Closed bdewilde closed 5 months ago
Yep, I'll get on it now.
Give that a go @bdewilde
all clear, @ReubenFrankel ! thanks very much for the quick fix.
One of my hopes with https://github.com/meltano/sdk/pull/2525 is to save some maintainers from this unnecessary burden of addressing vulns for packages they don't even need :)
Hi! The version of
cryptography
pinned in your lockfile, v41.0.6, has a couple of CVEs against it that have since been patched:Would it be possible to bump this dependency to v42.0.4, to mitigate these CVEs?