Description:
pycryptodome is not used as a direct dependency as part of requirements.txt.
pipenv install generates this as part of Pipfile.
Rerunning pipenv install regenerates pycryptodome with upgraded version of pycryptodome that is compliant with security requirement.
Tested cse server commands with encrypt, decrypt and template
Fix security alert on using lower version of pycryptodome
Upgrade pycryptodome to version 3.19.1 or later
Ref: https://github.com/vmware/container-service-extension/security/dependabot/17
Description:
pycryptodomeis not used as a direct dependency as part ofrequirements.txt.pipenv installgenerates this as part of Pipfile.Rerunning
pipenv installregeneratespycryptodomewith upgraded version ofpycryptodomethat is compliant with security requirement.Tested cse server commands with encrypt, decrypt and template
@rocknes @Anirudh9794
This change is