Tags: andrewbolster/bolster
Tags
fix(deps): bump cryptography to 47.0.0, pygments to 2.20.0 (#1729) Resolves Dependabot alerts: - cryptography: CVE subgroup attack (<=46.0.4), DNS constraint bypass (<46.0.6), buffer overflow (>=45.0.0,<46.0.7) — all fixed in 47.0.0 - pygments: ReDoS via GUID regex (<2.20.0) — fixed in 2.20.0 - cffi bumped to 2.0.0 (required by cryptography 47.x resolver) All are transitive dependencies; no direct dependency changes needed. Co-authored-by: Claude Sonnet 4.6 <noreply@anthropic.com>
PreviousNext