Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly

Appearance settings

Bump cryptography from 46.0.5 to 46.0.6#176

Closed
dependabot[bot] wants to merge 1 commit into
mainSocketDev/socket-python-cli:mainfrom
dependabot/uv/cryptography-46.0.6SocketDev/socket-python-cli:dependabot/uv/cryptography-46.0.6Copy head branch name to clipboard
Closed

Bump cryptography from 46.0.5 to 46.0.6#176
dependabot[bot] wants to merge 1 commit into
mainSocketDev/socket-python-cli:mainfrom
dependabot/uv/cryptography-46.0.6SocketDev/socket-python-cli:dependabot/uv/cryptography-46.0.6Copy head branch name to clipboard

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Mar 29, 2026

Copy link
Copy Markdown
Contributor

Bumps cryptography from 46.0.5 to 46.0.6.

Changelog

Sourced from cryptography's changelog.

46.0.6 - 2026-03-25


* **SECURITY ISSUE**: Fixed a bug where name constraints were not applied
  to peer names during verification when the leaf certificate contains a
  wildcard DNS SAN. Ordinary X.509 topologies are not affected by this bug,
  including those used by the Web PKI. Credit to **Oleh Konko (1seal)** for
  reporting the issue. **CVE-2026-34073**

.. _v46-0-5:

Commits

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels Mar 29, 2026
@dependabot dependabot Bot requested a review from a team as a code owner March 29, 2026 04:28
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels Mar 29, 2026
@github-actions

Copy link
Copy Markdown

🚀 Preview package published!

Install with:

pip install --index-url https://test.pypi.org/simple/ --extra-index-url https://pypi.org/simple socketsecurity==2.2.79.dev5

Docker image: socketdev/cli:pr-176

Bumps [cryptography](https://github.com/pyca/cryptography) from 46.0.5 to 46.0.6.
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](pyca/cryptography@46.0.5...46.0.6)

---
updated-dependencies:
- dependency-name: cryptography
  dependency-version: 46.0.6
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/uv/cryptography-46.0.6 branch from 302bd55 to 09adf26 Compare April 7, 2026 16:10
@dependabot @github

dependabot Bot commented on behalf of github Apr 8, 2026

Copy link
Copy Markdown
Contributor Author

Superseded by #181.

@dependabot dependabot Bot closed this Apr 8, 2026
@dependabot dependabot Bot deleted the dependabot/uv/cryptography-46.0.6 branch April 8, 2026 21:54
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants

Morty Proxy This is a proxified and sanitized view of the page, visit original site.