saymrwulf/cryptography
1
0
Fork 0
mirror of https://github.com/saymrwulf/cryptography.git synced 2026-05-14 20:37:55 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
10443 commits 40 branches 135 tags 60 MiB
Commit graph

10443 commits

This branch
This branch
All branches
Author SHA1 Message Date
Alex Gaynor
4054596afc
Backport LibreSSL 3.8.2 support for a 41.0.7 release (#9931) 
* Backport LibreSSL 3.8.2 support for a 41.0.7 release

* ci fixes

* LibreSSL 3.8.1 and later is OPENSSL_NO_ENGINE (#9456)

Unfortunately, some projects are not prepared to build without
ENGINE symbols, so just like BoringSSL we needed to keep some stubs.

* Don't build dh code on BoringSSL (#9103)

It doesn't support DH via EVP

* Update ci.yml (#9527)

---------

Co-authored-by: Theo Buehler <botovq@users.noreply.github.com>
 2023-11-27 18:26:51 -06:00
Alex Gaynor
f09c261ca1
41.0.6 release (#9927) 
* Fixed crash when loading a PKCS#7 bundle with no certificates (#9926)

* Version bump for 41.0.6

* Temporarily allow a new clippy warning (#9835)

* Temporarily allow a new clippy warning

* Update lib.rs

* Update lib.rs

* Need to accept this to skip test

* It's a word
 2023-11-27 13:35:35 -06:00
Paul Kehrer
5012bedaef
bump for 41.0.5 release (#9766) 2023-10-24 15:34:55 +00:00
Alex Gaynor
563b119399
Added binding needed for pyOpenSSL (#9739) (#9740) 2023-10-19 22:47:17 +00:00
Paul Kehrer
fc11bce693
bump for 41.0.4 (#9629) 2023-09-19 11:52:29 -04:00
Paul Kehrer
b22271cf3c
bump for 41.0.3 (#9330) 
* bump for 41.0.3

* bump openssl versions in CI

* version bumps do not work that way

* Rebuild cffi module if version changes (#9011)

---------

Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com>
 2023-08-01 19:59:40 +00:00
Jonathan Tougas
774a4a16cb
Only check DH key validity when loading a private key. (#9071) (#9319) 
Fixes #9063

Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com>
 2023-07-31 21:52:21 +00:00
Paul Kehrer
bfa4d95f0f
changelog for 41.0.3 (#9320) 
not bumping version, we'll do that when we have 3.1.2 built
 2023-07-31 17:41:01 -04:00
Paul Kehrer
0da7165aa7
backport fix the memory leak in fixedpool (#9272) (#9309) 
* fix the memory leak in fixedpool (#9272)

* fix the memory leak in fixedpool

fixes #9255

* simplify fix

* resolve clippy warnings
 2023-07-29 09:02:45 -04:00
Paul Kehrer
7431db737c
bump for 41.0.2 (#9215) 2023-07-10 21:28:04 -04:00
Paul Kehrer
e190ef1905
Backport ssh cert fix (#9211) 
* Fix encoding of SSH certs with critical options (#9208)

* Add tests for issue #9207

* Fix encoding of SSH certs with critical options

* Test unexpected additional values for crit opts/exts

* temporarily allow invalid ssh cert encoding

---------

Co-authored-by: jeanluc <2163936+lkubb@users.noreply.github.com>
 2023-07-11 00:46:49 +00:00
Alex Gaynor
bb204c8ca7
Backport: Added PyPy 3.10 to CI (#8933) (#9210) 
* Added PyPy 3.10 to CI (#8933)

* Bump proc-macro2 for nightly
 2023-07-10 07:10:11 -05:00
Paul Kehrer
d02de9f26e
changelog and version bump (#9008) 2023-06-01 12:17:49 +00:00
Paul Kehrer
53dc686431
Backport null fix (#9007) 
* Bump openssl from 0.10.53 to 0.10.54 in /src/rust (#9004)

Bumps [openssl](https://github.com/sfackler/rust-openssl) from 0.10.53 to 0.10.54.
- [Release notes](https://github.com/sfackler/rust-openssl/releases)
- [Commits](https://github.com/sfackler/rust-openssl/compare/openssl-v0.10.53...openssl-v0.10.54)

---
updated-dependencies:
- dependency-name: openssl
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Added tests for NUL bytes in PKCS8 passphrases (#9001)

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com>
 2023-06-01 12:08:56 +00:00
Paul Kehrer
b99900596e
Backport tolerate (#9006) 
* tolerate NULL params in ECDSA SHA2 AlgorithmIdentifier (#9002)

* tolerate NULL params in ECDSA SHA2 AlgorithmIdentifier

Java 11 does this incorrectly. It was fixed in Java16+ and they are
planning to do a backport, but we'll need to tolerate this invalid
encoding for a while.

* test both inner and outer

* changelog entry

* language
 2023-06-01 12:02:55 +00:00
Paul Kehrer
c4d494fd3e
41.0.0 version bump (#8991) 
* 41.0.0 version bump

* bust cache since we don't currently compute cache key including version
 2023-05-30 21:33:32 +00:00
Paul Kehrer
8708245ccd
new openssl day (#8990) 2023-05-30 16:45:23 -04:00
Paul Kehrer
31436a4866
admit to the existence of nuance in HKDF (#8987) 
* admit to the existence of nuance in HKDF

* Update docs/hazmat/primitives/key-derivation-functions.rst

Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com>

---------

Co-authored-by: Alex Gaynor <alex.gaynor@gmail.com>
 2023-05-30 02:32:57 +00:00
Alex Gaynor
91e41898e6
Port DSA to Rust (#8978) 2023-05-30 10:32:12 +08:00
Alex Gaynor
f302d28b81
Update CI for new LibreSSL releases (#8975) 2023-05-30 02:17:09 +00:00
dependabot[bot]
851d8ccb34
Bump openssl from 0.10.52 to 0.10.53 in /src/rust (#8986) 
Bumps [openssl](https://github.com/sfackler/rust-openssl) from 0.10.52 to 0.10.53.
- [Release notes](https://github.com/sfackler/rust-openssl/releases)
- [Commits](https://github.com/sfackler/rust-openssl/compare/openssl-v0.10.52...openssl-v0.10.53)

---
updated-dependencies:
- dependency-name: openssl
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-05-30 02:14:28 +00:00
dependabot[bot]
0918c7236c
Bump coverage from 7.2.6 to 7.2.7 (#8985) 
Bumps [coverage](https://github.com/nedbat/coveragepy) from 7.2.6 to 7.2.7.
- [Release notes](https://github.com/nedbat/coveragepy/releases)
- [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst)
- [Commits](https://github.com/nedbat/coveragepy/compare/7.2.6...7.2.7)

---
updated-dependencies:
- dependency-name: coverage
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-05-30 02:10:26 +00:00
dependabot[bot]
730a5ce11a
Bump openssl-sys from 0.9.87 to 0.9.88 in /src/rust (#8984) 
Bumps [openssl-sys](https://github.com/sfackler/rust-openssl) from 0.9.87 to 0.9.88.
- [Release notes](https://github.com/sfackler/rust-openssl/releases)
- [Commits](https://github.com/sfackler/rust-openssl/compare/openssl-sys-v0.9.87...openssl-sys-v0.9.88)

---
updated-dependencies:
- dependency-name: openssl-sys
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-05-30 02:01:47 +00:00
pyca-boringbot[bot]
88e8c28897
Bump BoringSSL and/or OpenSSL in CI (#8983) 
Co-authored-by: pyca-boringbot[bot] <pyca-boringbot[bot]+106132319@users.noreply.github.com>
 2023-05-30 00:23:34 +00:00
dependabot[bot]
3e24e44527
Bump once_cell from 1.17.1 to 1.17.2 in /src/rust (#8982) 
Bumps [once_cell](https://github.com/matklad/once_cell) from 1.17.1 to 1.17.2.
- [Changelog](https://github.com/matklad/once_cell/blob/master/CHANGELOG.md)
- [Commits](https://github.com/matklad/once_cell/compare/v1.17.1...v1.17.2)

---
updated-dependencies:
- dependency-name: once_cell
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-05-29 13:07:44 +00:00
Alex Gaynor
5efbc11090
Bump syn (#8979) 
Dependabot doesn't currently update it because of https://github.com/dependabot/dependabot-core/issues/2064
 2023-05-29 15:04:28 +09:00
Alex Gaynor
f639144ba7
Remove a few more unused bindings (#8977) 2023-05-28 02:23:12 -05:00
Paul Kehrer
93c96b777a
allow null params in AlgorithmIdentifiers with SHA hash function OIDs (#8974) 
RFC 4055 section 2.1 states "All implementations MUST accept both
NULL and absent parameters as legal and equivalent encodings".

It also makes some somewhat conflicting statements after that, but
LibreSSL omits the null params for PSS, and OpenSSL parses this
without issue so tolerance it is.
 2023-05-27 10:07:20 -04:00
Alex Gaynor
288c302b50
Remove unused bindings (#8972) 2023-05-27 06:32:26 +02:00
pyca-boringbot[bot]
9c0dfde80a
Bump BoringSSL and/or OpenSSL in CI (#8973) 
Co-authored-by: pyca-boringbot[bot] <pyca-boringbot[bot]+106132319@users.noreply.github.com>
 2023-05-27 00:15:49 +00:00
Alex Gaynor
b3030dd161
Convert Poly1305 to Rust (#8788) 2023-05-26 20:14:47 +02:00
Alex Gaynor
965e04996f
Consolidate CI jobs (#8964) 2023-05-26 18:09:53 +00:00
pyca-boringbot[bot]
c9fd1d04a1
Bump BoringSSL and/or OpenSSL in CI (#8970) 
Co-authored-by: pyca-boringbot[bot] <pyca-boringbot[bot]+106132319@users.noreply.github.com>
 2023-05-26 00:24:14 -04:00
dependabot[bot]
3a46372a94
Bump proc-macro2 from 1.0.58 to 1.0.59 in /src/rust (#8968) 
Bumps [proc-macro2](https://github.com/dtolnay/proc-macro2) from 1.0.58 to 1.0.59.
- [Release notes](https://github.com/dtolnay/proc-macro2/releases)
- [Commits](https://github.com/dtolnay/proc-macro2/compare/1.0.58...1.0.59)

---
updated-dependencies:
- dependency-name: proc-macro2
  dependency-type: indirect
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-05-25 22:32:35 +00:00
dependabot[bot]
13991ac2f4
Bump typing-extensions from 4.6.1 to 4.6.2 (#8969) 
Bumps [typing-extensions](https://github.com/python/typing_extensions) from 4.6.1 to 4.6.2.
- [Changelog](https://github.com/python/typing_extensions/blob/main/CHANGELOG.md)
- [Commits](https://github.com/python/typing_extensions/compare/4.6.1...4.6.2)

---
updated-dependencies:
- dependency-name: typing-extensions
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-05-25 22:19:50 +00:00
dependabot[bot]
e34373bfeb
Bump quote from 1.0.27 to 1.0.28 in /src/rust (#8967) 
Bumps [quote](https://github.com/dtolnay/quote) from 1.0.27 to 1.0.28.
- [Release notes](https://github.com/dtolnay/quote/releases)
- [Commits](https://github.com/dtolnay/quote/compare/1.0.27...1.0.28)

---
updated-dependencies:
- dependency-name: quote
  dependency-type: indirect
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-05-25 22:14:16 +00:00
pyca-boringbot[bot]
a30aa509b6
Bump BoringSSL and/or OpenSSL in CI (#8965) 
Co-authored-by: pyca-boringbot[bot] <pyca-boringbot[bot]+106132319@users.noreply.github.com>
 2023-05-25 00:18:07 +00:00
dependabot[bot]
b426e6bc0c
Bump pytest-cov from 4.0.0 to 4.1.0 (#8963) 
Bumps [pytest-cov](https://github.com/pytest-dev/pytest-cov) from 4.0.0 to 4.1.0.
- [Changelog](https://github.com/pytest-dev/pytest-cov/blob/master/CHANGELOG.rst)
- [Commits](https://github.com/pytest-dev/pytest-cov/compare/v4.0.0...v4.1.0)

---
updated-dependencies:
- dependency-name: pytest-cov
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-05-24 23:48:27 +00:00
dependabot[bot]
b4e3559260
Bump ruff from 0.0.269 to 0.0.270 (#8962) 
Bumps [ruff](https://github.com/charliermarsh/ruff) from 0.0.269 to 0.0.270.
- [Release notes](https://github.com/charliermarsh/ruff/releases)
- [Changelog](https://github.com/charliermarsh/ruff/blob/main/BREAKING_CHANGES.md)
- [Commits](https://github.com/charliermarsh/ruff/compare/v0.0.269...v0.0.270)

---
updated-dependencies:
- dependency-name: ruff
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-05-24 23:45:05 +00:00
dependabot[bot]
3ebe5701ab
Bump actions/setup-python from 4.6.0 to 4.6.1 (#8961) 
Bumps [actions/setup-python](https://github.com/actions/setup-python) from 4.6.0 to 4.6.1.
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](https://github.com/actions/setup-python/compare/v4.6.0...v4.6.1)

---
updated-dependencies:
- dependency-name: actions/setup-python
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-05-24 23:44:09 +00:00
dependabot[bot]
9e3b2af68f
Bump unicode-ident from 1.0.8 to 1.0.9 in /src/rust (#8960) 
Bumps [unicode-ident](https://github.com/dtolnay/unicode-ident) from 1.0.8 to 1.0.9.
- [Release notes](https://github.com/dtolnay/unicode-ident/releases)
- [Commits](https://github.com/dtolnay/unicode-ident/compare/1.0.8...1.0.9)

---
updated-dependencies:
- dependency-name: unicode-ident
  dependency-type: indirect
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-05-24 23:40:34 +00:00
dependabot[bot]
bc2b14ca55
Bump coverage from 7.2.5 to 7.2.6 (#8958) 
Bumps [coverage](https://github.com/nedbat/coveragepy) from 7.2.5 to 7.2.6.
- [Release notes](https://github.com/nedbat/coveragepy/releases)
- [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst)
- [Commits](https://github.com/nedbat/coveragepy/compare/7.2.5...7.2.6)

---
updated-dependencies:
- dependency-name: coverage
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-05-24 13:26:38 +00:00
dependabot[bot]
69d7676135
Bump typing-extensions from 4.6.0 to 4.6.1 (#8957) 
Bumps [typing-extensions](https://github.com/python/typing_extensions) from 4.6.0 to 4.6.1.
- [Changelog](https://github.com/python/typing_extensions/blob/main/CHANGELOG.md)
- [Commits](https://github.com/python/typing_extensions/compare/4.6.0...4.6.1)

---
updated-dependencies:
- dependency-name: typing-extensions
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-05-24 13:14:36 +00:00
William Woodruff
0a28f48998
CHANGELOG: record ChaCha20Poly1305 changes (#8955) 
Signed-off-by: William Woodruff <william@trailofbits.com>
 2023-05-24 02:13:54 +00:00
Facundo Tuesca
7ed71eb781
Add support for ChaCha20-Poly1305 with BoringSSL (#8946) 
* Add bindings for BoringSSL's EVP_AEAD API

* Add support for ChaCha20-Poly1305 with BoringSSL

Since BoringSSL supports this cipher through a different API than
OpenSSL (EVP_AEAD vs EVP), this change splits the AEAD backend into
two: the original OpenSSL backend (`_aead_openssl.py`) and the new
BoringSSL backend (`_aead_boringssl.py`).

The AEAD backend functions used by other modules (`aead._encrypt()`,
`aead._decrypt()`, etc.) are now exposed through `aead/__init__.py`
as wrappers. These wrappers select at runtime which backend to use.
Currently only ChaCha20-Poly1305 + BoringSSL uses the BoringSSL
backend.

* EVP_AEAD: fixup cffi defs, add to _conditional

Signed-off-by: William Woodruff <william@trailofbits.com>

evp_aead: fix initialization on BoringSSL

Signed-off-by: William Woodruff <william@trailofbits.com>

_conditional: fatfingering

Signed-off-by: William Woodruff <william@trailofbits.com>

backends/openssl: make an AEAD helper private

Signed-off-by: William Woodruff <william@trailofbits.com>

openssl: collapse aead module

Signed-off-by: William Woodruff <william@trailofbits.com>

openssl/aead: experimenting

Signed-off-by: William Woodruff <william@trailofbits.com>

openssl/aead: use Cryptography_HAS_EVP_AEAD

Signed-off-by: William Woodruff <william@trailofbits.com>

openssl/aead: group things

Signed-off-by: William Woodruff <william@trailofbits.com>

Revert "openssl: collapse aead module"

This reverts commit 558b8d57f469b6abf51e70e68f5cf330b7ae6414.

aead: tweak feature test

Signed-off-by: William Woodruff <william@trailofbits.com>

evp_aead: stupidness

Signed-off-by: William Woodruff <william@trailofbits.com>

Revert "aead: tweak feature test"

This reverts commit aa2eea648fed3e7460cfa358bf89c646e56f310d.

Revert "Revert "openssl: collapse aead module""

This reverts commit 44a68c48b52dc0d243d23016999e7fafd580e48b.

Revert "Revert "Revert "openssl: collapse aead module"""

This reverts commit c35bb37f6c9b4a56f88d36402c8e13ab6396156b.

Revert "Revert "aead: tweak feature test""

This reverts commit 78c0dc5ed298c0fde236b8137cb2b0795e905edc.

openssl/aead: try to migrate more incrementally

Signed-off-by: William Woodruff <william@trailofbits.com>

aead: lintage

Signed-off-by: William Woodruff <william@trailofbits.com>

openssl/aead: more incremental rewriting

Signed-off-by: William Woodruff <william@trailofbits.com>

openssl/aead: rename _OpenSSL -> _EVPCIPHER

Signed-off-by: William Woodruff <william@trailofbits.com>

openssl/aead: collapse module

Signed-off-by: William Woodruff <william@trailofbits.com>

* _conditional: undo accidental change

Signed-off-by: William Woodruff <william@trailofbits.com>

* openssl/aead: remove _EVPAEAD

Signed-off-by: William Woodruff <william@trailofbits.com>

* openssl/aead: remove _EVPCIPHER

Signed-off-by: William Woodruff <william@trailofbits.com>

---------

Signed-off-by: William Woodruff <william@trailofbits.com>
Co-authored-by: William Woodruff <william@trailofbits.com>
 2023-05-24 02:00:09 +00:00
pyca-boringbot[bot]
c4ec7aca54
Bump BoringSSL and/or OpenSSL in CI (#8954) 
Co-authored-by: pyca-boringbot[bot] <pyca-boringbot[bot]+106132319@users.noreply.github.com>
 2023-05-23 20:39:58 -04:00
dependabot[bot]
61708b5770
Bump typing-extensions from 4.5.0 to 4.6.0 (#8952) 
Bumps [typing-extensions](https://github.com/python/typing_extensions) from 4.5.0 to 4.6.0.
- [Changelog](https://github.com/python/typing_extensions/blob/main/CHANGELOG.md)
- [Commits](https://github.com/python/typing_extensions/compare/4.5.0...4.6.0)

---
updated-dependencies:
- dependency-name: typing-extensions
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-05-23 13:58:04 +00:00
dependabot[bot]
f33cde87ec
Bump sphinx-rtd-theme from 1.2.0 to 1.2.1 (#8951) 
Bumps [sphinx-rtd-theme](https://github.com/readthedocs/sphinx_rtd_theme) from 1.2.0 to 1.2.1.
- [Changelog](https://github.com/readthedocs/sphinx_rtd_theme/blob/master/docs/changelog.rst)
- [Commits](https://github.com/readthedocs/sphinx_rtd_theme/compare/1.2.0...1.2.1)

---
updated-dependencies:
- dependency-name: sphinx-rtd-theme
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-05-23 09:52:49 -04:00
Paul Kehrer
3bab5f8053
Revert "work around a centos9 fips bug in tests (#8947)" (#8950) 
This reverts commit cbe719157e. With the
correct CentOS invocations we can properly set up FIPS in that
environment so these errors don't occur.
see: https://github.com/pyca/infra/pull/484
 2023-05-23 03:38:02 +00:00
dependabot[bot]
68f8545c6b
Bump requests from 2.30.0 to 2.31.0 (#8949) 
Bumps [requests](https://github.com/psf/requests) from 2.30.0 to 2.31.0.
- [Release notes](https://github.com/psf/requests/releases)
- [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md)
- [Commits](https://github.com/psf/requests/compare/v2.30.0...v2.31.0)

---
updated-dependencies:
- dependency-name: requests
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-05-23 00:27:53 +00:00