From 55b4076243bd80f7b929a1db8ff0711b578660bc Mon Sep 17 00:00:00 2001 From: 1ngabo <162403908+Ingabreezy@users.noreply.github.com> Date: Tue, 27 Jan 2026 19:41:01 +1100 Subject: [PATCH 1/3] Upgrade Flask version to 2.3.2 Updates Flask from 1.1.4 to 2.3.2 in dremio-api requirements to resolve Trivy code scanning alert (missing Vary: Cookie header). --- Core DW Infrastructure/dremio-api/requirements.txt | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/Core DW Infrastructure/dremio-api/requirements.txt b/Core DW Infrastructure/dremio-api/requirements.txt index ca8d543..87c3e9c 100644 --- a/Core DW Infrastructure/dremio-api/requirements.txt +++ b/Core DW Infrastructure/dremio-api/requirements.txt @@ -1,6 +1,6 @@ -Flask==1.1.4 +Flask==2.3.2 Jinja2==2.11.3 MarkupSafe==1.1.1 requests pandas -python-dotenv \ No newline at end of file +python-dotenv From f5d31e4abb7a1fd2f9d3539c2285386f1be140d9 Mon Sep 17 00:00:00 2001 From: 1ngabo <162403908+Ingabreezy@users.noreply.github.com> Date: Tue, 27 Jan 2026 19:45:10 +1100 Subject: [PATCH 2/3] Update Flask and Jinja2 to newer versions - Update Flask to a fixed version to clear Trivy CVE-2023-30861 alert in the archived Flask-api requirements. --- .../Structured Dremio Solution/Flask-api/requirements.txt | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/Archive/Structured Dremio Solution/Flask-api/requirements.txt b/Archive/Structured Dremio Solution/Flask-api/requirements.txt index ca8d543..720531b 100644 --- a/Archive/Structured Dremio Solution/Flask-api/requirements.txt +++ b/Archive/Structured Dremio Solution/Flask-api/requirements.txt @@ -1,6 +1,6 @@ -Flask==1.1.4 -Jinja2==2.11.3 +Flask==2.3.2 +Jinja2==3.1.5 MarkupSafe==1.1.1 requests pandas -python-dotenv \ No newline at end of file +python-dotenv From 97bbe929fc216af299ce3a3286f47f9e43d30c98 Mon Sep 17 00:00:00 2001 From: 1ngabo <162403908+Ingabreezy@users.noreply.github.com> Date: Fri, 30 Jan 2026 01:23:49 +1100 Subject: [PATCH 3/3] Update Jinja2 version to 3.1.6 --- Archive/Structured Dremio Solution/Flask-api/requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Archive/Structured Dremio Solution/Flask-api/requirements.txt b/Archive/Structured Dremio Solution/Flask-api/requirements.txt index 720531b..fff9b52 100644 --- a/Archive/Structured Dremio Solution/Flask-api/requirements.txt +++ b/Archive/Structured Dremio Solution/Flask-api/requirements.txt @@ -1,5 +1,5 @@ Flask==2.3.2 -Jinja2==3.1.5 +Jinja2==3.1.6 MarkupSafe==1.1.1 requests pandas