nessi/NexaPG
1
0
Fork 0
Code Issues 20 Pull Requests Actions Packages Projects Releases 12 Activity

12 Releases 12 Tags

RSS Feed
  • 0.1.7 6848a66d88
    Compare

    NexaPG 0.1.7 - Backend Security Update
    All checks were successful
    PostgreSQL Compatibility Matrix / PG14 smoke (push) Successful in 8s
    Details
    PostgreSQL Compatibility Matrix / PG15 smoke (push) Successful in 8s
    Details
    PostgreSQL Compatibility Matrix / PG16 smoke (push) Successful in 7s
    Details
    PostgreSQL Compatibility Matrix / PG17 smoke (push) Successful in 8s
    Details
    PostgreSQL Compatibility Matrix / PG18 smoke (push) Successful in 8s
    Details
    Docker Publish (Release) / Build and Push Docker Images (release) Successful in 1m32s
    Details
    Stable

    nessi released this 2026-02-13 12:10:48 +00:00 | 24 commits to main since this release

    Security

    Backend Dependency Hardening

    • Updated backend framework and security-related Python packages:
      • fastapi -> 0.129.0
      • starlette -> 0.52.1 (explicitly pinned)
      • cryptography -> 46.0.5
      • python-multipart -> 0.0.22
      • ecdsa -> 0.19.1

    Backend Base Image Hardening

    • Updated backend runtime base image:
      • python:3.12-slim -> python:3.13-slim
    • Added OS package security refresh during image build:
      • apt-get update
      • apt-get upgrade -y
      • cleanup of apt lists to keep image lean

    Notes

    • No database migration required.
    • Rebuild and republish backend image, then redeploy to apply all security updates.
    Downloads