fix(security): bump deps for CVE remediation (June 2026)#2663
Open
kajalj22 wants to merge 12 commits into
Open
fix(security): bump deps for CVE remediation (June 2026)#2663kajalj22 wants to merge 12 commits into
kajalj22 wants to merge 12 commits into
Conversation
Addresses 3 Critical CVEs in sglang 0.5.11: - GHSA-qwrp-wghp-94q2: unauthenticated path traversal in multimodal generation - GHSA-gwv6-pq6m-p3rq: untrusted pickle deserialization on ROUTER socket - GHSA-36m8-w8qf-g76p: unauthenticated RCE via --enable-custom-logit-processor Also bumps sglang-kernel 0.4.2 → 0.4.3 to stay in sync. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> Signed-off-by: Kajal Jain <kajalj@nvidia.com>
Upgrades uv in both Dockerfiles to address: - GHSA-82j2-j2ch-gfr8 (High): rustls-webpki DoS via panic on malformed CRL BIT STRING (0.103.10 → 0.103.13) Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> Signed-off-by: Kajal Jain <kajalj@nvidia.com>
Addresses: - GHSA-qh6h-p6c9-ff54 (High): path traversal in legacy load_prompt functions in langchain-core <1.2.22 langchain-core is a transitive dep only (nvidia-resiliency-ext → logsage → langchain-core); NeMo-RL does not import it directly. Updates the logsage dependency-metadata override to allow the langchain 1.x ecosystem (langchain >=1.2.0, langchain-core >=1.2.22, langchain-nvidia-ai-endpoints >=1.0.0), and adds a global override-dependency for langchain-core>=1.2.22. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> Signed-off-by: Kajal Jain <kajalj@nvidia.com>
Upgrades from pre-release commit 15a8515 (2026-04-07) to the stable v0.6.0 tag (2026-05-14, +120 commits). Also switches the source specifier from rev to tag for clearer version tracking. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> Signed-off-by: Kajal Jain <kajalj@nvidia.com>
Reflects all dependency bumps in this branch. Notable changes: - sglang 0.5.11 → 0.5.12.post1, sglang-kernel 0.4.2 → 0.4.2.post2 - nvidia-resiliency-ext pre-release → v0.6.0 - logsage + langchain ecosystem removed (nvrx v0.6.0 dropped logsage) Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> Signed-off-by: Kajal Jain <kajalj@nvidia.com>
|
Auto-sync is disabled for draft pull requests in this repository. Workflows must be run manually. Contributors can view more details about this message here. |
Contributor
Author
|
/ok to test 69da070 |
# Conflicts: # uv.lock
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> Signed-off-by: Kajal Jain <kajalj@nvidia.com>
Contributor
Author
|
/ok to test e9979d9 |
# Conflicts: # pyproject.toml # uv.lock
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> Signed-off-by: Kajal Jain <kajalj@nvidia.com>
Addresses: - GHSA-897w-fcg9-f6xj (High): arbitrary file write via NTFS-hostile tree entries on Windows - GHSA-9277-mp7x-85jf (High): command injection via merge driver path dulwich is a transitive dependency; fix applied via constraint-dependencies. Resolves to v1.2.6. diffusers (GHSA-7wx4-6vff-v64p, GHSA-98h9-4798-4q5v) cannot be bumped to 0.38.0: it requires safetensors>=0.8.0rc0 which has no stable release yet. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> Signed-off-by: Kajal Jain <kajalj@nvidia.com>
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com> Signed-off-by: Kajal Jain <kajalj@nvidia.com>
Contributor
Author
|
/ok to test 752b667 |
chtruong814
approved these changes
Jun 8, 2026
Contributor
chtruong814
left a comment
chtruong814
left a comment
There was a problem hiding this comment.
Just had a question. If we still need to do that, that's fine. But I think nvrx has a 0.6.0 pypi package that would get brought in?
terrykong
approved these changes
Jun 8, 2026
Contributor
Author
|
/ok to test 55cec17 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Addresses multiple CVEs flagged by the DT nSpect container scan of
nvcr.io/nvidian/nemo-rl:nightly.Not addressed (no fix available)
Test plan
uv sync --extra sglang)🤖 Generated with Claude Code