Skip to content

Patch CVE-2024-49767 in python-werkzeug (#10948) #34784

Patch CVE-2024-49767 in python-werkzeug (#10948)

Patch CVE-2024-49767 in python-werkzeug (#10948) #34784

# Copyright (c) Microsoft Corporation.
# Licensed under the MIT License.
name: Check Manifests
on:
push:
branches: [main, dev, 1.0*, 2.0*, 3.0*, fasttrack/*]
pull_request:
branches: [main, dev, 1.0*, 2.0*, 3.0*, fasttrack/*]
jobs:
build:
name: Check Manifests
runs-on: ubuntu-latest
steps:
- name: Check out code
uses: actions/checkout@v4
# This PR runner uses an older Ubuntu with rpm version 4.17, which doesn't understand some newer macros like %bcond
- name: Define missing rpm macros
run: |
[[ -n $(rpm --eval '%bcond test 1') ]] && echo '%bcond() %[ (%{2}) ? "%{expand:%%bcond_without %{1}}" : "%{expand:%%bcond_with %{1}}" ]' > ~/.rpmmacros
- name: Check x86_64 manifests
run: |
echo ##########
echo "Ensure toolchain and pkggen manifests (./toolkit/resources/manifests/package/*) match the versions in the .spec files"
echo "Run './scripts/toolchain/check_manifests.sh -a "x86_64"' to validate locally"
echo ##########
pushd toolkit
./scripts/toolchain/check_manifests.sh -a "x86_64"
popd
- name: Check aarch64 manifests
run: |
echo ##########
echo "Ensure toolchain and pkggen manifests (./toolkit/resources/manifests/package/*) match the versions in the .spec files"
echo "Run './scripts/toolchain/check_manifests.sh -a "aarch64"' to validate locally"
echo ##########
pushd toolkit
./scripts/toolchain/check_manifests.sh -a "aarch64"
popd
if: always()