From 573f5de14873780a072bb63bd0333163a6118e99 Mon Sep 17 00:00:00 2001
From: Paulus Schoutsen <paulus@home-assistant.io>
Date: Tue, 28 Aug 2018 12:49:50 +0200
Subject: [PATCH] Avoid insecure pycryptodome (#16238)

---
 homeassistant/package_constraints.txt | 2 ++
 script/gen_requirements_all.py        | 2 ++
 2 files changed, 4 insertions(+)

diff --git a/homeassistant/package_constraints.txt b/homeassistant/package_constraints.txt
index 70fb519eef4..3e9a763181a 100644
--- a/homeassistant/package_constraints.txt
+++ b/homeassistant/package_constraints.txt
@@ -13,6 +13,8 @@ pyyaml>=3.13,<4
 requests==2.19.1
 voluptuous==0.11.5
 
+pycryptodome>=3.6.6
+
 # Breaks Python 3.6 and is not needed for our supported Python versions
 enum34==1000000000.0.0
 
diff --git a/script/gen_requirements_all.py b/script/gen_requirements_all.py
index fe23e638e5b..4b694ec7ec0 100755
--- a/script/gen_requirements_all.py
+++ b/script/gen_requirements_all.py
@@ -124,6 +124,8 @@ URL_PIN = ('https://home-assistant.io/developers/code_review_platform/'
 CONSTRAINT_PATH = os.path.join(os.path.dirname(__file__),
                                '../homeassistant/package_constraints.txt')
 CONSTRAINT_BASE = """
+pycryptodome>=3.6.6
+
 # Breaks Python 3.6 and is not needed for our supported Python versions
 enum34==1000000000.0.0