ROB-429 CVEminator 🤖 2026-06-23 by RoiGlinik · Pull Request #23 · robusta-dev/robusta-cli

RoiGlinik · 2026-06-23T08:48:52Z

After merge, build and release a new image:

# Use ./build_and_push <new-version> to deploy an image with the CVE fix.

File	Change	CVE
`pyproject.toml`	`requests = "^2.32.2"` → `requests = "^2.33.0"`	CVE-2026-25645
`poetry.lock`	`requests` 2.32.4 → 2.34.2 (and transitive re-resolution)	CVE-2026-25645

Refs:

docker build -t robusta-cli-cve-test -f Dockerfile . — builds clean.
docker run --rm robusta-cli-cve-test version → running with development version from git (0.0.0).
docker run --rm --entrypoint python robusta-cli-cve-test -c "import requests; print(requests.__version__)" → 2.34.2 (≥ 2.33.0, CVE fixed).

Nothing requiring extra eyes — pure transitive bump on a widely-used HTTP library, no behavior change expected.

🤖 Generated with Claude Code

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

fix(deps): bump requests to >=2.33.0 to remediate CVE-2026-25645

5756d26

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

Avi-Robusta approved these changes Jun 23, 2026

View reviewed changes

RoiGlinik merged commit 163c463 into main Jun 23, 2026
8 checks passed

Provide feedback