Our following Python Libraries have been updated to version 51.0.2.2.1096:
Edit: this blog was originally posted for v51.0.2.1.1086 but has since been updated to reflect the subsequently (18 hours later) released 51.0.2.2.1096 which includes a CVE fix for setuptools.
What’s New
Version 51.0.2.2.1096 of the IBM Security QRadar SOAR Python libraries introduces a new STOMP connection library, removed support for EOL Python versions, important security updates, and more.
Removed Support for Python 3.6 and Python 2.7
In this minor release of the IBM SOAR Python libraries, we’ve made the decision to remove support for Python 3.6 and Python 2.7. The only officially supported versions of Python for our libraries now is Python 3.9, 3.11, and 3.12. We first mentioned the possibility that the IBM SOAR Python libraries would drop support for End of Life (EOL) versions of Python with our release of 51.0.1.0.695. Please read our discussion of the dangers of running in EOL versions of Python in this blog post. In conjunction with the security risks, we reached a point with the very necessary upgrade of the underlying STOMP library for resilient-circuits where it was no longer possible for us to support Python 3.6 and 2.7 so we moved on.
Going forward, we have a few recommendations for customers who still rely on Python 3.6 or 2.7. First, if possible, please upgrade your systems as soon as possible to move on to 3.11 or 3.12. Those versions are the latest versions of Python and will receive support for the foreseeable future. If you are unable to complete such a migration in a timely fashion, be aware that all versions of the IBM SOAR libraries lower than 51.0.2.2.1096 will continue to be available for your use and installation from PyPi at the links given above. PyPi will automatically resolve any installs of legacy apps to use the appropriate version of the libraries depending on the required version in the app and the version of Python that you have. We always recommend using the latest software in your apps environments, so consider using 51.0.2.0.974 until you are able to upgrade the underlying Python version. You can install a specific version of any library by running:
pip install "resilient==51.0.2.0.974" "resilient-lib==51.0.2.0.974" "resilient-circuits==51.0.2.0.974" "resilient-sdk==51.0.2.0.974"
We will not be releasing back-ported security updates for 3.6 and 2.7 (this is for the most part impossible already given that all other major Python projects have long since dropped support for these versions). Be aware that using 3.6 and 2.7 has been considered a security risk for a while now.
Going forward, we will attempt to support all of Python 3.9, 3.11, and 3.12, however, Python 3.9 has only one more year of security support and then will go out of support. If you are considering upgrading Python versions, there has never been a better time to move to the latest version. For more details on end of life dates for Python versions see https://endoflife.date/python.
Change Log
resilient-circuits
- Replace stompest with stomp.py library for managing STOMP connections for message destination communication with SOAR.
- Fix for secret substitution with
^ prefixed function inputs.
resilient-sdk
- Improvements for
docgen with poller apps
- Dockerfile base image updated to include
yum update to update base image OS dependencies
You can update your copies of each package using the pip install --upgrade command. For example:
pip install --upgrade "resilient-circuits>=51.0.2.2.1096" --upgrade "resilient-sdk>=51.0.2.2.1096"
Checkout the Change Log and our docs at https://ibm.biz/soar-python-docs for more details.