Bump cryptography from 46.0.3 to 46.0.4 by dependabot[bot] · Pull Request #339 · senzing-garage/sz-python-tools

dependabot · 2026-02-18T22:53:46Z

Bumps cryptography from 46.0.3 to 46.0.4.

Changelog

Sourced from cryptography's changelog.

46.0.4 - 2026-01-27

* `Dropped support for win_arm64 wheels`_. * Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.5.5.

.. _v46-0-3:

Commits

e6f44fc bump for 46.0.4 and drop win arm64 due to CI issues (#14217)
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

senzingdevops

Automated: approving this pull request because it includes a patch update

github-actions · 2026-02-18T22:54:59Z

🤖 Claude Code Review

PR Code Review

Summary: This is a simple dependency bump of cryptography from 46.0.3 to 46.0.4.

Code Quality

✅ Single-line change, no style concerns
✅ No commented-out code
✅ N/A — no new variables
✅ N/A — no duplication concerns
✅ No defects introduced; this is a patch version bump likely addressing a security fix in the cryptography library

Testing

✅ No new code logic requiring tests
✅ Existing tests should cover continued functionality

Documentation

❌ CHANGELOG.md — not updated. Dependency version bumps, especially security-related ones, should be noted in the changelog.

Security

✅ No hardcoded credentials
✅ No input validation concerns
✅ No sensitive data exposure
✅ No license files checked in

Overall: This is a routine security/patch bump of the `cryptography` library. The change is correct and appropriate. The only minor gap is the missing changelog entry. Consider adding a note to `CHANGELOG.md` referencing the dependency update.

Automated code review analyzing defects and coding standards

Bumps [cryptography](https://github.com/pyca/cryptography) from 46.0.3 to 46.0.4. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](pyca/cryptography@46.0.3...46.0.4) --- updated-dependencies: - dependency-name: cryptography dependency-version: 46.0.4 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

senzingdevops

Automated: approving this pull request because it includes a patch update

github-actions · 2026-02-18T22:56:31Z

🤖 Claude Code Review

PR Code Review

This PR contains a single dependency version bump for cryptography from 46.0.3 to 46.0.4.

Code Quality

✅ No style guide violations — single line change in pyproject.toml
✅ No commented-out code
✅ N/A — no variable names to evaluate
✅ N/A — no DRY concerns
✅ No defects, logic errors, or security issues introduced

Testing

✅ No new functions require unit tests
✅ No new endpoints require integration tests
✅ Existing test suite covers dependency compatibility

Documentation

✅ README update not required for a patch dependency bump
✅ No API changes
✅ No complex logic requiring inline comments
✅ CHANGELOG.md — not updated, but this is a dependency bump via automated Dependabot-style PR; acceptable if project convention allows skipping CHANGELOG for automated dependency updates
✅ No Markdown file changes

Security

✅ No hardcoded credentials
✅ No input validation concerns
✅ No error handling concerns
✅ No sensitive data in logs
✅ No license files (.lic) or AQAAAD-prefixed strings detected

Summary

This is a straightforward security/patch update to `cryptography`. The `46.0.4` release is a patch bump from `46.0.3` — typically containing bug fixes or security patches. No issues found. Approved.

Automated code review analyzing defects and coding standards

dependabot Bot added dependencies Pull requests that update a dependency file python python programming languagae labels Feb 18, 2026

dependabot Bot requested a review from a team as a code owner February 18, 2026 22:53

dependabot Bot added python python programming languagae dependencies Pull requests that update a dependency file labels Feb 18, 2026

senzingdevops approved these changes Feb 18, 2026

View reviewed changes

github-actions Bot enabled auto-merge (squash) February 18, 2026 22:54

dependabot Bot force-pushed the dependabot/pip/cryptography-46.0.4 branch from 230086c to 39e0a29 Compare February 18, 2026 22:55

senzingdevops approved these changes Feb 18, 2026

View reviewed changes

github-actions Bot merged commit 08a00ef into main Feb 18, 2026
59 checks passed

github-actions Bot deleted the dependabot/pip/cryptography-46.0.4 branch February 18, 2026 22:56

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump cryptography from 46.0.3 to 46.0.4#339

Bump cryptography from 46.0.3 to 46.0.4#339
github-actions[bot] merged 1 commit into
mainfrom
dependabot/pip/cryptography-46.0.4

dependabot Bot commented on behalf of github Feb 18, 2026 •

edited

Loading

Uh oh!

senzingdevops left a comment

Uh oh!

github-actions Bot commented Feb 18, 2026

Uh oh!

senzingdevops left a comment

Uh oh!

github-actions Bot commented Feb 18, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

dependabot Bot commented on behalf of github Feb 18, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

senzingdevops left a comment

Choose a reason for hiding this comment

Uh oh!

github-actions Bot commented Feb 18, 2026

🤖 Claude Code Review

PR Code Review

Code Quality

Testing

Documentation

Security

Overall: This is a routine security/patch bump of the cryptography library. The change is correct and appropriate. The only minor gap is the missing changelog entry. Consider adding a note to CHANGELOG.md referencing the dependency update.

Uh oh!

senzingdevops left a comment

Choose a reason for hiding this comment

Uh oh!

github-actions Bot commented Feb 18, 2026

🤖 Claude Code Review

PR Code Review

Code Quality

Testing

Documentation

Security

Summary

This is a straightforward security/patch update to cryptography. The 46.0.4 release is a patch bump from 46.0.3 — typically containing bug fixes or security patches. No issues found. Approved.

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

dependabot Bot commented on behalf of github Feb 18, 2026 •

edited

Loading

Overall: This is a routine security/patch bump of the `cryptography` library. The change is correct and appropriate. The only minor gap is the missing changelog entry. Consider adding a note to `CHANGELOG.md` referencing the dependency update.

This is a straightforward security/patch update to `cryptography`. The `46.0.4` release is a patch bump from `46.0.3` — typically containing bug fixes or security patches. No issues found. Approved.