash scripts/setup_poetry_env.sh "python3.8"
+    - name: Setup Python & Poetry Environment
+      uses: exasol/python-toolbox/.github/actions/[email protected]
+      with:
+        python-version: "3.10"
+        poetry-version: '1.8.2'
 
     - name: Start release
       run: poetry run python -m exasol_script_languages_container_ci_setup.main start-release-build --log-level info --project "ScriptLanguagesRelease" --upload-url "${{ github.event.inputs.upload_url }}" --branch "$GITHUB_REF"

diff --git a/.github/workflows/test_release.yml b/.github/workflows/test_release.yml
@@ -13,15 +13,16 @@ jobs:
     environment: AWS
     runs-on: ubuntu-latest
     steps:
-    - uses: actions/checkout@v3
+    - uses: actions/checkout@v4
 
     - name: Init submodules
       run: git submodule update --init --recursive
 
-    - uses: ./.github/actions/prepare_poetry_env
-
-    - name: Setup poetry env
-      run:  bash scripts/setup_poetry_env.sh "python3.8"
+    - name: Setup Python & Poetry Environment
+      uses: exasol/python-toolbox/.github/actions/[email protected]
+      with:
+        python-version: "3.10"
+        poetry-version: '1.8.2'
 
     - name: Start test release
       run: poetry run python -m exasol_script_languages_container_ci_setup.main start-test-release-build --log-level info --project ScriptLanguagesRelease --repo-name "$GITHUB_REPOSITORY" --branch "$GITHUB_REF" --release-title  "${{ github.event.inputs.release_title }}"

diff --git a/aws-code-build/ci/build_buildspec.yaml b/aws-code-build/ci/build_buildspec.yaml
diff --git a/aws-code-build/release/build_buildspec.yaml b/aws-code-build/release/build_buildspec.yaml
diff --git a/doc/changes/changes_8.1.0.md b/doc/changes/changes_8.1.0.md
@@ -1,52 +1,46 @@
-# script-languages-release 8.1.0, released t.b.d.
+# script-languages-release 8.1.0, released 2024-06-11
 
-Code name: t.b.d.
+Code name: Fixed memory leak for Python Dataframe Extension
 
 ## Summary
 
-t.b.d.
+This release fixes 3 memory related bugs in the Python Dataframe Extension, which were the root cause of a memory leak. Besides,
+this version uses the latest version of `exaslct` (0.19.0) and Python3.10 as runtime for the CI builds. The security scanner was changed in order to ignore all Linux Kernel related CVE's during the CI and release builds.
 
 ## [Package Version Comparison between Release 8.0.0 and 8.1.0](package_diffs/8.1.0/README.md)
 
 ## Script-Language-Container-Tool (Exaslct)
 
-This release uses version 0.18.2 of the container tool. 
+This release uses version 0.19.0 of the container tool. 
 
 ## Bug Fixes
 
- n/a
+- #895: Fixed GH Action 'Publish Docker Test Container'
+- #902: fixed memory related bugs with emit dataframe 
 
 ## Features / Enhancements
 
 - #889: Upgraded all python template flavors
+- #892: Filtered out Linux Kernel related CVE's
+- #856: Changed mirror for installing R packages
+- #921: Use exasol-python-test-framework 0.5.0
 
 ## Documentation
 
 n/a
 
 ## Refactoring
 
-n/a
+- #908: Pinned conda package
+- #915: Updated Python
+- #923: Use exasol-python-test-framework 0.5.1
 
 ## Security
 
-- #898: Ignored new Linux Kernel CVE's 
-
-Attention: The CVE's below can't be fixed by the container itself, rather need to be addressed by the host system executing them.
-
- - CVE-2024-0646
- - CVE-2024-1085
- - CVE-2024-1086
- - CVE-2024-26597
- - CVE-2024-26583
- - CVE-2024-26828
- - CVE-2024-26865
- - CVE-2024-26585
- - CVE-2023-52433
- - CVE-2024-26642
- - CVE-2024-26643
- - CVE-2024-26800
- - CVE-2024-26921
- - CVE-2024-26923
- - CVE-2024-26924
- - CVE-2024-26925
+- #898: Ignored new Linux Kernel CVE's
+- #904: Ignored Kernel CVE
+- #906: Updated APT package
+- #910: Updated APT package
+- #917: Updated Ubuntu JDK package
+
+Attention: Kernel CVE's can't be fixed by the container itself, rather need to be addressed by the host system executing them.
diff --git a/...ges/package_diffs/8.1.0/standard-EXASOL-all/build_deps/apt_get_packages_diff.md b/...ges/package_diffs/8.1.0/standard-EXASOL-all/build_deps/apt_get_packages_diff.md
diff --git a/...e_diffs/8.1.0/standard-EXASOL-all/flavor_base_deps_apt/apt_get_packages_diff.md b/...e_diffs/8.1.0/standard-EXASOL-all/flavor_base_deps_apt/apt_get_packages_diff.md
diff --git a/.../package_diffs/8.1.0/standard-EXASOL-all/language_deps/apt_get_packages_diff.md b/.../package_diffs/8.1.0/standard-EXASOL-all/language_deps/apt_get_packages_diff.md
diff --git a/...package_diffs/8.1.0/standard-EXASOL-all/udfclient_deps/apt_get_packages_diff.md b/...package_diffs/8.1.0/standard-EXASOL-all/udfclient_deps/apt_get_packages_diff.md
diff --git a/...age_diffs/8.1.0/template-Exasol-all-java-17/build_deps/apt_get_packages_diff.md b/...age_diffs/8.1.0/template-Exasol-all-java-17/build_deps/apt_get_packages_diff.md
diff --git a/...ffs/8.1.0/template-Exasol-all-java-17/flavor_base_deps/apt_get_packages_diff.md b/...ffs/8.1.0/template-Exasol-all-java-17/flavor_base_deps/apt_get_packages_diff.md
diff --git a/..._diffs/8.1.0/template-Exasol-all-java-17/language_deps/apt_get_packages_diff.md b/..._diffs/8.1.0/template-Exasol-all-java-17/language_deps/apt_get_packages_diff.md