Updates Sept 15-22 2024
@ mention of reviewers
A brief description of the purpose of the changes contained in this PR.
Attempting to catalog changes by week.
Issues this PR resolves
Including the following bumps:
- dependabot - Bump pillow from 8.0.1 to 10.3.0 - can close
- dependabot - Bump jinja2 from 3.1.3 to 3.1.4 - can close
- dependabot - Bump gunicorn from 20.0.4 to 22.0.0 - can close
- [dependabot - Bump requests from 2.20.0 to 2.32.2]
- I messed up and updated in django so technically this still needs to be done for the compute worker # (https://github.com/codalab/codabench/pull/1489)
- [dependabot - Bump django from 2.2.17 to 2.2.18 and to 3.2.25 (65 versions away) eventually but we need to go slow as the amount of cascading changes is huge. We need to slowly update django and things around it and we should eventually get here.] # (https://github.com/codalab/codabench/pull/1492)
- [Bump django from 2.2.17 to 2.2.18]
- [Bump django from 2.2.18 to 2.2.19]
- [Bump django from 2.2.19 to 2.2.20]
- [Bump django from 2.2.20 to 2.2.25]
Django makes a larger jump from 2.2.28 - 3.0. I believe some other more core packages will be affected and so I think this is a good line in the sand to draw. We should merge this and then do a batch of updates just for the 2.2.28 -> 3.0 django upgrade.
A checklist for hand testing
-
make sure you rebuild django
docker build -f Dockerfile -t codabench-django:latest ./
# docker build --no-cache -f Dockerfile -t codabench-django:latest .//Version_Bumps.md has this and automatted testing at the bottom for convenience.
Any relevant files for testing
link to any relevant files (or drag and drop into github)
Checklist
-
Code review by me -
Hand tested by me -
I'm proud of my work -
Code review by reviewer -
Hand tested by reviewer -
CircleCi tests are passing -
Ready to merge