Skip to content

deps: update bcrypt requirement from >=4.0.0 to >=4.3.0 in /cms#10

Closed
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/pip/cms/bcrypt-gte-4.3.0
Closed

deps: update bcrypt requirement from >=4.0.0 to >=4.3.0 in /cms#10
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/pip/cms/bcrypt-gte-4.3.0

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 27, 2026
edited
Loading

Updates the requirements on bcrypt to permit the latest version.

Changelog

Sourced from bcrypt's changelog.

4.3.0

  • Dropped support for Python 3.7.
  • We now support free-threaded Python 3.13.
  • We now support PyPy 3.11.
  • We now publish wheels for free-threaded Python 3.13, for PyPy 3.11 on manylinux, and for ARMv7l on manylinux.

4.2.1

  • Bump Rust dependency versions - this should resolve crashes on Python 3.13 free-threaded builds.
  • We no longer build manylinux wheels for PyPy 3.9.

4.2.0

  • Bump Rust dependency versions
  • Removed the BCRYPT_ALLOW_RUST_163 environment variable.

4.1.3

  • Bump Rust dependency versions

4.1.2

  • Publish both py37 and py39 wheels. This should resolve some errors relating to initializing a module multiple times per process.

4.1.1

  • Fixed the type signature on the kdf method.
  • Fixed packaging bug on Windows.
  • Fixed incompatibility with passlib package detection assumptions.

4.1.0

  • Dropped support for Python 3.6.
  • Bumped MSRV to 1.64. (Note: Rust 1.63 can be used by setting the BCRYPT_ALLOW_RUST_163 environment variable)

4.0.1

  • We now build PyPy manylinux wheels.

... (truncated)

Commits

@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github Apr 27, 2026

Labels

The following labels could not be found: automated, dependencies. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@dependabot dependabot Bot force-pushed the dependabot/pip/cms/bcrypt-gte-4.3.0 branch from 85b93ac to 182ddd1 Compare April 27, 2026 19:53
@dependabot
deps: update bcrypt requirement from >=4.0.0 to >=4.3.0 in /cms
6213c1c 
Updates the requirements on [bcrypt](https://github.com/pyca/bcrypt) to permit the latest version.
- [Changelog](https://github.com/pyca/bcrypt/blob/main/CHANGELOG.rst)
- [Commits](pyca/bcrypt@4.0.0...4.3.0)

---
updated-dependencies:
- dependency-name: bcrypt
  dependency-version: 4.3.0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/pip/cms/bcrypt-gte-4.3.0 branch from 182ddd1 to 6213c1c Compare April 27, 2026 19:54
@GeiserX
Copy link
Copy Markdown
Owner

GeiserX commented Apr 27, 2026

@dependabot recreate

@GeiserX GeiserX closed this Apr 27, 2026
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github Apr 27, 2026

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@GeiserX GeiserX deleted the dependabot/pip/cms/bcrypt-gte-4.3.0 branch April 27, 2026 19:55
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@GeiserX