[anaconda]-fixing security vulnerabilities - Werkzeug, distributed, wheel, filelock and bokeh

[sireeshajonnalagadda]

Fixing security vulnerabilities for anacoda image. ref

GHSA ID	Vulnerability ID	Action	Package	Installed Version	Required Version	Language	Install Path/ Note
GHSA-87hc-h4r5-73f7: Werkzeug	5006885	Y	Werkzeug	3.1.3	3.1.5	Python	opt/conda/lib/python3.12/site-packages/werkzeug-3.1.3.dist-info/METADATA opt/conda/pkgs/werkzeug-3.1.3-py312h06a4308__0/lib/python3.12/site-packages/werkzeug-3.1.3.dist-info/METADATA
GHSA-c336-7962-wfj2: distributed	5007047	Y	distributed	2024.8.2	2026.1.0	Python	opt/conda/lib/python3.12/site-packages/distributed-2024.8.2.dist-info/METADATA
GHSA-8rrh-rw8j-w5fx: wheel	5007163	Y	wheel	0.44.0	0.46.2	Python	opt/conda/lib/python3.12/site-packages/wheel-0.44.0.dist-info/METADATA
GHSA-w853-jp5j-5j7f: filelock	5006638	Y	filelock	3.13.1	3.20.1	Python	opt/conda/lib/python3.12/site-packages/filelock-3.13.1.dist-info/METADATA
GHSA-793v-589g-574v: bokeh	5006839	Y	bokeh	3.6.0	3.8.2	Python	opt/conda/lib/python3.12/site-packages/bokeh-3.6.0.dist-info/METADATA

[Copilot]

Pull request overview

Updates the Anaconda devcontainer image to remediate reported Python package vulnerabilities by bumping affected package versions and aligning smoke tests with the new minimums.

Changes:

• Bump wheel, Werkzeug, and add distributed to the security patching flow.
• Update Anaconda smoke tests to require the patched minimum versions.
• Patch-bump the Anaconda image manifest version.

Reviewed changes

Copilot reviewed 3 out of 3 changed files in this pull request and generated 3 comments.

File	Description
src/anaconda/.devcontainer/apply_security_patches.sh	Updates the list of vulnerable/pinned Python packages to install patched versions.
src/anaconda/test-project/test.sh	Raises minimum required versions for wheel/werkzeug and adds a version check for distributed.
src/anaconda/manifest.json	Patch version bump for the Anaconda image.