Skip to content

chore: upgrade virtualenv#4585

Merged
raghotham merged 1 commit intollamastack:mainfrom
raghotham:fix/virtualenv-security-vulnerability
Jan 13, 2026
Merged

chore: upgrade virtualenv#4585
raghotham merged 1 commit intollamastack:mainfrom
raghotham:fix/virtualenv-security-vulnerability

Conversation

@raghotham
Copy link
Member

@raghotham raghotham commented Jan 13, 2026

Vulnerability detected in virtualenv

Affected versions: < [20.36.1]
Fixed in version: [20.36.1]
Severity: MODERATE

Identifiers:
GHSA-597g-3phw-6986
CVE-2026-22702

References:

GHSA-597g-3phw-6986
https://nvd.nist.gov/vuln/detail/CVE-2026-22702
pypa/virtualenv#3013
pypa/virtualenv@dec4cec
GHSA-597g-3phw-6986

@meta-cla meta-cla bot added the CLA Signed This label is managed by the Meta Open Source bot. label Jan 13, 2026
@raghotham raghotham merged commit b4982e7 into llamastack:main Jan 13, 2026
36 checks passed
@raghotham raghotham deleted the fix/virtualenv-security-vulnerability branch January 13, 2026 21:17
franciscojavierarceo pushed a commit to franciscojavierarceo/llama-stack that referenced this pull request Jan 16, 2026
@raghotham @franciscojavierarceo
chore: upgrade virtualenv (llamastack#4585)
9624d1a 
Vulnerability detected in virtualenv

Affected versions: < [20.36.1]
Fixed in version: [20.36.1]
Severity: MODERATE

Identifiers:
GHSA-597g-3phw-6986
CVE-2026-22702

References:


GHSA-597g-3phw-6986
https://nvd.nist.gov/vuln/detail/CVE-2026-22702
pypa/virtualenv#3013

pypa/virtualenv@dec4cec
GHSA-597g-3phw-6986
JayDi11a pushed a commit to JayDi11a/llama-stack that referenced this pull request Jan 23, 2026
@raghotham @JayDi11a
chore: upgrade virtualenv (llamastack#4585)
b22bc14 
Vulnerability detected in virtualenv

Affected versions: < [20.36.1]
Fixed in version: [20.36.1]
Severity: MODERATE

Identifiers:
GHSA-597g-3phw-6986
CVE-2026-22702

References:


GHSA-597g-3phw-6986
https://nvd.nist.gov/vuln/detail/CVE-2026-22702
pypa/virtualenv#3013

pypa/virtualenv@dec4cec
GHSA-597g-3phw-6986
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@franciscojavierarceo franciscojavierarceo franciscojavierarceo approved these changes

@ashwinb ashwinb Awaiting requested review from ashwinb ashwinb is a code owner

@ehhuang ehhuang Awaiting requested review from ehhuang ehhuang is a code owner

@leseb leseb Awaiting requested review from leseb leseb is a code owner

@bbrowning bbrowning Awaiting requested review from bbrowning bbrowning is a code owner

@mattf mattf Awaiting requested review from mattf mattf is a code owner

@cdoern cdoern Awaiting requested review from cdoern cdoern is a code owner

Assignees

No one assigned

Labels

CLA Signed This label is managed by the Meta Open Source bot.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@raghotham @franciscojavierarceo