LCORE-2011: Cryptography CVE fix

[tisnik]

Description

LCORE-2011: Cryptography CVE fix

Type of change

• Refactor
• New feature
• Bug fix
• CVE fix
• Optimization
• Documentation Update
• Configuration Update
• Bump-up service version
• Bump-up dependent library
• Bump-up library or tool used for development (does not change the final image)
• CI configuration change
• Konflux configuration change
• Unit tests improvement
• Integration tests improvement
• End to end tests improvement
• Benchmarks improvement

Tools used to create PR

• Assisted-by: N/A
• Generated by: N/A

Related Tickets & Documents

• Related Issue #LCORE-2011

Summary by CodeRabbit

• Chores
  • Updated the cryptography dependency to version 46.0.7.

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: ASSERTIVE

Plan: Pro

Run ID: 625ed1a6-dc71-493e-a7d4-210e9c01bc62

📥 Commits

Reviewing files that changed from the base of the PR and between a4a36a3 and f983c91.

📒 Files selected for processing (2)

• .konflux/requirements.hashes.wheel.txt
• .konflux/requirements.overrides.txt

📜 Recent review details

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (19)

• GitHub Check: build-pr
• GitHub Check: radon
• GitHub Check: Pylinter
• GitHub Check: integration_tests (3.12)
• GitHub Check: integration_tests (3.13)
• GitHub Check: Pyright
• GitHub Check: unit_tests (3.13)
• GitHub Check: mypy
• GitHub Check: unit_tests (3.12)
• GitHub Check: spectral
• GitHub Check: bandit
• GitHub Check: E2E Tests for Lightspeed Evaluation job
• GitHub Check: E2E: server mode / ci / group 3
• GitHub Check: E2E: library mode / ci / group 3
• GitHub Check: E2E: server mode / ci / group 2
• GitHub Check: E2E: library mode / ci / group 1
• GitHub Check: E2E: library mode / ci / group 2
• GitHub Check: E2E: server mode / ci / group 1
• GitHub Check: Konflux kflux-prd-rh02 / lightspeed-stack-on-pull-request

🔇 Additional comments (2)

.konflux/requirements.overrides.txt (1)

8-8: LGTM!

.konflux/requirements.hashes.wheel.txt (1)

30-34: LGTM!

---

Walkthrough

This PR updates the cryptography package from version 46.0.5 to 46.0.7 across Konflux dependency configuration files. The version pin in the overrides file and corresponding wheel hash values in the hashes lockfile are updated together to maintain consistency.

Changes

Cryptography version bump

Layer / File(s)	Summary
Cryptography dependency update \.konflux/requirements.overrides.txt, \.konflux/requirements.hashes.wheel.txt	Version pin for cryptography bumped from 46.0.5 to 46.0.7, with all wheel hash values updated to match the new version.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~3 minutes

🚥 Pre-merge checks | ✅ 5

✅ Passed checks (5 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title clearly and specifically describes the main change: updating the cryptography package to fix a CVE vulnerability, which matches the changeset that bumps cryptography from 46.0.5 to 46.0.7.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

✨ Simplify code

• Create PR with simplified code

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}