Skip to content

chore(deps): bump cryptography from 46.0.6 to 46.0.7#478

Merged
jmeridth merged 1 commit into
mainfrom
dependabot/uv/cryptography-46.0.7
Apr 9, 2026
Merged

chore(deps): bump cryptography from 46.0.6 to 46.0.7#478
jmeridth merged 1 commit into
mainfrom
dependabot/uv/cryptography-46.0.7

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Apr 8, 2026

Copy link
Copy Markdown
Contributor

Bumps cryptography from 46.0.6 to 46.0.7.

Changelog

Sourced from cryptography's changelog.

46.0.7 - 2026-04-07


* **SECURITY ISSUE**: Fixed an issue where non-contiguous buffers could be
  passed to APIs that accept Python buffers, which could lead to buffer
  overflow. **CVE-2026-39892**
* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.5.6.

.. _v46-0-6:

Commits

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Apr 8, 2026
@dependabot
dependabot Bot requested review from jmeridth and zkoppert as code owners April 8, 2026 22:17
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Apr 8, 2026
@jmeridth

jmeridth commented Apr 9, 2026

Copy link
Copy Markdown
Collaborator

@dependabot rebase

Bumps [cryptography](https://github.com/pyca/cryptography) from 46.0.6 to 46.0.7.
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](pyca/cryptography@46.0.6...46.0.7)

---
updated-dependencies:
- dependency-name: cryptography
  dependency-version: 46.0.7
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
dependabot Bot force-pushed the dependabot/uv/cryptography-46.0.7 branch from 9bf3489 to 6b78936 Compare April 9, 2026 02:32
@jmeridth
jmeridth enabled auto-merge (squash) April 9, 2026 02:33
@jmeridth
jmeridth merged commit c03360b into main Apr 9, 2026
36 checks passed
@jmeridth
jmeridth deleted the dependabot/uv/cryptography-46.0.7 branch April 9, 2026 02:34
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file maintenance python Pull requests that update Python code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant