The cryptography package before 41.0.2 for Python mishandles SSH certificates that have critical options.
https://security.netapp.com/advisory/ntap-20230824-0010/
https://pypi.org/project/cryptography/#history
https://github.com/pyca/cryptography/pull/9208
https://github.com/pyca/cryptography/issues/9207
https://github.com/pyca/cryptography/compare/41.0.1...41.0.2