From 066c898c77f20602c88c0ee2ae4e16007e04ef23 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Dean=20Qui=C3=B1anola?= <dean.quinanola@runpod.io>
Date: Mon, 22 Jun 2026 18:10:41 -0700
Subject: [PATCH] fix(deps): bump cryptography floor to >=48.0.1 for OpenSSL
 fix

The `cryptography < 47.0.0` cap forced resolution to 46.0.7, which
bundles a vulnerable statically-linked OpenSSL (GHSA-537c-gmf6-5ccf,
per the OpenSSL advisory of 2026-06-09). The fix landed in
cryptography 48.0.1. Set a floor at >=48.0.1 so installs pull the
patched wheel.

Fixes #511
---
 requirements.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/requirements.txt b/requirements.txt
index de7f3c60..60674a47 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -5,7 +5,7 @@ backoff >= 2.2.1
 boto3 >= 1.26.165
 click >= 8.1.7
 colorama >= 0.4.6, < 0.4.7
-cryptography < 47.0.0
+cryptography >= 48.0.1
 fastapi[all] >= 0.94.0
 filelock >= 3.19.1
 paramiko >= 3.3.1