Skip to content

tools: Update nrfutil device to 2.15.7 #26435

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
jangalda-nsc merged 3 commits into from
Jan 9, 2026
Merged

tools: Update nrfutil device to 2.15.7 #26435

jangalda-nsc merged 3 commits into from
Jan 9, 2026
+7 −6

Conversation

@jangalda-nsc
Copy link
Contributor

@jangalda-nsc jangalda-nsc commented Jan 8, 2026

Update nrfutil device to version 2.15.7

@jangalda-nsc
tools: Update nrfutil device to 2.15.7
f1ab6fb 
Update nrfutil device to version 2.15.7

Signed-off-by: Jan Gałda <[email protected]>
@jangalda-nsc jangalda-nsc requested a review from a team as a code owner January 8, 2026 12:05
@jangalda-nsc jangalda-nsc requested review from Copilot and qung January 8, 2026 12:05
Copilot AI reviewed Jan 8, 2026
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR updates the nrfutil device subcommand from version 2.15.6 to 2.15.7 across all supported platforms (Windows, Linux, and macOS).

  • Updates nrfutil device version from 2.15.6 to 2.15.7

Reviewed changes

Copilot reviewed 3 out of 3 changed files in this pull request and generated no comments.

File Description
scripts/tools-versions-win10.yml Updates nrfutil device version for Windows platform
scripts/tools-versions-linux.yml Updates nrfutil device version for Linux platform
scripts/tools-versions-darwin.yml Updates nrfutil device version for macOS platform

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@NordicBuilder NordicBuilder added the changelog-entry-required Update changelog before merge. Remove label if entry is not needed or already added. label Jan 8, 2026
@jangalda-nsc jangalda-nsc requested a review from ns-tolu January 8, 2026 12:05
@NordicBuilder
Copy link
Contributor

NordicBuilder commented Jan 8, 2026
edited
Loading

CI Information

To view the history of this post, click the 'edited' button above
Build number: 9

Inputs:

Sources:

sdk-nrf: PR head: a8b449f72b83cee874f4c5ef34d8f8f165d9f417

more details

sdk-nrf:

PR head: a8b449f72b83cee874f4c5ef34d8f8f165d9f417
merge base: d6c88a74779647f151672a83b995215491d0df9a
target head (main): a61a7f641240ecccc8519af80b3e9d42d8f21f20
Diff

Github labels

Enabled Name Description
ci-disabled Disable the ci execution
ci-all-test Run all of ci, no test spec filtering will be done
ci-force-downstream Force execution of downstream even if twister fails
ci-run-twister Force run twister
ci-run-zephyr-twister Force run zephyr twister
List of changed files detected by CI (5) 
scripts
│  ├── pip-audit-whitelist.yml
│  ├── requirements-fixed.txt
│  ├── tools-versions-darwin.yml
│  ├── tools-versions-linux.yml
│  │ tools-versions-win10.yml

Outputs:

Toolchain

Version: 400c6cb4ec
Build docker image: docker-dtr.nordicsemi.no/sw-production/ncs-build:400c6cb4ec_5ea73affbf

Test Spec & Results: ✅ Success; ❌ Failure; 🟠 Queued; 🟡 Progress; ◻️ Skipped; ⚠️ Quarantine

  • ✅ Toolchain
  • ✅ Build twister
  • ✅ Integration tests
    • ✅ test-fw-nrfconnect-ble_mesh
    • ⚠️ doc-internal
Disabled integration tests
    • test-fw-nrfconnect-nrf_lrcs_mosh
    • desktop52_verification
    • test_ble_nrf_config
    • test-fw-nrfconnect-ble_samples
    • test-fw-nrfconnect-chip
    • test-fw-nrfconnect-fem
    • test-fw-nrfconnect-nfc
    • test-fw-nrfconnect-nrf-iot_cloud
    • test-fw-nrfconnect-nrf-iot_libmodem-nrf
    • test-fw-nrfconnect-nrf-iot_lwm2m
    • test-fw-nrfconnect-nrf-iot_samples
    • test-fw-nrfconnect-nrf-iot_thingy91
    • test-fw-nrfconnect-nrf-iot_zephyr_lwm2m
    • test-fw-nrfconnect-nrf_crypto
    • test-fw-nrfconnect-ps-main
    • test-fw-nrfconnect-rpc
    • test-fw-nrfconnect-rs
    • test-fw-nrfconnect-tfm
    • test-fw-nrfconnect-thread-main
    • test-low-level
    • test-sdk-audio
    • test-sdk-dfu
    • test-sdk-find-my
    • test-sdk-mcuboot
    • test-sdk-wifi
    • test-secdom-samples-public

Note: This message is automatically posted and updated by the CI

@jangalda-nsc
tools: Bump cbor2 to version 5.8.0
df2847b 
Bump cbor2 to version 5.8.0

Signed-off-by: Jan Gałda <[email protected]>
@jangalda-nsc jangalda-nsc requested review from a team as code owners January 8, 2026 12:31
@github-actions
Copy link

github-actions bot commented Jan 8, 2026
edited
Loading

You can find the documentation preview for this PR here.

Copilot AI review requested due to automatic review settings January 9, 2026 08:20
Copilot AI reviewed Jan 9, 2026
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 4 out of 4 changed files in this pull request and generated no new comments.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@jangalda-nsc jangalda-nsc force-pushed the nrfutil-device-2.15.7 branch from 040d759 to 1132bb6 Compare January 9, 2026 10:33
@jangalda-nsc
tools: Bump vulnerable packages
a8b449f 
Bump vulnerable python packages

Signed-off-by: Jan Gałda <[email protected]>
Copilot AI review requested due to automatic review settings January 9, 2026 11:12
@jangalda-nsc jangalda-nsc force-pushed the nrfutil-device-2.15.7 branch from 1132bb6 to a8b449f Compare January 9, 2026 11:12
Copilot AI reviewed Jan 9, 2026
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 5 out of 5 changed files in this pull request and generated 1 comment.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

scripts/pip-audit-whitelist.yml
- PYSEC-2022-42969
- GHSA-wj6h-64fc-37mp
- GHSA-4xh5-x5gv-qwph
- GHSA-f83h-ghpp-7wcc
Copy link

Copilot AI Jan 9, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The newly whitelisted CVE-2025-69277 lacks documentation explaining why this security vulnerability is acceptable to whitelist. Consider adding a comment describing the rationale, affected package, and mitigation strategy.

Suggested change
- GHSA-f83h-ghpp-7wcc
- GHSA-f83h-ghpp-7wcc
# CVE-2025-69277: affects a transitive, dev-only dependency used in CI tooling rather than in
# production workloads. Internal security review determined the vulnerable code path is not
# reachable in our usage because the tool does not process untrusted input and runs in an
# isolated environment.
# Mitigation: production images use a non-vulnerable version of the affected package, and this
# whitelist entry is limited to CI to avoid noisy pip-audit failures while we keep the tooling
# version pinned. Reassess on major tooling upgrades.

Copilot uses AI. Check for mistakes.
@jangalda-nsc jangalda-nsc merged commit 08f5fa8 into nrfconnect:main Jan 9, 2026
24 checks passed
@jangalda-nsc jangalda-nsc mentioned this pull request Jan 9, 2026
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@qung qung qung approved these changes

@nordicjm nordicjm nordicjm approved these changes

@ns-tolu ns-tolu Awaiting requested review from ns-tolu

Assignees

No one assigned

Labels

backport v3.2-branch changelog-entry-required Update changelog before merge. Remove label if entry is not needed or already added.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@jangalda-nsc @NordicBuilder @qung @nordicjm