From ef072655d80730216192a59a840e391e61bd4979 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 18 Jun 2026 20:43:24 +0000
Subject: [PATCH] chore(deps): bump cryptography from 43.0.1 to 48.0.1 in
 /setup

Bumps [cryptography](https://github.com/pyca/cryptography) from 43.0.1 to 48.0.1.
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/pyca/cryptography/compare/43.0.1...48.0.1)

---
updated-dependencies:
- dependency-name: cryptography
  dependency-version: 48.0.1
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 setup/requirements.txt | 60 +++++++++++++++++++++++-------------------
 1 file changed, 33 insertions(+), 27 deletions(-)

diff --git a/setup/requirements.txt b/setup/requirements.txt
index da2c73c..d0cb043 100644
--- a/setup/requirements.txt
+++ b/setup/requirements.txt
@@ -24,11 +24,10 @@ certifi==2024.8.30
     #   httpx
     #   pipenv
     #   requests
-cffi==1.17.1
+cffi==2.0.0
     # via
     #   cryptography
     #   pynacl
-    #   xattr
 cfgv==3.4.0
     # via pre-commit
 chardet==5.2.0
@@ -53,9 +52,11 @@ crashtest==0.4.1
     #   cleo
     #   poetry
 crcmod==1.7
-    # via -r setup/requirements.in
-cryptography==43.0.1
-    # via pyjwt
+    # via -r requirements.in
+cryptography==48.0.1
+    # via
+    #   pyjwt
+    #   secretstorage
 dep-logic==0.4.9
     # via pdm
 deprecated==1.2.14
@@ -79,7 +80,7 @@ filelock==3.16.1
 findpython==0.6.1
     # via pdm
 git-delete-merged-branches==7.4.1
-    # via -r setup/requirements.in
+    # via -r requirements.in
 h11==0.14.0
     # via httpcore
 hishel==0.0.31
@@ -106,6 +107,10 @@ installer==0.7.0
     #   poetry
 jaraco-classes==3.4.0
     # via keyring
+jeepney==0.9.0
+    # via
+    #   keyring
+    #   secretstorage
 keyring==24.3.1
     # via poetry
 maison==2.0.0
@@ -138,21 +143,21 @@ packaging==24.1
     #   tox
     #   unearth
 pandas==2.2.3
-    # via -r setup/requirements.in
+    # via -r requirements.in
 pathspec==0.12.1
     # via yamllint
 pbs-installer==2024.9.9
     # via pdm
 pdm==2.19.1
-    # via -r setup/requirements.in
+    # via -r requirements.in
 petname==2.6
-    # via -r setup/requirements.in
+    # via -r requirements.in
 pexpect==4.9.0
     # via poetry
 pip-tools==7.4.1
-    # via -r setup/requirements.in
+    # via -r requirements.in
 pipenv==2024.0.3
-    # via -r setup/requirements.in
+    # via -r requirements.in
 pkginfo==1.11.1
     # via poetry
 platformdirs==4.3.6
@@ -166,7 +171,7 @@ pluggy==1.5.0
     # via tox
 poetry==1.8.3
     # via
-    #   -r setup/requirements.in
+    #   -r requirements.in
     #   poetry-plugin-export
 poetry-core==1.9.0
     # via
@@ -175,7 +180,7 @@ poetry-core==1.9.0
 poetry-plugin-export==1.8.0
     # via poetry
 pre-commit==3.8.0
-    # via -r setup/requirements.in
+    # via -r requirements.in
 prompt-toolkit==3.0.48
     # via git-delete-merged-branches
 ptyprocess==0.7.0
@@ -187,10 +192,10 @@ pydantic==2.9.2
 pydantic-core==2.23.4
     # via pydantic
 pygithub==2.4.0
-    # via -r setup/requirements.in
+    # via -r requirements.in
 pygments==2.18.0
     # via
-    #   -r setup/requirements.in
+    #   -r requirements.in
     #   rich
 pyjwt==2.9.0
     # via pygithub
@@ -205,7 +210,7 @@ pyproject-hooks==1.1.0
     #   pip-tools
     #   poetry
 pyscaffold==4.6
-    # via -r setup/requirements.in
+    # via -r requirements.in
 python-dateutil==2.9.0.post0
     # via pandas
 python-dotenv==1.0.1
@@ -221,7 +226,7 @@ rapidfuzz==3.10.0
     # via cleo
 requests==2.32.3
     # via
-    #   -r setup/requirements.in
+    #   -r requirements.in
     #   cachecontrol
     #   poetry
     #   pygithub
@@ -234,6 +239,8 @@ rich==13.8.1
     # via pdm
 ruyaml==0.91.0
     # via yamlfix
+secretstorage==3.5.0
+    # via keyring
 setuptools-scm==8.1.0
     # via pyscaffold
 shellingham==1.5.4
@@ -265,14 +272,15 @@ tomlkit==0.13.2
     #   poetry
     #   pyscaffold
 tox==4.20.0
-    # via -r setup/requirements.in
+    # via -r requirements.in
 trove-classifiers==2024.9.12
     # via poetry
 truststore==0.9.2
     # via pdm
-typing-extensions==4.12.2
+typing-extensions==4.15.0
     # via
     #   anyio
+    #   cryptography
     #   hishel
     #   pydantic
     #   pydantic-core
@@ -288,7 +296,7 @@ urllib3==2.2.3
     #   requests
 virtualenv==20.26.5
     # via
-    #   -r setup/requirements.in
+    #   -r requirements.in
     #   pdm
     #   pipenv
     #   poetry
@@ -300,25 +308,23 @@ wheel==0.44.0
     # via pip-tools
 wrapt==1.16.0
     # via deprecated
-xattr==1.1.0
-    # via poetry
 yamale==5.2.1
-    # via -r setup/requirements.in
+    # via -r requirements.in
 yamlfix==1.17.0
-    # via -r setup/requirements.in
+    # via -r requirements.in
 yamllint==1.35.1
-    # via -r setup/requirements.in
+    # via -r requirements.in
 zipp==3.20.2
     # via importlib-metadata
 
 # The following packages are considered to be unsafe in a requirements file:
 pip==24.2
     # via
-    #   -r setup/requirements.in
+    #   -r requirements.in
     #   pip-tools
 setuptools==75.1.0
     # via
-    #   -r setup/requirements.in
+    #   -r requirements.in
     #   pip-tools
     #   pipenv
     #   pyscaffold