fix(ci): tests and security workflow fixes (#1608)

SeldonIO · Mar 4, 2024 · 582c6e3 · 582c6e3
1 parent 4015316
commit 582c6e3
Show file tree

Hide file tree

Showing 13 changed files with 7,183 additions and 40 deletions.
diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml
@@ -47,7 +47,7 @@ jobs:
       - name: Upload result to GitHub Code Scanning
         uses: github/codeql-action/upload-sarif@v3
         with:
-          sarif_file: snyk-code.sarif
+          sarif_file: snyk-sat.sarif
 
   scan-image:
     runs-on: ubuntu-latest

diff --git a/poetry.lock b/poetry.lock
diff --git a/pyproject.toml b/pyproject.toml
@@ -56,7 +56,9 @@ starlette-exporter = "*"
 py-grpc-prometheus = "*"
 aiokafka = "*"
 # add a min version to tritonclient due to https://github.com/triton-inference-server/server/issues/6246
-tritonclient = ">=2.40"
+tritonclient = {version = ">=2.42", extras = ["http"]}
+geventhttpclient = "*"
+gevent = "*"
 aiofiles = "*"
 orjson = "*"
 uvloop = {version = "*", markers = "sys_platform != 'win32' and (sys_platform != 'cygwin' and platform_python_implementation != 'PyPy')"}
@@ -75,7 +77,6 @@ opentelemetry-exporter-otlp-proto-grpc = "^1.22.0"
 [tool.poetry.group.dev.dependencies]
 datamodel-code-generator = "0.25.4"
 grpcio-tools = "1.48.1"
-tritonclient = {version = "2.42.0", extras = ["http"]}
 pytest = "7.4.4"
 pytest-asyncio = "0.21.1"
 pytest-mock = "3.11.1"
@@ -127,9 +128,6 @@ optional = true
 requests-mock = "~1.11.0"
 types-requests = "~2.28.11.5"
 
-## Dev dependencies from Alibi-Detect
-tensorflow = "<2.15"
-
 ## Dev dependencies from MLflow
 torch = "2.2.1"
 pytorch-lightning = "2.2.0.post0"