The Wire · Showcase
FASTAPI BUMPS CRYPTOGRAPHY TO 48.0.1 ALONGSIDE SEVEN PACKAGE UPDATES
By RepoJournal · Filed · About FastAPI & Pydantic
FastAPI locked in cryptography 48.0.1 with breaking changes and seven companion package bumps in a single coordinated push.
The cryptography upgrade from 46.0.7 to 48.0.1 [1] carries backwards-incompatible changes compiled against OpenSSL 4.0.1, making this a deliberate breaking change that demands attention before you ship. Bundled in the same PR batch, FastAPI upgraded ruff, inline-snapshot, ty, typer, zensical, and pydantic-ai [2], consolidating maintenance work across the dependency stack. The aiohttp bump to 3.14.1 [3] landed in parallel, and a script reversion [4] corrected an overzealous cleanup that removed more than intended. On the infrastructure side, both FastAPI and SQLModel moved setup-uv to 8.2.0 [5] [6], bringing new inputs like quiet mode and astral-mirror support. Over in Pydantic, the Mypy plugin now warns on unknown config keys [7] [8], surfacing dead configuration from V1 migrations that were silently ignored before.
Action items
- → Review cryptography 48.0.1 breaking changes before upgrading [ref:2] fastapi/fastapi [plan]
- → Update FastAPI and SQLModel dependencies in your lockfile fastapi/fastapi [monitor]
- → Audit Pydantic Mypy configs for deprecated V1 settings now that warnings are live pydantic/pydantic [plan]
References
- [1] ⬆ Bump cryptography from 46.0.7 to 48.0.1 ↗ fastapi/fastapi
- [2] ⬆ Bump the python-packages group across 1 directory with 7 updates ↗ fastapi/fastapi
- [3] ⬆ Bump aiohttp from 3.14.0 to 3.14.1 ↗ fastapi/fastapi
- [4] ⏪️ Revert removing scripts, only remove `coverage.sh` (#15772) fastapi/fastapi
- [5] ⬆ Bump astral-sh/setup-uv from 8.1.0 to 8.2.0 in the github-actions group ↗ fastapi/fastapi
- [6] ⬆ Bump astral-sh/setup-uv from 8.1.0 to 8.2.0 in the github-actions group ↗ tiangolo/sqlmodel
- [7] Warn on unknown config keys in the Mypy plugin ↗ pydantic/pydantic
- [8] Warn on unknown config keys in the Mypy plugin (#13149) pydantic/pydantic
FAQ
- What changed in FastAPI & Pydantic on June 17, 2026?
- FastAPI locked in cryptography 48.0.1 with breaking changes and seven companion package bumps in a single coordinated push.
- What should FastAPI & Pydantic teams do about it?
- Review cryptography 48.0.1 breaking changes before upgrading [ref:2] • Update FastAPI and SQLModel dependencies in your lockfile • Audit Pydantic Mypy configs for deprecated V1 settings now that warnings are live
- Which FastAPI & Pydantic repositories shipped on June 17, 2026?
- fastapi/fastapi, tiangolo/sqlmodel, pydantic/pydantic