Skip to content

Commit

Permalink
Bump pyopenssl from 23.2.0 to 23.3.0 (#543)
Browse files Browse the repository at this point in the history 
Bumps [pyopenssl](https://github.com/pyca/pyopenssl) from 23.2.0 to
23.3.0.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/pyca/pyopenssl/blob/main/CHANGELOG.rst">pyopenssl's
changelog</a>.</em></p>
<blockquote>
<h2>23.3.0 (2023-10-25)</h2>
<p>Backward-incompatible changes:
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^</p>
<ul>
<li>Dropped support for Python 3.6.</li>
<li>The minimum <code>cryptography</code> version is now 41.0.5.</li>
<li>Removed <code>OpenSSL.crypto.loads_pkcs7</code> and
<code>OpenSSL.crypto.loads_pkcs12</code> which had been deprecated for 3
years.</li>
<li>Added <code>OpenSSL.SSL.OP_LEGACY_SERVER_CONNECT</code> to allow
legacy insecure renegotiation between OpenSSL and unpatched servers.
<code>[#1234](pyca/pyopenssl#1234)
&lt;https://github.com/pyca/pyopenssl/pull/1234&gt;</code>_.</li>
</ul>
<p>Deprecations:
^^^^^^^^^^^^^</p>
<ul>
<li>Deprecated <code>OpenSSL.crypto.PKCS12</code> (which was intended to
have been deprecated at the same time as
<code>OpenSSL.crypto.load_pkcs12</code>).</li>
<li>Deprecated <code>OpenSSL.crypto.NetscapeSPKI</code>.</li>
<li>Deprecated <code>OpenSSL.crypto.CRL</code></li>
<li>Deprecated <code>OpenSSL.crypto.Revoked</code></li>
<li>Deprecated <code>OpenSSL.crypto.load_crl</code> and
<code>OpenSSL.crypto.dump_crl</code></li>
<li>Deprecated <code>OpenSSL.crypto.sign</code> and
<code>OpenSSL.crypto.verify</code></li>
<li>Deprecated <code>OpenSSL.crypto.X509Extension</code></li>
</ul>
<p>Changes:
^^^^^^^^</p>
<ul>
<li>Changed <code>OpenSSL.crypto.X509Store.add_crl</code> to also accept
<code>cryptography</code>'s <code>x509.CertificateRevocationList</code>
arguments in addition
to the now deprecated <code>OpenSSL.crypto.CRL</code> arguments.</li>
<li>Fixed <code>test_set_default_verify_paths</code> test so that it is
skipped if no
network connection is available.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/pyca/pyopenssl/commit/5ba8ce10ed7c318e57516a7ec8447cbb5626d3f9"><code>5ba8ce1</code></a>
Bump version for 23.3.0 release (<a
href="https://redirect.github.com/pyca/pyopenssl/issues/1264">#1264</a>)</li>
<li><a
href="https://github.com/pyca/pyopenssl/commit/046a71e5b27a9225537c6cfa7923ce0f3da6bc9a"><code>046a71e</code></a>
allow X509_ALGOR to be opaque (<a
href="https://redirect.github.com/pyca/pyopenssl/issues/1262">#1262</a>)</li>
<li><a
href="https://github.com/pyca/pyopenssl/commit/ac15b2f96478b837a5e03a20ac59a790289c9030"><code>ac15b2f</code></a>
Fix failing test when running offline (<a
href="https://redirect.github.com/pyca/pyopenssl/issues/1261">#1261</a>)</li>
<li><a
href="https://github.com/pyca/pyopenssl/commit/bbcee8d48d203e9b3900ea1025bf8fdeb2c98090"><code>bbcee8d</code></a>
Add support for <code>cryptography</code> CRLs to <code>X509Store</code>
(<a
href="https://redirect.github.com/pyca/pyopenssl/issues/1252">#1252</a>)</li>
<li><a
href="https://github.com/pyca/pyopenssl/commit/f2068f10cf59191eea8c31778c4d477bab6dbb42"><code>f2068f1</code></a>
Deprecate X509Extension (<a
href="https://redirect.github.com/pyca/pyopenssl/issues/1255">#1255</a>)</li>
<li><a
href="https://github.com/pyca/pyopenssl/commit/35d1e87fa3d4714ae1c09955ab63e26fd86dab19"><code>35d1e87</code></a>
Use 3.12 final in CI (<a
href="https://redirect.github.com/pyca/pyopenssl/issues/1259">#1259</a>)</li>
<li><a
href="https://github.com/pyca/pyopenssl/commit/a35c608ffaa4e8fdd3de0beb07a9d4876ec89c8f"><code>a35c608</code></a>
Migrate .readthedocs.yml to use build.os (<a
href="https://redirect.github.com/pyca/pyopenssl/issues/1258">#1258</a>)</li>
<li><a
href="https://github.com/pyca/pyopenssl/commit/0e788288891be6003f4d56d24509ea70d03a30d8"><code>0e78828</code></a>
Increase cryptography minimum in tox.ini (<a
href="https://redirect.github.com/pyca/pyopenssl/issues/1257">#1257</a>)</li>
<li><a
href="https://github.com/pyca/pyopenssl/commit/d129af2fa70a839e97c54959047af7100cb56156"><code>d129af2</code></a>
Deprecate sign() and verify() (<a
href="https://redirect.github.com/pyca/pyopenssl/issues/1256">#1256</a>)</li>
<li><a
href="https://github.com/pyca/pyopenssl/commit/8bfe5df197a686316649bcd6d2219a80ebc8d2d9"><code>8bfe5df</code></a>
Add support for Python 3.12 (<a
href="https://redirect.github.com/pyca/pyopenssl/issues/1254">#1254</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/pyca/pyopenssl/compare/23.2.0...23.3.0">compare
view</a></li>
</ul>
</details>
<br />

[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pyopenssl&package-manager=pip&previous-version=23.2.0&new-version=23.3.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)

</details>
  • Loading branch information
@Widcket
Widcket authored Oct 26, 2023
2 parents 1588c9f + d83041c commit 3643186
Showing 1 changed file with 6 additions and 6 deletions.
12 changes: 6 additions & 6 deletions poetry.lock
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

0 comments on commit 3643186

Please sign in to comment.