[Security] Bump cryptography from 38.0.1 to 38.0.3

Bumps cryptography from 38.0.1 to 38.0.3. This update includes a security fix.

Vulnerabilities fixed

Vulnerable OpenSSL included in cryptography wheels pyca/cryptography's wheels include a statically linked copy of OpenSSL. The versions of OpenSSL included in cryptography 37.0.0-38.0.3 are vulnerable to a number of security issues. More details about the vulnerabilities themselves can be found in https://www.openssl.org/news/secadv/20221101.txt.

If you are building cryptography source ("sdist") then you are responsible for upgrading your copy of OpenSSL. Only users installing from wheels built by the cryptography project (i.e., those distributed on PyPI) need to update their cryptography versions.

Patched versions: 38.0.3 Affected versions: >= 37.0.0, < 38.0.3

Changelog

Sourced from cryptography's changelog.

38.0.3 - 2022-11-01

* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.0.7,
  which resolves *CVE-2022-3602* and *CVE-2022-3786*.
.. _v38-0-2:
38.0.2 - 2022-10-11 (YANKED)

.. attention::

This release was subsequently yanked from PyPI due to a regression in OpenSSL.

• Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.0.6.

.. _v38-0-1:

Commits

• 7d9c6c3 Bump for 38.0.3 release (#7761)
• 39f8011 attempt to workaround downstream package testing situation (#7725) (#7757)
• 5b12ac8 Use PyPy binaries from manylinux image instead of our own (#7678) (#7693)
• 277ee0d 38.0.2 release (#7691)
• ce119b8 version properly in the changelog (#7578)
• See full diff in compare view

---

Dependabot commands

You can trigger Dependabot actions by commenting on this MR

• $dependabot rebase will rebase this MR
• $dependabot recreate will recreate this MR rewriting all the manual changes and resolving conflicts