{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":121479353,"defaultBranch":"master","name":"cpython","ownerLogin":"ngie-eign","currentUserCanPush":false,"isFork":true,"isEmpty":false,"createdAt":"2018-02-14T06:38:59.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/1574099?v=4","public":true,"private":false,"isOrgOwned":false},"refInfo":{"name":"","listCacheKey":"v0:1686010151.528214","currentOid":""},"activityList":{"items":[{"before":"f39f666b48d81f541ae1858a7c93c3a060b39085","after":null,"ref":"refs/heads/3.8-CVE-2023-24329","pushedAt":"2023-06-06T00:09:11.528Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"ngie-eign","name":"Enji Cooper","path":"/ngie-eign","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1574099?s=80&v=4"}},{"before":"737be53ea3da71ccee9180f922eb05097be66322","after":"f39f666b48d81f541ae1858a7c93c3a060b39085","ref":"refs/heads/3.8-CVE-2023-24329","pushedAt":"2023-05-25T04:22:03.434Z","pushType":"push","commitsCount":1,"pusher":{"login":"blurb-it[bot]","name":null,"path":"/apps/blurb-it","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1525981?s=80&v=4"},"commit":{"message":"📜🤖 Added by blurb_it.","shortMessageHtmlLink":"📜🤖 Added by blurb_it."}},{"before":"9048acb5bb48488dbbe5167b5b3169df39a08b09","after":"737be53ea3da71ccee9180f922eb05097be66322","ref":"refs/heads/3.8-CVE-2023-24329","pushedAt":"2023-05-25T04:20:06.668Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"ngie-eign","name":"Enji Cooper","path":"/ngie-eign","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1574099?s=80&v=4"},"commit":{"message":"[3.8] gh-102153: Start stripping C0 control and space chars in `urlsplit`\n\ngh-102153: Start stripping C0 control and space chars in `urlsplit` (GH-102508)\n\n`urllib.parse.urlsplit` has already been respecting the WHATWG spec a bit GH-25595.\n\nThis adds more sanitizing to respect the \"Remove any leading C0 control or space from input\" [rule](https://url.spec.whatwg.org/GH-url-parsing:~:text=Remove%20any%20leading%20and%20trailing%20C0%20control%20or%20space%20from%20input.) in response to [CVE-2023-24329](https://nvd.nist.gov/vuln/detail/CVE-2023-24329).\n\nI simplified the docs by eliding the state of the world explanatory\nparagraph in this security release only backport.  (people will see\nthat in the mainline /3/ docs)\n\nCo-authored-by: Illia Volochii <illia.volochii@gmail.com>\nCo-authored-by: Gregory P. Smith [Google] <greg@krypto.org>\nCo-authored-by: Enji Cooper <yaneurabeya@gmail.com>","shortMessageHtmlLink":"[3.8] <a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"1595844394\" data-permission-text=\"Title is private\" data-url=\"https://github.com/python/cpython/issues/102153\" data-hovercard-type=\"issue\" data-hovercard-url=\"/python/cpython/issues/102153/hovercard\" href=\"https://github.com/python/cpython/issues/102153\">pythongh-102153</a>: Start stripping C0 control and space chars in …"}},{"before":"8ac91e797dd234a18d6fb212a86cdcf0e9ad5476","after":"9048acb5bb48488dbbe5167b5b3169df39a08b09","ref":"refs/heads/3.8-CVE-2023-24329","pushedAt":"2023-05-25T04:18:43.005Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"ngie-eign","name":"Enji Cooper","path":"/ngie-eign","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1574099?s=80&v=4"},"commit":{"message":"[3.8] gh-102153: Start stripping C0 control and space chars in `urlsplit`\n\ngh-102153: Start stripping C0 control and space chars in `urlsplit` (GH-102508)\n\n`urllib.parse.urlsplit` has already been respecting the WHATWG spec a bit GH-25595.\n\nThis adds more sanitizing to respect the \"Remove any leading C0 control or space from input\" [rule](https://url.spec.whatwg.org/GH-url-parsing:~:text=Remove%20any%20leading%20and%20trailing%20C0%20control%20or%20space%20from%20input.) in response to [CVE-2023-24329](https://nvd.nist.gov/vuln/detail/CVE-2023-24329).\n\nI simplified the docs by eliding the state of the world explanatory\nparagraph in this security release only backport.  (people will see\nthat in the mainline /3/ docs)\n\nCo-authored-by: Illia Volochii <illia.volochii@gmail.com>\nCo-authored-by: Gregory P. Smith [Google] <greg@krypto.org>\nCo-authored-by: Enji Cooper <yaneurabeya@gmail.com>","shortMessageHtmlLink":"[3.8] <a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"1595844394\" data-permission-text=\"Title is private\" data-url=\"https://github.com/python/cpython/issues/102153\" data-hovercard-type=\"issue\" data-hovercard-url=\"/python/cpython/issues/102153/hovercard\" href=\"https://github.com/python/cpython/issues/102153\">pythongh-102153</a>: Start stripping C0 control and space chars in …"}},{"before":"bff7ee75b6d208f2d4042b97d54f639f139d545b","after":"8ac91e797dd234a18d6fb212a86cdcf0e9ad5476","ref":"refs/heads/3.8-CVE-2023-24329","pushedAt":"2023-05-25T04:04:33.713Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"ngie-eign","name":"Enji Cooper","path":"/ngie-eign","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1574099?s=80&v=4"},"commit":{"message":"[3.8] gh-102153: Start stripping C0 control and space chars in `urlsplit`\n\ngh-102153: Start stripping C0 control and space chars in `urlsplit` (GH-102508)\n\n`urllib.parse.urlsplit` has already been respecting the WHATWG spec a bit GH-25595.\n\nThis adds more sanitizing to respect the \"Remove any leading C0 control or space from input\" [rule](https://url.spec.whatwg.org/GH-url-parsing:~:text=Remove%20any%20leading%20and%20trailing%20C0%20control%20or%20space%20from%20input.) in response to [CVE-2023-24329](https://nvd.nist.gov/vuln/detail/CVE-2023-24329).\n\nI simplified the docs by eliding the state of the world explanatory\nparagraph in this security release only backport.  (people will see\nthat in the mainline /3/ docs)\n\nCo-authored-by: Illia Volochii <illia.volochii@gmail.com>\nCo-authored-by: Gregory P. Smith [Google] <greg@krypto.org>\nCo-authored-by: Enji Cooper <yaneurabeya@gmail.com>","shortMessageHtmlLink":"[3.8] <a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"1595844394\" data-permission-text=\"Title is private\" data-url=\"https://github.com/python/cpython/issues/102153\" data-hovercard-type=\"issue\" data-hovercard-url=\"/python/cpython/issues/102153/hovercard\" href=\"https://github.com/python/cpython/issues/102153\">pythongh-102153</a>: Start stripping C0 control and space chars in …"}},{"before":null,"after":"bff7ee75b6d208f2d4042b97d54f639f139d545b","ref":"refs/heads/3.8-CVE-2023-24329","pushedAt":"2023-05-25T04:03:00.323Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"ngie-eign","name":"Enji Cooper","path":"/ngie-eign","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1574099?s=80&v=4"},"commit":{"message":"[3.8] gh-102153: Start stripping C0 control and space chars in `urlsplit`\n\ngh-102153: Start stripping C0 control and space chars in `urlsplit` (GH-102508)\n\n`urllib.parse.urlsplit` has already been respecting the WHATWG spec a bit GH-25595.\n\nThis adds more sanitizing to respect the \"Remove any leading C0 control or space from input\" [rule](https://url.spec.whatwg.org/GH-url-parsing:~:text=Remove%20any%20leading%20and%20trailing%20C0%20control%20or%20space%20from%20input.) in response to [CVE-2023-24329](https://nvd.nist.gov/vuln/detail/CVE-2023-24329).\n\nI simplified the docs by eliding the state of the world explanatory\nparagraph in this security release only backport.  (people will see\nthat in the mainline /3/ docs)\n\nCo-authored-by: Illia Volochii <illia.volochii@gmail.com>\nCo-authored-by: Gregory P. Smith [Google] <greg@krypto.org>","shortMessageHtmlLink":"[3.8] <a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"1595844394\" data-permission-text=\"Title is private\" data-url=\"https://github.com/python/cpython/issues/102153\" data-hovercard-type=\"issue\" data-hovercard-url=\"/python/cpython/issues/102153/hovercard\" href=\"https://github.com/python/cpython/issues/102153\">pythongh-102153</a>: Start stripping C0 control and space chars in …"}}],"hasNextPage":false,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"Y3Vyc29yOnYyOpK7MjAyMy0wNi0wNlQwMDowOToxMS41MjgyMTRazwAAAAM7T0Ka","startCursor":"Y3Vyc29yOnYyOpK7MjAyMy0wNi0wNlQwMDowOToxMS41MjgyMTRazwAAAAM7T0Ka","endCursor":"Y3Vyc29yOnYyOpK7MjAyMy0wNS0yNVQwNDowMzowMC4zMjM2NTZazwAAAAMzymoz"}},"title":"Activity · ngie-eign/cpython"}