Bump rsa from 3.4.2 to 4.9 in /.circleci #160

dependabot · 2022-07-21T01:46:01Z

Bumps rsa from 3.4.2 to 4.9.

Changelog

Version 4.9 - release 2022-07-20

Remove debug logging from rsa/key.py (#194).

Remove overlapping slots in PrivateKey and PublicKey. (#189).

Do not include CHANGELOG/LICENSE/README.md in wheel (#191).

Fixed Key Generation Unittest: Public and Private keys are assigned the wrong way around (#188).

Version 4.8 - released 2021-11-24

Switch to Poetry for dependency and release management.

Compatibility with Python 3.10.

Chain exceptions using raise new_exception from old_exception (#157)

Added marker file for PEP 561. This will allow type checking tools in dependent projects to use type annotations from Python-RSA (#136).

Use the Chinese Remainder Theorem when decrypting with a private key. This makes decryption 2-4x faster (#163).

Version 4.7.2 - released 2021-02-24

Fix picking/unpickling issue introduced in 4.7 (#173)

Version 4.7.1 - released 2021-02-15

Fix threading issue introduced in 4.7 (#173)

Version 4.7 - released 2021-01-10

Fix #165: CVE-2020-25658 - Bleichenbacher-style timing oracle in PKCS#1 v1.5 decryption code

Add padding length check as described by PKCS#1 v1.5 (Fixes #164)

Reuse of blinding factors to speed up blinding operations. Fixes #162.

Declare & test support for Python 3.9

Version 4.4 & 4.6 - released 2020-06-12

Version 4.4 and 4.6 are almost a re-tagged release of version 4.2. It requires Python 3.5+. To avoid older Python installations from trying to upgrade to RSA

... (truncated)

Commits

c4dc7be README.md: Final publishing tweaks
1ee1afe Bumped version to 4.9
80eb1b1 update_version.sh: include README.md in example commit command
7d2c6b2 Mark 4.9 as released today
42a9b2f Fix README.md updating part of update_version.sh
78f738d Add instructions on how to publish via Twine
e59132d Upgrade Sphynx 4.3 -> 5.0.2
ce5a32f Fix #199: Sphinx warnings reference target not found
0e3e548 Doc: add -n option to Sphinx to show warnings
f0e194a Update CHANGELOG.md
Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

> **Note** > Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

Bumps [rsa](https://github.com/sybrenstuvel/python-rsa) from 3.4.2 to 4.9. - [Release notes](https://github.com/sybrenstuvel/python-rsa/releases) - [Changelog](https://github.com/sybrenstuvel/python-rsa/blob/main/CHANGELOG.md) - [Commits](sybrenstuvel/python-rsa@version-3.4.2...version-4.9) --- updated-dependencies: - dependency-name: rsa dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot · 2022-07-21T01:46:02Z

The following labels could not be found: python, dependencies, docs-approved.

dependabot · 2022-07-24T07:18:23Z