LCORE-1441: Fixed CVE in cryptography module

[tisnik]

Description

LCORE-1441: Fixed CVE in cryptography module

Type of change

• Refactor
• New feature
• Bug fix
• CVE fix
• Optimization
• Documentation Update
• Configuration Update
• Bump-up service version
• Bump-up dependent library
• Bump-up library or tool used for development (does not change the final image)
• CI configuration change
• Konflux configuration change
• Unit tests improvement
• Integration tests improvement
• End to end tests improvement
• Benchmarks improvement

Tools used to create PR

• Assisted-by: N/A
• Generated by: N/A

Related Tickets & Documents

• Related Issue #LCORE-1441

Summary by CodeRabbit

• Chores
  • Updated cryptography library to version 46.0.5
  • Updated RHOAI wheels index URL to version 3.3

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: 2be52fbb-53e0-4c52-afba-b5c19f20bbc0

📥 Commits

Reviewing files that changed from the base of the PR and between 9e124f9 and 4abd9f0.

📒 Files selected for processing (2)

• requirements.hashes.wheel.txt
• requirements.overrides.txt

---

Walkthrough

The pull request updates the cryptography package from version 46.0.4 to 46.0.5 across dependency files, including hash updates for wheel verification and an RHOAI wheels index version reference update.

Changes

Cohort / File(s)	Summary
Dependency Updates requirements.hashes.wheel.txt, requirements.overrides.txt	Bump cryptography from 46.0.4 to 46.0.5 with updated hash values. Update RHOAI wheels index URL reference from 3.2 to 3.3 in header comment.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~3 minutes

🚥 Pre-merge checks | ✅ 3

✅ Passed checks (3 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately summarizes the main change: bumping the cryptography module from 46.0.4 to 46.0.5 to address a CVE vulnerability, which is reflected in both modified files.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment

📝 Coding Plan

• Generate coding plan for human review comments

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}