Skip to content

core: bump cryptography from 44.0.3 to 45.0.3#14690

Merged
rissson merged 1 commit intomainfrom
dependabot/uv/cryptography-45.0.3
May 26, 2025
Merged

core: bump cryptography from 44.0.3 to 45.0.3#14690
rissson merged 1 commit intomainfrom
dependabot/uv/cryptography-45.0.3

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github May 26, 2025

Bumps cryptography from 44.0.3 to 45.0.3.

Changelog

Sourced from cryptography's changelog.

45.0.3 - 2025-05-25


* Fixed decrypting PKCS#8 files encrypted with long salts (this impacts keys
  encrypted by Bouncy Castle).
* Fixed decrypting PKCS#8 files encrypted with DES-CBC-MD5. While wildly
  insecure, this remains prevalent.

.. _v45-0-2:


45.0.2 - 2025-05-17

  • Fixed using mypy with cryptography on older versions of Python.

.. _v45-0-1:

45.0.1 - 2025-05-17


* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.5.0.

.. _v45-0-0:


45.0.0 - 2025-05-17 (YANKED)

  • Support for Python 3.7 is deprecated and will be removed in the next cryptography release.
  • Updated the minimum supported Rust version (MSRV) to 1.74.0, from 1.65.0.
  • Added support for serialization of PKCS#12 Java truststores in :func:~cryptography.hazmat.primitives.serialization.pkcs12.serialize_java_truststore
  • Added :meth:~cryptography.hazmat.primitives.kdf.argon2.Argon2id.derive_phc_encoded and :meth:~cryptography.hazmat.primitives.kdf.argon2.Argon2id.verify_phc_encoded methods to support password hashing in the PHC string format
  • Added support for PKCS7 decryption and encryption using AES-256 as the content algorithm, in addition to AES-128.
  • BACKWARDS INCOMPATIBLE: Made SSH private key loading more consistent with other private key loading: :func:~cryptography.hazmat.primitives.serialization.load_ssh_private_key now raises a TypeError if the key is unencrypted but a password is provided (previously no exception was raised), and raises a TypeError if the key is encrypted but no password is provided (previously a ValueError was raised).
  • Added __copy__ to the :class:~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePrivateKey, :class:~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePublicKey, :class:~cryptography.hazmat.primitives.asymmetric.ed25519.Ed25519PublicKey, :class:~cryptography.hazmat.primitives.asymmetric.ed25519.Ed25519PrivateKey, :class:~cryptography.hazmat.primitives.asymmetric.ed448.Ed448PublicKey,

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
core: bump cryptography from 44.0.3 to 45.0.3
20d7274 
Bumps [cryptography](https://github.com/pyca/cryptography) from 44.0.3 to 45.0.3.
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](pyca/cryptography@44.0.3...45.0.3)

---
updated-dependencies:
- dependency-name: cryptography
  dependency-version: 45.0.3
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label May 26, 2025
@dependabot dependabot bot requested a review from a team as a code owner May 26, 2025 04:58
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label May 26, 2025
@dependabot dependabot bot mentioned this pull request May 26, 2025
Closed
@netlify
Copy link

netlify bot commented May 26, 2025
edited
Loading

Deploy Preview for authentik-storybook canceled.

Name Link
🔨 Latest commit 20d7274
🔍 Latest deploy log https://app.netlify.com/projects/authentik-storybook/deploys/6833f4fa7bb0b80008e57e78

@netlify
Copy link

netlify bot commented May 26, 2025
edited
Loading

Deploy Preview for authentik-docs canceled.

Name Link
🔨 Latest commit 20d7274
🔍 Latest deploy log https://app.netlify.com/projects/authentik-docs/deploys/6833f4fa33bd7100081b03c0

@rissson rissson enabled auto-merge (squash) May 26, 2025 12:30
@rissson rissson merged commit 6e03045 into main May 26, 2025
87 checks passed
@rissson rissson deleted the dependabot/uv/cryptography-45.0.3 branch May 26, 2025 12:37
kensternberg-authentik added a commit that referenced this pull request Jun 6, 2025
@kensternberg-authentik
Merge branch 'main' into dev
f0e742c 
* main: (27 commits)
  lib/sync/outgoing: sync in parallel (#14697)
  core, web: update translations (#14707)
  tests/e2e: fix flaky SAML Source test (#14708)
  web: fix lock (#14705)
  Update packages-npm-publish.yml (#14702)
  website/integrations: coder: fix typo (#14514)
  ci: Update packages-npm-publish.yml (#14701)
  web: bump the swc group across 2 directories with 12 updates (#14623)
  web: Use engine available on Github Actions. (#14699)
  web: bump the rollup group across 1 directory with 4 updates (#14682)
  ci: test with postgres 17 (#13967)
  web: bump knip from 5.33.0 to 5.58.0 in /web (#14685)
  web: bump fuse.js from 7.0.0 to 7.1.0 in /web (#14687)
  web: bump @formatjs/intl-listformat from 7.5.7 to 7.7.11 in /web (#14689)
  root: do not use /bin/bash directly (#14698)
  website/integrations: minio: notice about sso deprecation on CE (#14679)
  core: bump cryptography from 44.0.3 to 45.0.3 (#14690)
  core: bump django-tenants from 3.7.0 to 3.8.0 (#14691)
  core: bump astral-sh/uv from 0.7.7 to 0.7.8 (#14681)
  core: bump axllent/mailpit from v1.25.0 to v1.25.1 in /tests/e2e (#14693)
  ...
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@rissson rissson rissson approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@rissson