Merge branch 'sec/bump-cryptography' into 'dev'

Bump cryptography for CVE-2023-49083 See merge request crafty-controller/crafty-4!680
2025-01-19 09:45:28 +01:00 · 2023-12-07 12:11:01 +00:00 · 2023-12-07 12:11:01 +00:00 · 25123bf9ec
commit 25123bf9ec
parent bef16270fe e37bd47806
2 changed files with 3 additions and 2 deletions
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@ -7,6 +7,7 @@
 - Tidy up main.py to be  more comprehensive ([Merge Request](https://gitlab.com/crafty-controller/crafty-4/-/merge_requests/668))
 ### Bug fixes
 - Remove webhook `custom` option from webook provider list as it's not currently an option ([Merge Request](https://gitlab.com/crafty-controller/crafty-4/-/merge_requests/664))
+- Bump cryptography for CVE-2023-49083 ([Merge Request](https://gitlab.com/crafty-controller/crafty-4/-/merge_requests/680))
 ### Tweaks
 - Homogenize Panel logos/branding ([Merge Request](https://gitlab.com/crafty-controller/crafty-4/-/merge_requests/666))
 - Retain previous tab when revisiting server details page (#272)([Merge Request](https://gitlab.com/crafty-controller/crafty-4/-/merge_requests/667))
--- a/requirements.txt
+++ b/requirements.txt
@ -4,13 +4,13 @@ argon2-cffi==23.1.0
 cached_property==1.5.2
 colorama==0.4.6
 croniter==1.4.1
-cryptography==41.0.4
+cryptography==41.0.7
 libgravatar==1.0.4
 nh3==0.2.14
 packaging==23.2
 peewee==3.13
 psutil==5.9.5
-pyOpenSSL==23.2.0
+pyOpenSSL==23.3.0
 pyjwt==2.8.0
 PyYAML==6.0.1
 requests==2.31.0