python/python-mohawk
SHA256
14
0
Fork 0
forked from pool/python-mohawk
Code Pull Requests Activity
4 Commits 1 Branch 0 Tags
be79f764f9949c8c135126a1a98b40f42f1a13f273d86107958b1427a1ba4dd1
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Antoine Belvire be79f764f9 - Update to version 1.0.0: 
* Security related: Bewit MACs were not compared in constant time
    and were thus possibly circumventable by an attacker.
  * Breaking change: Escape characters in header values (such as a
    back slash) are no longer allowed, potentially breaking clients
    that depended on this behavior.
  * A sender is allowed to omit the content hash as long as their
    request has no content. The `mohawk.Receiver` will skip the
    content hash check in this situation, regardless of the value
    of accept_untrusted_content.
  * Introduced max limit of 4096 characters in the Authorization
    header.
  * Changed default values of content and content_type arguments to
    `mohawk.base.EmptyValue` in order to differentiate between
    misconfiguration and cases where these arguments are explicitly
    given as None (as with some web frameworks).
  * Failing to pass content and content_type arguments to
    `mohawk.Receiver` or `mohawk.Sender.accept_response` without
    specifying accept_untrusted_content=True will now raise
    `mohawk.exc.MissingContent` instead of `ValueError`.

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-mohawk?expand=0&rev=5
2019-01-11 06:56:08 +00:00
.gitattributes
misc accidental
2018-04-30 13:47:31 +00:00
.gitignore
misc accidental
2018-04-30 13:47:31 +00:00
mohawk-1.0.0.tar.gz
- Update to version 1.0.0:
2019-01-11 06:56:08 +00:00
python-mohawk.changes
- Update to version 1.0.0:
2019-01-11 06:56:08 +00:00
python-mohawk.spec
- Update to version 1.0.0:
2019-01-11 06:56:08 +00:00
Description
No description provided
53 KiB
Languages
RPM Spec 100%