Skip to content

chore(deps): update dependency cryptography to v46 [security] #48

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
renovate wants to merge 1 commit into
base: main
Choose a base branch
from

chore(deps): update dependency cryptography to v46 [security]

9213125
Select commit
Loading
Failed to load commit list.
Open

chore(deps): update dependency cryptography to v46 [security] #48

chore(deps): update dependency cryptography to v46 [security]
9213125
Select commit
Loading
Failed to load commit list.
Mend Bolt for GitHub / WhiteSource Security Check failed Apr 29, 2026 in 3m 36s

Security Report

You have successfully remediated 2 vulnerabilities, but introduced 2 new vulnerabilities in this branch.

❌ New vulnerabilities:

Vulnerability Severity CVSS Score Vulnerable Library Direct Library Suggested Fix Issue
CVE-2026-39892

Path to dependency file: /requirements.txt

Path to vulnerable library: /tmp/ws-ua_20260429171724_JHBTYT/python_QLMXPD/20260429171724/11/cryptography-46.0.6-cp38-abi3-manylinux_2_34_x86_64.whl

Dependency Hierarchy:

-> ❌ cryptography-46.0.6-cp38-abi3-manylinux_2_34_x86_64.whl (Vulnerable Library)

Medium 5.3 Direct cryptography-46.0.6-cp38-abi3-manylinux_2_34_x86_64.whl cryptography-46.0.6-cp38-abi3-manylinux_2_34_x86_64.whl 46.0.7 None
CVE-2026-25645

Path to dependency file: /requirements.txt

Path to vulnerable library: /tmp/ws-ua_20260429171724_JHBTYT/python_QLMXPD/20260429171724/13/requests-2.32.5-py3-none-any.whl

Dependency Hierarchy:

-> ❌ requests-2.32.5-py3-none-any.whl (Vulnerable Library)

Medium 4.4 Direct requests-2.32.5-py3-none-any.whl requests-2.32.5-py3-none-any.whl https://github.com/psf/requests.git - v2.33.0 None

✔️ Remediated vulnerabilities:

Vulnerability Vulnerable Library
CVE-2026-34073 cryptography-42.0.5-cp39-abi3-manylinux_2_28_x86_64.whl
CVE-2026-26007 cryptography-42.0.5-cp39-abi3-manylinux_2_28_x86_64.whl

Base branch total remaining vulnerabilities: 20
Base branch commit: null


Total libraries scanned: 63

Scan token: 54ada8d3770546ff92938234eb730735

View more details on Mend Bolt for GitHub