[PR #299] [MERGED] Bump pycryptodomex from 3.21.0 to 3.22.0 #306

New issue

Closed

opened 2026-02-27 08:12:40 +03:00 by kerem · 0 comments

kerem commented

2026-02-27 08:12:40 +03:00

Owner

📋 Pull Request Information

Original PR: https://github.com/kokarare1212/librespot-python/pull/299
Author: @dependabot[bot]
Created: 3/17/2025
Status: ✅ Merged
Merged: 4/1/2025
Merged by: @kokarare1212

Base: main ← Head: dependabot/pip/pycryptodomex-3.22.0

📝 Commits (1)

5afe83a Bump pycryptodomex from 3.21.0 to 3.22.0

📊 Changes

1 file changed (+1 additions, -1 deletions)

View changed files

📝 requirements.txt (+1 -1)

📄 Description

Bumps pycryptodomex from 3.21.0 to 3.22.0.

Release notes

Sourced from pycryptodomex's releases.

v3.22.0 - Caen

New features

Added support for HPKE (RFC 9180).

Resolved issues

GH#812: CCM ciphers will now fail before encrypting (or decrypting) data beyond the limit imposed by the nonce length.

GH#846: fix infinite loop with RC4 for data larger than 4GB.

GH#852: handle correctly invalid PEM files with less than 3 lines.

Other changes

Remove support for Python 3.6.

Changelog

Sourced from pycryptodomex's changelog.

3.22.0 (16 March 2025) ++++++++++++++++++++++++++

New features

Added support for HPKE (RFC 9180).

Resolved issues

GH#812: CCM ciphers will now fail before encrypting (or decrypting) data beyond the limit imposed by the nonce length.

GH#846: fix infinite loop with RC4 for data larger than 4GB.

GH#852: handle correctly invalid PEM files with less than 3 lines.

Other changes

Remove support for Python 3.6.

Commits

e1f06ed Include OS and package type in the wheels archive
208d281 Bump version
f277db8 Fix typing info
75dc6e0 Fix GH#812: CCM will now fail before en/decrypting too much data
eac9de8 Fix GH#852: a PEM file must have at least 3 lines
46bf040 Clarify how ChaCha20.seek() can be used to seek to blocks
fd3c7f2 Some clarifications for SecretSharing
967938f Update Changelog
f979abf GH#846: fix infinite loop with RC4 for data larger than 4GB
291400c Stress that passwords should not be used as PSK
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/kokarare1212/librespot-python/pull/299 **Author:** [@dependabot[bot]](https://github.com/apps/dependabot) **Created:** 3/17/2025 **Status:** ✅ Merged **Merged:** 4/1/2025 **Merged by:** [@kokarare1212](https://github.com/kokarare1212) **Base:** `main` ← **Head:** `dependabot/pip/pycryptodomex-3.22.0` --- ### 📝 Commits (1) - [`5afe83a`](https://github.com/kokarare1212/librespot-python/commit/5afe83abc9cd6761471c7b2811b6686809912ee7) Bump pycryptodomex from 3.21.0 to 3.22.0 ### 📊 Changes **1 file changed** (+1 additions, -1 deletions) <details> <summary>View changed files</summary> 📝 `requirements.txt` (+1 -1) </details> ### 📄 Description Bumps [pycryptodomex](https://github.com/Legrandin/pycryptodome) from 3.21.0 to 3.22.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/Legrandin/pycryptodome/releases">pycryptodomex's releases</a>.</em></p> <blockquote> <h2>v3.22.0 - Caen</h2> <h2>New features</h2> <ul> <li>Added support for HPKE (RFC 9180).</li> </ul> <h2>Resolved issues</h2> <ul> <li>GH#812: CCM ciphers will now fail before encrypting (or decrypting) data beyond the limit imposed by the nonce length.</li> <li>GH#846: fix infinite loop with RC4 for data larger than 4GB.</li> <li>GH#852: handle correctly invalid PEM files with less than 3 lines.</li> </ul> <h2>Other changes</h2> <ul> <li>Remove support for Python 3.6.</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/Legrandin/pycryptodome/blob/master/Changelog.rst">pycryptodomex's changelog</a>.</em></p> <blockquote> <p>3.22.0 (16 March 2025) ++++++++++++++++++++++++++</p> <h2>New features</h2> <ul> <li>Added support for HPKE (RFC 9180).</li> </ul> <h2>Resolved issues</h2> <ul> <li>GH#812: CCM ciphers will now fail before encrypting (or decrypting) data beyond the limit imposed by the nonce length.</li> <li>GH#846: fix infinite loop with RC4 for data larger than 4GB.</li> <li>GH#852: handle correctly invalid PEM files with less than 3 lines.</li> </ul> <h2>Other changes</h2> <ul> <li>Remove support for Python 3.6.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/Legrandin/pycryptodome/commit/e1f06ed69d7987a990ef87a085fba9ff73d28745"><code>e1f06ed</code></a> Include OS and package type in the wheels archive</li> <li><a href="https://github.com/Legrandin/pycryptodome/commit/208d281db4f5004a7cb85629bc710ed96ab60d29"><code>208d281</code></a> Bump version</li> <li><a href="https://github.com/Legrandin/pycryptodome/commit/f277db8caefe6d841fdddaaacc0c9585c4b860fe"><code>f277db8</code></a> Fix typing info</li> <li><a href="https://github.com/Legrandin/pycryptodome/commit/75dc6e0780e0fd96a8157796cbdf7b548962a89c"><code>75dc6e0</code></a> Fix GH#812: CCM will now fail before en/decrypting too much data</li> <li><a href="https://github.com/Legrandin/pycryptodome/commit/eac9de8e129b2a489d5aa330d55e59f346e6fc02"><code>eac9de8</code></a> Fix GH#852: a PEM file must have at least 3 lines</li> <li><a href="https://github.com/Legrandin/pycryptodome/commit/46bf040d5df632d96bf7d2b8e3f864d3b8f870a5"><code>46bf040</code></a> Clarify how ChaCha20.seek() can be used to seek to blocks</li> <li><a href="https://github.com/Legrandin/pycryptodome/commit/fd3c7f2a65049febd82be8f8b9d11cd73c906afd"><code>fd3c7f2</code></a> Some clarifications for SecretSharing</li> <li><a href="https://github.com/Legrandin/pycryptodome/commit/967938f83ad402f5ce50e1c9d5328d2f83210903"><code>967938f</code></a> Update Changelog</li> <li><a href="https://github.com/Legrandin/pycryptodome/commit/f979abfa24baaac5a0a3e65aa490c6dfedc6c1c8"><code>f979abf</code></a> GH#846: fix infinite loop with RC4 for data larger than 4GB</li> <li><a href="https://github.com/Legrandin/pycryptodome/commit/291400c1383e1a44243e6a782227969d08c148a7"><code>291400c</code></a> Stress that passwords should not be used as PSK</li> <li>Additional commits viewable in <a href="https://github.com/Legrandin/pycryptodome/compare/v3.21.0...v3.22.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pycryptodomex&package-manager=pip&previous-version=3.21.0&new-version=3.22.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> --- <sub>🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.</sub>