From 29b331e259e398700488ccaf7eeb944b96738322 Mon Sep 17 00:00:00 2001
From: Jesse Claven <jesse.claven@me.com>
Date: Mon, 4 Mar 2024 10:06:17 +0000
Subject: [PATCH] build(docker): Bump dependencies

Reduces exposure to CVEs.

**Testing**

`$ make build`

```
docker run --rm -it seldonio/mlserver:1.5.0.dev1 pip list | grep cryptography
```

Looks like the cryptography package isn't there?

It does have other packages, as expected:

```
$ docker run --rm -it seldonio/mlserver:1.5.0.dev1 pip list | grep huggingface
huggingface-hub                          0.21.3
mlserver-huggingface                     1.5.0.dev1
```

```
$ docker run --rm -it seldonio/mlserver:1.5.0.dev1 pip list | grep catboost
catboost                                 1.2.3
mlserver-catboost                        1.5.0.dev1
```
---
 Dockerfile | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/Dockerfile b/Dockerfile
index 9228010fd..1742016b2 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -1,7 +1,7 @@
 FROM python:3.10-slim AS wheel-builder
 SHELL ["/bin/bash", "-l", "-c"]
 
-ARG POETRY_VERSION="1.7.1"
+ARG POETRY_VERSION="1.8.1"
 
 COPY ./hack/build-wheels.sh ./hack/build-wheels.sh
 COPY ./mlserver ./mlserver
@@ -27,8 +27,8 @@ RUN pip install poetry==$POETRY_VERSION && \
 FROM registry.access.redhat.com/ubi9/ubi-minimal
 SHELL ["/bin/bash", "-c"]
 
-ARG PYTHON_VERSION=3.10.11
-ARG CONDA_VERSION=23.3.1
+ARG PYTHON_VERSION=3.10.12
+ARG CONDA_VERSION=23.11.0
 ARG MINIFORGE_VERSION=${CONDA_VERSION}-0
 ARG RUNTIMES="all"