feat(deps): bump cryptography from 41.0.7 to 42.0.5 (#168)

Bumps [cryptography](https://github.com/pyca/cryptography) from 41.0.7
to 42.0.5.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst">cryptography's
changelog</a>.</em></p>
<blockquote>
<p>42.0.5 - 2024-02-23</p>
<pre><code>
* Limit the number of name constraint checks that will be performed in
:mod:`X.509 path validation &lt;cryptography.x509.verification&gt;` to
protect
  against denial of service attacks.
* Upgrade ``pyo3`` version, which fixes building on PowerPC.
<p>.. _v42-0-4:</p>
<p>42.0.4 - 2024-02-20
</code></pre></p>
<ul>
<li>Fixed a null-pointer-dereference and segfault that could occur when
creating
a PKCS#12 bundle. Credit to <strong>Alexander-Programming</strong> for
reporting the
issue. <strong>CVE-2024-26130</strong></li>
<li>Fixed ASN.1 encoding for PKCS7/SMIME signed messages. The fields
<code>SMIMECapabilities</code>
and <code>SignatureAlgorithmIdentifier</code> should now be correctly
encoded according to the
definitions in :rfc:<code>2633</code> :rfc:<code>3370</code>.</li>
</ul>
<p>.. _v42-0-3:</p>
<p>42.0.3 - 2024-02-15</p>
<pre><code>
* Fixed an initialization issue that caused key loading failures for
some
  users.
<p>.. _v42-0-2:</p>
<p>42.0.2 - 2024-01-30
</code></pre></p>
<ul>
<li>Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL
3.2.1.</li>
<li>Fixed an issue that prevented the use of Python buffer protocol
objects in
<code>sign</code> and <code>verify</code> methods on asymmetric
keys.</li>
<li>Fixed an issue with incorrect keyword-argument naming with
<code>EllipticCurvePrivateKey</code>

:meth:<code>~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePrivateKey.exchange</code>,
<code>X25519PrivateKey</code>

:meth:<code>~cryptography.hazmat.primitives.asymmetric.x25519.X25519PrivateKey.exchange</code>,
<code>X448PrivateKey</code>

:meth:<code>~cryptography.hazmat.primitives.asymmetric.x448.X448PrivateKey.exchange</code>,
and <code>DHPrivateKey</code>

:meth:<code>~cryptography.hazmat.primitives.asymmetric.dh.DHPrivateKey.exchange</code>.</li>
</ul>
<p>.. _v42-0-1:</p>
<p>42.0.1 - 2024-01-24</p>
<pre><code>
&lt;/tr&gt;&lt;/table&gt; 
</code></pre>
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/pyca/cryptography/commit/33833f031d9d36234e11d9671be150d53b9e598d"><code>33833f0</code></a>
Release 42.0.5 (<a
href="https://redirect.github.com/pyca/cryptography/issues/10470">#10470</a>)</li>
<li><a
href="https://github.com/pyca/cryptography/commit/4be53bf20cc90cbac01f5f94c5d1aecc5289ba1f"><code>4be53bf</code></a>
Added a budget for NC checks to protect against DoS (<a
href="https://redirect.github.com/pyca/cryptography/issues/10467">#10467</a>)
(<a
href="https://redirect.github.com/pyca/cryptography/issues/10468">#10468</a>)</li>
<li><a
href="https://github.com/pyca/cryptography/commit/8e9de309f850a17409da5de39cfcd9296c25ea36"><code>8e9de30</code></a>
Bump pyo3 from 0.20.2 to 0.20.3 in /src/rust (<a
href="https://redirect.github.com/pyca/cryptography/issues/10462">#10462</a>)
(<a
href="https://redirect.github.com/pyca/cryptography/issues/10465">#10465</a>)</li>
<li><a
href="https://github.com/pyca/cryptography/commit/fe18470f7d05f963e7267e34fdf985d81ea6ceea"><code>fe18470</code></a>
Bump for 42.0.4 release (<a
href="https://redirect.github.com/pyca/cryptography/issues/10445">#10445</a>)</li>
<li><a
href="https://github.com/pyca/cryptography/commit/aaa2dd06ed470695de818405a982d4c459869803"><code>aaa2dd0</code></a>
Fix ASN.1 issues in PKCS#7 and S/MIME signing (<a
href="https://redirect.github.com/pyca/cryptography/issues/10373">#10373</a>)
(<a
href="https://redirect.github.com/pyca/cryptography/issues/10442">#10442</a>)</li>
<li><a
href="https://github.com/pyca/cryptography/commit/7a4d012991061974da5d9cb7614de65eac94f49b"><code>7a4d012</code></a>
Fixes <a
href="https://redirect.github.com/pyca/cryptography/issues/10422">#10422</a>
-- don't crash when a PKCS#12 key and cert don't match (<a
href="https://redirect.github.com/pyca/cryptography/issues/10423">#10423</a>)
...</li>
<li><a
href="https://github.com/pyca/cryptography/commit/df314bb182bdfd661333969a94325e4680d785f6"><code>df314bb</code></a>
backport actions m1 switch to 42.0.x (<a
href="https://redirect.github.com/pyca/cryptography/issues/10415">#10415</a>)</li>
<li><a
href="https://github.com/pyca/cryptography/commit/c49a7a5271178c6e8ef36fa1c499f62c63ec19b9"><code>c49a7a5</code></a>
changelog and version bump for 42.0.3 (<a
href="https://redirect.github.com/pyca/cryptography/issues/10396">#10396</a>)</li>
<li><a
href="https://github.com/pyca/cryptography/commit/396bcf64c5be826ec00e7d7f45838c858c049cbc"><code>396bcf6</code></a>
fix provider loading take two (<a
href="https://redirect.github.com/pyca/cryptography/issues/10390">#10390</a>)
(<a
href="https://redirect.github.com/pyca/cryptography/issues/10395">#10395</a>)</li>
<li><a
href="https://github.com/pyca/cryptography/commit/0e0e46f5f73f477b8ee9682738c42129d5d60177"><code>0e0e46f</code></a>
backport: initialize openssl's legacy provider in rust (<a
href="https://redirect.github.com/pyca/cryptography/issues/10323">#10323</a>)
(<a
href="https://redirect.github.com/pyca/cryptography/issues/10333">#10333</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/pyca/cryptography/compare/41.0.7...42.0.5">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=cryptography&package-manager=pip&previous-version=41.0.7&new-version=42.0.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
Dependabot will merge this PR once it's up-to-date and CI passes on it,
as requested by @edgarrmondragon.

[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

pyproject.toml

@@ -15,7 +15,7 @@ packages = [
 
 [tool.poetry.dependencies]
 python = ">=3.8"
-cryptography = ">=40,<42"
+cryptography = ">=40,<43"
 singer-sdk = "~=0.36.1"
 snowflake-sqlalchemy = "~=1.5.1"
 sqlalchemy = "<2"