Safety vulnerability ID: 44929
The information on this page was manually curated by our Cybersecurity Intelligence Team.
[This advisory has been limited. Please create a free account to view the full advisory.]
Latest version: 1.3.1
A library that provides cryptographic and general-purpose routines for Secure Systems Lab projects at NYU
[This affected versions has been limited. Please create a free account to view the full affected versions.]
[This fixed versions has been limited. Please create a free account to view the full fixed versions.]
**NOTE**: this will be the final release of securesystemslib that supports
Python 2.7.
This is because Python 2.7 was marked [end-of-life](
https://www.python.org/dev/peps/pep-0373/) in January of 2020, and
since then several of securesystemslib's direct and transitive dependencies
have stopped supporting Python 2.7. securesystemslib's major users, the Python
implementations of tuf (v0.167.0) and in-toto (v1.1.0), have already dropped
support for Python 2.7.
Changed
* Switched to GitHub-native Dependabot (349)
* Updated Debian packaging metadata (343)
* Bump cryptography dependency (346)
Fixed
* Fix the Signer abstract base class's method signature to include self (348)
Scan your Python project for dependency vulnerabilities in two minutes
Scan your application