Open dependabot[bot] opened 5 months ago
New and removed dependencies detected. Learn more about Socket for GitHub ↗︎
Package | New capabilities | Transitives | Size | Publisher |
---|---|---|---|---|
pypi/pycryptodome@3.19.1 | environment, eval, filesystem, network, unsafe | 0 |
9.81 MB | Legrandin |
🚮 Removed packages: pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1, pypi/pycryptodome@3.10.1
Bumps pycryptodome from 3.10.1 to 3.19.1.
Release notes
Sourced from pycryptodome's releases.
... (truncated)
Changelog
Sourced from pycryptodome's changelog.
... (truncated)
Commits
ef270ab
Update wheels action3278edd
Update changelog and version10e8216
Update PSS verify signature code example.4ec4b85
Bump version0deea1b
Use constant-time (faster) padding decoding also for OAEP519e7ae
Avoid changing signature of RSA._decrypt() method if possible1aa9dca
Update changelog and bump versionafb5e27
Fix side-channel leakage in RSA decryptionee91c67
Update CMAC.py43a466d
Fix small "passes" typo.Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show