Skip to content

Commit 980d633

Browse files
authored
chore(deps): Update cryptography version (#4801)
Resolves vulns found by osv-scanner. Not sure why this wasn't included in dependabot's PR for the same package (#4797) ``` +-------------------------------------+------+-----------+--------------+---------+---------------+--------------------------------+ | OSV URL | CVSS | ECOSYSTEM | PACKAGE | VERSION | FIXED VERSION | SOURCE | +-------------------------------------+------+-----------+--------------+---------+---------------+--------------------------------+ | https://osv.dev/GHSA-r6ph-v2qm-q3c2 | | PyPI | cryptography | 46.0.3 | 46.0.5 | docker/poetry/requirements.txt | | https://osv.dev/GHSA-r6ph-v2qm-q3c2 | | PyPI | cryptography | 46.0.4 | 46.0.5 | gcp/functions/pypi/poetry.lock | +-------------------------------------+------+-----------+--------------+---------+---------------+--------------------------------+ ```
1 parent a4cb1c6 commit 980d633

3 files changed

Lines changed: 54 additions & 54 deletions

File tree

docker/poetry/requirements.txt

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -232,7 +232,7 @@ crashtest==0.4.1 \
232232
--hash=sha256:80d7b1f316ebfbd429f648076d6275c877ba30ba48979de4191714a75266f0ce \
233233
--hash=sha256:8d23eac5fa660409f57472e3851dab7ac18aba459a8d19cbbba86d3d5aecd2a5
234234
# via cleo
235-
cryptography==46.0.3 \
235+
cryptography==46.0.5 \
236236
--hash=sha256:00a5e7e87938e5ff9ff5447ab086a5706a957137e6e433841e9d24f38a065217 \
237237
--hash=sha256:01ca9ff2885f3acc98c29f1860552e37f6d7c7d013d7334ff2a9de43a449315d \
238238
--hash=sha256:09859af8466b69bc3c27bdf4f5d84a665e0f7ab5088412e9e2ec49758eca5cbc \

gcp/functions/pypi/poetry.lock

Lines changed: 52 additions & 52 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

gcp/functions/pypi/pyproject.toml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -2,7 +2,7 @@
22
name = "pypi-publish"
33
requires-python = ">=3.13,<4.0"
44
dependencies = [
5-
"cryptography (==46.0.4)",
5+
"cryptography (==46.0.5)",
66
"google-cloud-secret-manager (==2.26.0)",
77
"osv (==0.1.2)",
88
"requests (==2.32.5)",

0 commit comments

Comments
 (0)