[Snyk] Security upgrade python from 3.11-slim-bookworm to 3.14-rc-slim | Update Dockerfile to Python 3.14 for improved security

[nerdy-tech-com-gitub]

Snyk has created this PR to fix 4 vulnerabilities in the dockerfile dependencies of this project.

Keeping your Docker base image up-to-date means you’ll benefit from security fixes in the latest version of your chosen image.

Snyk changed the following file(s):

• Dockerfile

We recommend upgrading to python:3.14-rc-slim, as this image has only 37 known vulnerabilities. To do this, merge this pull request, then verify your application still works as expected.

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Integer Overflow or Wraparound SNYK-DEBIAN12-ZLIB-6008963	500
	CVE-2024-9143 SNYK-DEBIAN12-OPENSSL-8229893	221
	CVE-2024-9143 SNYK-DEBIAN12-OPENSSL-8229893	221
	CVE-2023-50495 SNYK-DEBIAN12-NCURSES-6123823	150
	CVE-2023-45918 SNYK-DEBIAN12-NCURSES-6252773	150

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
web-ui	❌ Failed (Inspect)			Oct 22, 2024 9:05am

[trag-bot]

@trag-bot didn't find any issues in the code! ✅✨

[trag-bot]

prBody:

1. Updated the base image in the Dockerfile from python:3.11-slim-bookworm to python:3.14-rc-slim.
2. This change allows the application to leverage the features and improvements introduced in Python 3.14.
3. The new base image is a release candidate, which may include optimizations and bug fixes not present in the previous version.
4. The change ensures compatibility with any new dependencies that may require features from Python 3.14.
5. The updated base image may also provide better support for modern libraries and frameworks.
6. This modification is part of the effort to keep the application environment up to date with the latest Python releases.
7. The change is expected to facilitate easier maintenance and upgrades in the future.
8. The Dockerfile structure remains intact, ensuring that the build process is not disrupted.
9. No additional dependencies or configurations were altered in this change.
10. The update will be tested to confirm that the application functions correctly with the new Python version.

[sweep-ai]

Hey @nerds-github, here is an example of how you can ask me to improve this pull request:

@Sweep Add unit tests to verify that the application still functions correctly with Python 3.14-rc. Specifically:
- Test that all existing Python dependencies are compatible with Python 3.14
- Test that any Python features used in the codebase work as expected with Python 3.14
- Test that any system calls or OS-level interactions still work properly with the new slim base image

📖 For more information on how to use Sweep, please read our documentation.