Comment 19 for bug 1836823

I'm not sure where those requirements are coming from in the .deb packages, but neither of those dependencies should need to be updated. We test with both cryptography 1.2.3 and idna 2.0 for the purpose of keeping compatibility with the packages in Xenial.