Before commit to our repository please scan code on security vulnerabilities via bandit tool. Run snyk scan on code and on a docker image if you do changes in dockerfile.
Before target using a docker container, please update third-party packages to get the last security fixes. It needs because an docker image has 3d party snapshot on the time that it was built. When you will use a docker container based on the image, several new security vulnerabilities may be already fixed and need just update these 3d party packages.
# for Ubuntu
apt update && apt upgrade -y --no-install-recommends && rm -rf /var/lib/apt/lists/*
# for RHEL
yum -y update-minimal --security --setopt=tsflags=nodocs && yum clean allWe recommend to use the latest version of PyPi packages installer to resolve dependency issues as well.
python -m pip install --upgrade pipAs well we recommend to use the official Intel® Distribution of OpenVINO™ toolkit packages from trusted resources. See more on the product page.
Please report security issues or vulnerabilities to the Intel® Security Center. For more information on how Intel® works to resolve security issues, see Vulnerability Handling Guidelines.