nigzak

load_examples seems not fully compatible with superset 2.0.0 (warnings in log, deprecation warnings in UI)

1

load_examples seems not fully compatible with superset 2.0.0 and produces issues => script should be updated SAWarning: Attribute history events accumulated on previously clean instances within inner-flush event handlers have...

unknown error from gunicorn thrown (in logfile) if authlib is used: "ValueError: count must be a positive integer (got 0)"

4

the issue is only visible to me in the logfile - unclear if there are more impacts => there is no logging available where I can see more - I...

Send emails does not work -official documentation wrong? CHROME=>version incompatible ChromeDriver/Chrome FIREFOX=> 'geckodriver' executable needs to be in PATH

1

Sending emails does not work - does not mind if firefox or chrome is used #### How to reproduce the bug create custom dockerfile with adding firefox or chrome (same...

update superset 3.1.0 dependency "pillow 9.5.0"

3

### Bug description pillow 9.5.0 has some high findings https://scout.docker.com/vulnerabilities/id/GHSA-56pw-mpj4-fxww?s=github&n=pillow&t=pypi&vr=%3C10.0.1&utm_source=desktop&utm_medium=ExternalLink CVSS = N/A Fixed with 10.0.1 https://scout.docker.com/vulnerabilities/id/CVE-2023-50447?s=github&n=pillow&t=pypi&vr=%3C10.2.0&utm_source=desktop&utm_medium=ExternalLink CVSS = 8.1 Fixed with 10.2.0 https://scout.docker.com/vulnerabilities/id/CVE-2023-4863?s=github&n=pillow&t=pypi&vr=%3C10.0.1&utm_source=desktop&utm_medium=ExternalLink CVSS = 8.8 Fixed with 10.0.1...

[SIP-124] Add a text filter working as "like" to allow user to filter as dashboard_filter (generic solution) or as table_filter (specific solution)

9

## [SIP-124] Proposal for add a text filter working as "like" to allow user to filter as dashboard_filter (generic solution) or as table_filter (specific solution) ### Motivation If you have...

superset 4.0.1 uses sqlparse 0.4.4 with two high CVE findings => update to 0.5.0

1

### Bug description superset uses a sqlparse version which has to high CVE findings GHSA-2m57-hf25-phgg CVE-2024-4340 update to 0.5.0 (or newer) should be made ### How to reproduce the bug...

superset 4.0.1 uses werkzeug 3.0.1 with CVE => should update to 3.0.3 or newer

1

### Bug description the current 4.0.1 image has a high CVE finding with werkzeug CVE-2024-34069⁠ There should be made a update to 3.0.3 (or newer) ### How to reproduce the...

superset 4.0.1 uses Gunicorn 21.2.0 with CVE => should update to 22.0.0

1

### Bug description the current superset 4.0.1 image has a CVE finding CVE-2024-1135⁠ it should be updated to V22.0.0 (or newer) ### How to reproduce the bug download image from...

missing redis-update in superset 4.0.1 => redis 4.6.0

1

### Bug description redis was not updated in superset 4.0.1 as it was merged into master https://github.com/apache/superset/pull/27250 Because of this some scans show CVE finding which is fixed with 4.6.0...

Superset 4.0.1 uses again outdated setuptools 58.1.0 with CVE

1

### Bug description outdated setuptool used => CVE-2022-40897⁠ CVE Score 7.5 (high) by Docker Scout ### How to reproduce the bug fetch 4.0.1 image & scan image ### Screenshots/recordings _No...