Skip to content

python-3.10/3.10.19 package update #68487

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
OddBloke merged 2 commits into from
Oct 9, 2025
Merged

python-3.10/3.10.19 package update #68487

OddBloke merged 2 commits into from
Oct 9, 2025

Conversation

@octo-sts
Copy link
Contributor

@octo-sts octo-sts bot commented Oct 9, 2025

@octo-sts octo-sts bot added request-version-update request for a newer version of a package automated pr python-3.10 P0 This label indicates our scanning found CRITICAL CVEs for these packages. labels Oct 9, 2025
@octo-sts
Copy link
Contributor Author

octo-sts bot commented Oct 9, 2025
edited
Loading

🩹 Build Failed: Patch Application Failed

Failed to run command "/bin/sh -c 'set -e \n[ -d '''/home/build''' ] || mkdir -p '''/home/build'''
cd '''/home/build'''
series=''''
if [ -z $series ]; then
if [ -n '''gh-118224.patch gh-127301.patch gh-135462.patch''' ]; then
series=$(mktemp)
echo '''gh-118224.patch gh-127301.patch gh-135462.patch''' | awk '''{ for(i = 1; i <= NF; i++) { print $i; } }''' >$series
else
echo "ERROR: Neither patches or series was set."
exit 1
fi
fi
grep -v -E '''^(#|$)''' $series | (while read patchfile; do
patch '''-p1''' --fuzz=2 --verbose <$patchfile
done)

exit 0'": Process exited with status 1

Build Details

Category Details
Build System melange
Failure Point patch application step during package pipeline

Root Cause Analysis 🔍

Multiple patches failed to apply properly, specifically the gh-135462.patch which was detected as already applied or reversed, causing the patch process to fail with exit status 1. The patch command encountered conflicts where 3 out of 3 hunks were ignored for Lib/html/parser.py and 4 out of 4 hunks were ignored for Lib/test/test_htmlparser.py, creating reject files.

Was this comment helpful? Please use 👍 or 👎 reactions on this comment.

@octo-sts octo-sts bot added the ai/skip-comment Stop AI from commenting on PR label Oct 9, 2025
@OddBloke OddBloke self-assigned this Oct 9, 2025
@OddBloke OddBloke force-pushed the wolfictl-12c23aea-44f9-442d-af52-e1cd4e3433ec branch from f88a649 to 0e8c319 Compare October 9, 2025 17:18
wolfi-bot and others added 2 commits October 9, 2025 13:32
@wolfi-bot @OddBloke
python-3.10/3.10.19 package update
4e3946f 
Signed-off-by: wolfi-bot <121097084+wolfi-bot@users.noreply.github.com>
@OddBloke
python-3.10: remove now-integrated patch
822778b
@OddBloke OddBloke force-pushed the wolfictl-12c23aea-44f9-442d-af52-e1cd4e3433ec branch from 0e8c319 to 822778b Compare October 9, 2025 17:32
@octo-sts octo-sts bot added the bincapz/pass bincapz/pass Bincapz (aka. malcontent) scan didn't detect any CRITICALs on the scanned packages. label Oct 9, 2025
@OddBloke OddBloke requested a review from a team October 9, 2025 17:47
@OddBloke
Copy link
Member

OddBloke commented Oct 9, 2025

The CVE being detected is fixed by this release: our scanner presumably hasn't caught up yet, as the fix landed yesterday and the release was today.

@OddBloke OddBloke enabled auto-merge October 9, 2025 17:48
@OddBloke OddBloke merged commit 749c6d6 into main Oct 9, 2025
18 of 19 checks passed
@OddBloke OddBloke deleted the wolfictl-12c23aea-44f9-442d-af52-e1cd4e3433ec branch October 9, 2025 19:44
@OddBloke OddBloke mentioned this pull request Oct 9, 2025
Closed
This was referenced Dec 28, 2025
Merged
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@AmberArcadia AmberArcadia AmberArcadia approved these changes

Assignees

@OddBloke OddBloke

Labels

ai/skip-comment Stop AI from commenting on PR automated pr bincapz/pass bincapz/pass Bincapz (aka. malcontent) scan didn't detect any CRITICALs on the scanned packages. manual/review-needed P0 This label indicates our scanning found CRITICAL CVEs for these packages. python-3.10 request-version-update request for a newer version of a package

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@OddBloke @AmberArcadia @wolfi-bot