Skip to content

chore(deps): bump cryptography from 46.0.6 to 46.0.7 in /projects/fsi-quant-assistant/order-service#436

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/pip/projects/fsi-quant-assistant/order-service/cryptography-46.0.7
Open

chore(deps): bump cryptography from 46.0.6 to 46.0.7 in /projects/fsi-quant-assistant/order-service#436
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/pip/projects/fsi-quant-assistant/order-service/cryptography-46.0.7

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Apr 8, 2026
edited
Loading

Bumps cryptography from 46.0.6 to 46.0.7.

Changelog

Sourced from cryptography's changelog.

46.0.7 - 2026-04-07


* **SECURITY ISSUE**: Fixed an issue where non-contiguous buffers could be
  passed to APIs that accept Python buffers, which could lead to buffer
  overflow. **CVE-2026-39892**
* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.5.6.

.. _v46-0-6:

Commits

@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Apr 8, 2026
@dependabot dependabot bot requested a review from mservidio as a code owner April 8, 2026 22:13
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Apr 8, 2026
@github-actions
Copy link
Copy Markdown

github-actions bot commented Apr 8, 2026

Super-linter summary

Language Validation result
EDITORCONFIG Pass ✅
GITLEAKS Pass ✅
GIT_COMMITLINT Pass ✅
GIT_MERGE_CONFLICT_MARKERS Pass ✅
SPELL_CODESPELL Pass ✅

All files and directories linted successfully

For more information, see the
GitHub Actions workflow run

Powered by Super-linter

@dependabot dependabot bot force-pushed the dependabot/pip/projects/fsi-quant-assistant/order-service/cryptography-46.0.7 branch from beaec49 to 65cb556 Compare April 9, 2026 10:42
@github-actions
Copy link
Copy Markdown

github-actions bot commented Apr 9, 2026

Super-linter summary

Language Validation result
EDITORCONFIG Pass ✅
GITLEAKS Pass ✅
GIT_COMMITLINT Pass ✅
GIT_MERGE_CONFLICT_MARKERS Pass ✅
SPELL_CODESPELL Pass ✅

All files and directories linted successfully

For more information, see the
GitHub Actions workflow run

Powered by Super-linter

@dependabot
chore(deps): bump cryptography
cac8f60 
Bumps [cryptography](https://github.com/pyca/cryptography) from 46.0.6 to 46.0.7.
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](pyca/cryptography@46.0.6...46.0.7)

---
updated-dependencies:
- dependency-name: cryptography
  dependency-version: 46.0.7
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/pip/projects/fsi-quant-assistant/order-service/cryptography-46.0.7 branch from 65cb556 to cac8f60 Compare April 14, 2026 07:56
@github-actions
Copy link
Copy Markdown

github-actions bot commented Apr 14, 2026

Super-linter summary

Language Validation result
EDITORCONFIG Pass ✅
GITLEAKS Pass ✅
GIT_COMMITLINT Pass ✅
GIT_MERGE_CONFLICT_MARKERS Pass ✅
SPELL_CODESPELL Pass ✅

All files and directories linted successfully

For more information, see the
GitHub Actions workflow run

Powered by Super-linter

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mservidio mservidio Awaiting requested review from mservidio mservidio is a code owner

Assignees

@mservidio mservidio

Labels

dependencies Pull requests that update a dependency file python Pull requests that update Python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@mservidio