Taskcluster

Latest version: v65.1.0

Safety actively analyzes 638379 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 30 of 52

44.6.0

GENERAL

▶ [minor]
Node.js major update from 14.17.15 to 16.13.2, the latest LTS version.

Update the worker-ci image from Ubuntu 14.04 to 20.04, the current LTS version.
This image is used in Taskcluster CI testing. This includes Python 3.8 (as
python3), needed to build with node-gyp, and no longer includes Python 2.7.
It also updates the Docker engine from 18.06.3 to 20.10.12.

▶ [minor]
Node.js minor update from 16.13.2 to 16.14.0, the latest LTS version.

▶ [minor]
This release updates the `docker-worker-websocket-client` and
`docker-worker-websocket-server` libraries, used by `docker-worker` to execute
commands inside a running container. These updates fix a bug when reading and
writing data to the process in the container, which may have been broken since
2015, and be a part of why VNC was broken
(see [issue 3542](https://github.com/taskcluster/taskcluster/issues/3542#issuecomment-746934147)).
This change required for Node v16, and may affect tasks that use this library like the
[interactive feature](https://docs.taskcluster.net/docs/reference/workers/docker-worker/features#feature-interactive).

▶ [patch]
Go patch update from 1.17.6 to 1.17.7.

▶ [patch]
Replaced `github.com/dgrijalva/jwt-go` with `github.com/golang-jwt/jwt/v4` as suggested in the *high* dependabot vulnerability listed [here](https://github.com/taskcluster/taskcluster/security/dependabot/19).

▶ [patch] [4940](https://github.com/taskcluster/taskcluster/issues/4940)
Sets the content type of the json returned by the `__heartbeat__` and `__lbheartbeat__` endpoints.

USERS

▶ [patch] [5153](https://github.com/taskcluster/taskcluster/issues/5153)
Fixes https://github.com/taskcluster/taskcluster/issues/5153. CLI signin now properly redirects to a success page.

DEVELOPERS

▶ [patch]
Replacing ui test runner from `karma` to `jest` to allow snapshot testing.

Automated Package Updates

<details>
<summary>4 Renovate updates</summary>

* Update dependency error-stack-parser to v2.0.7 (a5e2e2848)
* Update dependency cronstrue to v1.125.0 (180be8ada)
* Update dependency memorystore to v1.6.7 (dbae29c2a)
* Update dependency sinon to v13 (aebe0f51b)

</details>

44.5.0

GENERAL

▶ [patch] [5082](https://github.com/taskcluster/taskcluster/issues/5082)
Updated go from 1.16.7 to 1.17.6. This fixes an issue where the generic worker
failed to build on M1 MacBooks (arm64).

USERS

▶ [minor]
Fixed artifacts pagination

OTHER

▶ Additional change not described here: [5070](https://github.com/taskcluster/taskcluster/issues/5070).

Automated Package Updates

<details>
<summary>7 Renovate updates</summary>

* Update dependency marked to v4.0.12 (0906dace1)
* Update dependency commander to v9 (1f4311d02)
* Update dependency node-forge to v1.2.1 (5c574d544)
* Update dependency matrix-js-sdk to v15 (7cf55a467)
* Update dependency node-fetch to v2.6.7 [SECURITY] (0cfcab9dd)
* Update dependency apollo-server-express to v3 (181db987b)
* Update dependency github-slugger to v1.4.0 (d44be4204)

</details>

44.4.0

DEPLOYERS

▶ [patch] [5039](https://github.com/taskcluster/taskcluster/issues/5039)
The new `queue.aws_endpoint` Helm configuration value allows setting the endpoint used to access S3 buckets. This configuration enables use of non-AWS S3-compatible backends.

DEVELOPERS

▶ [minor] [4614](https://github.com/taskcluster/taskcluster/issues/4614)
This version drops support for Python-2.7 in the Python client. Python-2.7's support window ended over one year ago.

OTHER

▶ Additional change not described here: [4594](https://github.com/taskcluster/taskcluster/issues/4594).

44.3.1

44.3.0

GENERAL

▶ [patch]
In the Monitoring Services document, display the generated table of scheduled tasks.

▶ [patch] [bug 1735159](http://bugzil.la/1735159)
UI no longer visually emphasizes special characters of scopes (reverts 974 / 904).

WORKER-DEPLOYERS

▶ [patch] [4926](https://github.com/taskcluster/taskcluster/issues/4926)
Adds release binary for generic-worker-simple on MacOS arm64.

▶ [patch] [5011](https://github.com/taskcluster/taskcluster/issues/5011)
In worker-runner, the static provider is incompatible with cacheOverRestarts. The tool now produces more useful error messages in this situaiton.

Worker-runner also fails with a useful error message if its credentials are too old on startup, as might happen if a worker restart takes too long.

▶ [patch] [bug 1635730](http://bugzil.la/1635730)
generic-worker multiuser engine running on macOS will now attempt to cleanup /private/var/folders when deleting a task OS user account.

ADMINS

▶ [patch] [4999](https://github.com/taskcluster/taskcluster/issues/4999)
The registration-error-warning, logged from the Azure provider's register()
function in worker-manager, now includes workerPoolId, providerID, and
workerID in its context.

When register-error-warning is due to the state not being REQUESTED,
the workerState is also in the context.

USERS

▶ [minor] [2679](https://github.com/taskcluster/taskcluster/issues/2679)
Now after `taskcluster signin` the sign in dialog is shown instead of message if user is not logged in.

▶ [patch] [4962](https://github.com/taskcluster/taskcluster/issues/4962)
Clicking on the role row now works outside of the text part as well

DEVELOPERS

▶ [minor] [5021](https://github.com/taskcluster/taskcluster/issues/5021)
for `upload_artifact` from `client-py` let `contet` be `bytes` or `str`.

▶ [patch] [4242](https://github.com/taskcluster/taskcluster/issues/4242)
Replacing the UI element for non-editable object display to allow yaml/json serialization

OTHER

▶ Additional changes not described here: [4939](https://github.com/taskcluster/taskcluster/issues/4939), [#4947](https://github.com/taskcluster/taskcluster/issues/4947), [#4997](https://github.com/taskcluster/taskcluster/issues/4997), [#5106](https://github.com/taskcluster/taskcluster/issues/5106).

Automated Package Updates

<details>
<summary>6 Renovate updates</summary>

* Update dependency prismjs to v1.25.0 [SECURITY] (ba2350c98)
* Update dependency react-router-dom to v5.2.1 (470a49616)
* Update dependency marked to v3.0.2 (85607db2e)
* Update dependency marked to v3.0.1 (2223cdcee)
* Update dependency generate-password to v1.6.1 (038c1f6c6)
* Update dependency marked to v3 (4a868be54)

</details>

44.2.2

DEPLOYERS

▶ [patch]
No changes. Deployment failed for 44.2.1 as well.

Page 30 of 52

Links

Releases

Has known vulnerabilities

© 2024 Safety CLI Cybersecurity Inc. All Rights Reserved.