Temporarily ignore safety check for pyca/cryptography

[emkll]

Status

Ready for review

Description of Changes

NOTE: These changes should be reverted one SecureDrop app code is updated, this is tracked in #3682

Partially fixes #3677 and resolves current CI failures.

This ignores the safety check failure for CVE-2018-10903. As the flaw is in AES-GCM (SecureDrop app server does not make use of AES-GCM), and that updating the dependency may require updating to Xenial or potentially introducing further risk, let's set safety to (temporarily) ignore this vulnerability. See issue #3677 for more information.

Update of the admin workstation environment are tracked in #3679 (which will need to be rebased)

Testing

0. Make sure SecureDrop does not use AES-GCM and as such is not affected by CVE-2018-10903
1. CI should pass

Deployment

Dev/CI env only

[codecov-io]

Codecov Report

Merging #3683 into develop will not change coverage.
The diff coverage is n/a.

@@           Coverage Diff            @@
##           develop    #3683   +/-   ##
========================================
  Coverage    85.85%   85.85%           
========================================
  Files           41       41           
  Lines         2658     2658           
  Branches       288      288           
========================================
  Hits          2282     2282           
  Misses         312      312           
  Partials        64       64

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 7854621...6ba90da. Read the comment docs.