Bump sslyze from 3.1.0 to 4.1.0 in /services/scanners/ssl

[dependabot]

Bumps sslyze from 3.1.0 to 4.1.0.

Release notes

Sourced from sslyze's releases.

4.1.0

• SSLyze's memory usage has been significantly reduced when scanning a lot of servers concurrently (#511).
  • This will make it easier to deploy SSLyze to environments where memory is limited, such as AWS Lambda.
  • For example, when queuing 100 server scans, memory usage will now reach a maximum of 150 MB, instead of 1400 MB in previous versions of SSLyze.
• Fixed errors when running http_headers on specific server software (#517, #516).
• Removed usage of pipenv and switched back to a requirements.txt.

4.0.4

• Fixed errors when running --elliptic_curves on specific server software (#490).
• Better error reporting when running --http_headers on a server that doesn't speak HTTP (#499, #500).
  • See also the new HttpHeadersScanResult.http_error_trace field in the Python API.

4.0.3

• Updated the JSON output to be more stable, to allow diffing the JSON output of successive scans against the same server (#491).
• Fixed errors when scanning a server that only supports TLS 1.3 (#488).
• Fixed error when running --robot on an nginx server configured to require client authentication (#484).
• Fixed crash due to malformed HTTP headers (#498).
• Better reporting when scanning unresponsive servers (#501).
• Fixed error when an invalid certificate is deployed on the server (#495).
• Fixed error when running --reneg on Indy TCP server (#483).

4.0.2

• Fixed an issue with servers requiring client authentication and SSLyze reporting some TLS versions as unsupported (#472).
• Fixed a crash when parsing an OCSP response with no "Next Update" field (#481).
• Updated the trust stores.

4.0.1

• Updated the version of cryptography in the setup.py (#467).
• Fixed a crash when displaying non-successful OCSP responses (#477).

4.0.0

• Added support for Python 3.9 (#468).
• Fixed a crash when parsing OCSP responses (#471).
  • API-breaking change: the ocsp_response field in CertificateInfoScanResult is now an OCSPResponse instance from the cryptography.x509.ocsp module.
  • JSON-breaking change: Significantly improved the JSON output for certificates and OCSP responses, when using --certinfo.
• Fixed a false positive when testing for client-initiated renegotiation DoS attacks on some servers (#473).
  • API-breaking change: the accepts_client_renegotiation field in SessionRenegotiationScanResult was removed, and the more accurate is_vulnerable_to_client_renegotiation_dos field was added.
• The ability to detect the server’s “preferred” cipher suite was removed for being too unreliable, and will be replaced by full cipher suite order detection in a future release (#456).
  • API-breaking change: the cipher_suite_preferred_by_server in CipherSuitesScanResult was removed.
• Fixed a crash when scanning a server with an exotic/invalid TLS configuration (#466).
• Fixed support for older versions of macOS.
• Added support for the latest version of cryptography (#467).

Commits

• af72245 Improve requirements.txt file
• be71668 Bump version number
• 1a4dd1b Show SSLyze version in bug reports
• 7aa8dc6 #516#515 Better handling of non-HTTP servers for --http_headers
• d3c0b5d Properly display ScanCommandWrongUsageError in CLI output
• 3d01a73 #503 Fix types after updating cryptography
• 606efeb #503 Bump supported version of cryptography
• 92a8f8f Fully remove pipenv
• 5cbe424 Try removing pipenv
• dea5500 Remove usages of Scanner.queue_scan()
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Looks like sslyze is up-to-date now, so this is no longer needed.