Anaconda: Update 'cryptography' python package due GHSA-39hc-v87j-747x (#239)

* Anaconda: Patch

* Patch

* cyprography patch

* Update link

Author: samruddhikhandale

src/anaconda/.devcontainer/Dockerfile

@@ -60,6 +60,10 @@ RUN python3 -m pip install --upgrade joblib
 # 'cookiecutter' is installed by the base image (continuumio/anaconda3) which does not have the patch.
 RUN python3 -m pip install --upgrade cookiecutter
 
+# Temporary: Upgrade 'cryptography' due to https://github.com/advisories/GHSA-39hc-v87j-747x
+# 'cryptography' is installed by the base image (continuumio/anaconda3) which does not have the patch.
+RUN python3 -m pip install --upgrade cryptography
+
 # Copy environment.yml (if found) to a temp locaition so we update the environment. Also
 # copy "noop.txt" so the COPY instruction does not fail if no environment.yml exists.
 # COPY environment.yml* .devcontainer/noop.txt /tmp/conda-tmp/

src/anaconda/manifest.json

@@ -25,7 +25,8 @@
 		},
 		"pip": [
 			"joblib",
-			"cookiecutter"
+			"cookiecutter",
+			"cryptography"
 		],
 		"other": {
 			"conda": {

src/anaconda/test-project/test.sh

@@ -29,5 +29,9 @@ cookiecutter_version=$(python -c "import cookiecutter; print(cookiecutter.__vers
 check "cookiecutter" bash -c "echo ${cookiecutter}" 
 check-version-ge "cookiecutter-requirement" "${cookiecutter_version}" "2.1.1"
 
+cryptography_version=$(python -c "import cryptography; print(cryptography.__version__)")
+check "cryptography" bash -c "echo ${cryptography}" 
+check-version-ge "cryptography-requirement" "${cryptography_version}" "38.0.3"
+
 # Report result
 reportResults