Bump cryptography from 3.0 to 3.1 #237

dependabot · 2020-08-27T05:01:24Z

Bumps cryptography from 3.0 to 3.1.

Changelog

Sourced from cryptography's changelog.

3.1 - 2020-08-26

* **BACKWARDS INCOMPATIBLE:** Removed support for ``idna`` based :term:`U-label` parsing in various X.509 classes. This support was originally deprecated in version 2.1 and moved to an extra in 2.5. * Deprecated OpenSSL 1.0.2 support. OpenSSL 1.0.2 is no longer supported by the OpenSSL project. The next version of ``cryptography`` will drop support for it. * Deprecated support for Python 3.5. This version sees very little use and will be removed in the next release. * ``backend`` arguments to functions are no longer required and the default backend will automatically be selected if no ``backend`` is provided. * Added initial support for parsing certificates from PKCS7 files with :func:`~cryptography.hazmat.primitives.serialization.pkcs7.load_pem_pkcs7_certificates` and :func:`~cryptography.hazmat.primitives.serialization.pkcs7.load_der_pkcs7_certificates` . * Calling ``update`` or ``update_into`` on :class:`~cryptography.hazmat.primitives.ciphers.CipherContext` with ``data`` longer than 2\ :sup:`31` bytes no longer raises an ``OverflowError``. This also resolves the same issue in :doc:`/fernet`.

.. _v3-0:

Commits

ba2c0e5 3.1 release (#5430)
c63106c Build manylinux wheels with Zuul (#5386)
bda1387 new black, actually slightly different than the old black (#5429)
0b24359 remove keywords with side effects hack in setup.py (#5426)
1394edb rephrase changelog entry (#5422)
b9d26d2 add some words about separating ECDH and ECDSA (#5423)
ed3ded4 bump libressl 3.1.x (#5421)
b6c51be document that we auto-chunk on symmetric cipher contexts now (#5420)
f90ba18 chunked update_into (#5419)
bc4b956 Run AWS SDK tests on Python 3.7 (#5414)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge wi 8000 ll cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [cryptography](https://github.com/pyca/cryptography) from 3.0 to 3.1. - [Release notes](https://github.com/pyca/cryptography/releases) - [Changelog](https://github.com/pyca/cryptography/blob/master/CHANGELOG.rst) - [Commits](pyca/cryptography@3.0...3.1) Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added the dependencies Pull requests that update a dependency file label Aug 27, 2020

mjcaley merged commit d578111 into development Aug 27, 2020

mjcaley deleted the dependabot/pip/cryptography-3.1 branch August 27, 2020 12:51

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Bump cryptography from 3.0 to 3.1 #237

Bump cryptography from 3.0 to 3.1 #237

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Bump cryptography from 3.0 to 3.1 #237

Bump cryptography from 3.0 to 3.1 #237

Uh oh!

Conversation

Uh oh!

Uh oh!