fix: remove vulnerable ecdsa dependency (CVE-2024-23342)

- Removed ecdsa from requirements.txt (not installed or used) - python-ecdsa has no fix for Minerva timing attack on P-256 - Resolves Dependabot alert 509
2026-04-28 09:51:15 +02:00
parent 3ad02c3557
commit 7314d2a39e
1 changed files with 0 additions and 1 deletions
--- a/requirements.txt
+++ b/requirements.txt
@@ -41,7 +41,6 @@ aiostun>=0.1.0
 # Cryptocurrency & Blockchain
 cryptography>=46.0.0
 pynacl>=1.6.2
-ecdsa>=0.19.0
 base58>=2.1.1
 bech32>=1.2.0
 web3>=7.15.0