Remove constraint of cryptography < 39 #596
Comments
|
Hi @nabla-c0d3, do you have bandwidth to work on this or do you need help with it? This would unblock some dependency updates for us. |
nabla-c0d3
added a commit
that referenced
this issue
Mar 9, 2023
nabla-c0d3
added a commit
that referenced
this issue
Mar 9, 2023
Keep version of sphinx that is compatible with 3.7 Refine versions simplify reqs
|
Fixed as part of v5.1.2. @eloquence Hello! Which of your projects is using sslyze? Just curious |
|
Thanks much @nabla-c0d3! We have a custom test suite that performs various config checks against our prod websites (in a private repo right now), and we also use pshtt (forked because it has its own set of dependency issues) as part of our landing page scanner for SecureDrop landing pages. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the bug
cryptography==38.0.4 is being flagged as being vulnerable. The recommended solution is to move to 39.x
To Reproduce
See jauderho/dockerfiles#1723
Expected behavior
Remove constraint in
sslyze/setup.py
Line 102 in 4ec80a3
Python environment (please complete the following information):
Additional context
Add any other context about the problem here.
The text was updated successfully, but these errors were encountered: