fixup! fixup! [#8613] Implement field level encryption for user preferences email address
fixup! [#8613] Implement field level encryption for user preferences email address
[#8613] Implement field level encryption for user preferences email address
[#8613] Add encrypted field for user preferences email address
fixup! fixup! [#8613] Implement field level encryption for user preferences email address
bumping Pillow 12.2.0 -> 12.3.
fixup! added CLAUDE.md
added CLAUDE.md
bumping soupsieve 2.8.3 -> 2.8.4
fixup! [#8613] Implement field level encryption for user preferences email address
Implement field level encryption for email address in user preferences
Work done in two branches: cc/8613-part1 cc/8613-part2
[#8613] Implement field level encryption for user preferences email address
[#8613] Add encrypted field for user preferences email address
Implement field level encryption for User's email addresses list
Implement field level encryption for email address in user preferences
[#8610] Implement field level encryption for Users email addresses
POC: Using sanitize/clean instead of tree walking, but now necessitates placeholder logic for unsupported logic
disallowed tags are now preserved as escaped visible text instead of disappearing.
html5lib is removed with turbohtml as the replacement everywhere it was used.
Claude-generated POCs on 2 branches: db/remove_html5lib_nh3 using nh3 (mature & maintained) but currently drops <script> and other disallowed tags instead of escaping them. Also has a slow bs4 pass after nh3 for some things nh3 can't handle (iframe allowed only for youtube sources, input only for checkbox) db/remove_html5lib_turbohtml using turbohtml (very new right now, pre 1.0 release, things may change in it). Can't use its clean.sanitize for the same reasons nh3 fell short. If turbohtml had a...
html5lib dependency is removed, with sanitization now handled by nh3.
Consider changing from html5lib sanitizer
[#8612] remove some Paste usage: keeping paste.exceptions.errormiddleware.ErrorMiddleware, has no replacement. Keeping PasteDeploy
[#8612] "--" optional now
[#8612] PasteScript removed by Claude
Untested POC on db/8612
pastescript depends on deprecated pkg_resources
get_tool_data should return ming-deinstrumented objects, so changes to them can't sync back to the database unexpectedly
[#8610] Add support for list fields to field conversion script
[#8610] Add encrypted field for Users email addresses
Home
rebuild all
release 1.19.1
bump joserfc 1.6.4 -> 1.7.2
config pip in rebuild-all.sh to install in a more compatible way for LSPs
fixup! fixup! [#8610] Implement field level encryption for Users email addresses
fixup! [#8610] Implement field level encryption for Users email addresses
stringify some ids
don't pass sort=None etc to solr
get chained exception details into errormiddleware output
add docker/compose health checks and use --wait to check them
stringify some ids
don't pass sort=None etc to solr
CHANGES updated for ASF release 1.19.1
provide merged config to ming, so debug key is there
add timeouts to ApacheAccessHandler.py network requests
CHANGES updated for ASF release 1.19.0
Update copyright year
[#8610] Implement field level encryption for Users email addresses
[#8610] Add support for list fields to field conversion script
[#8610] Add encrypted field for Users email addresses
cc/8610-part1 cc/8610-part2
[#8610] Implement field level encryption for Users email addresses
Documentation and migration for encrypted fields
[#8611] documentation and migration scripts
[#8611] put encryption settings into development.ini with a default that triggers a warning
looks good to merge
[#8610] Add support for list fields to field conversion script
[#8610] Add encrypted field for Users email addresses
forge-allura hosting setup
better escape_html that does quotes too
bumping bleach 6.3.0 -> 6.4.0
[#8607] limit prefs able to set via form
[#8607] use |tojson within JS
[#8607] perm checks on ticket bulk edit & move
[#8607] require post for phone verification endpoints
[#8607] validate links via rest
[#8607] check domain when adding github auth token
[#8607] lock down a bit of the incomplete commit_status endpoint
[#8611] documentation and migration scripts
[#8611] put encryption settings into development.ini with a default that triggers a warning
Documentation and migration for encrypted fields
db/8611
bumping cryptography 46.0.7 -> 49.0.0
Documentation and migration for encrypted fields
Implement field level encryption for the User's display name
[#8607] limit prefs able to set via form
[#8607] use |tojson within JS
Implement field level encryption for User's email addresses list
[#8604] Update transient anonymous user property to not use encrypted field
Remove dead ProjectUserSelect code
[#8604] Implement field level encryption for User's display_name_field
[#8604] Add the display_name_encrypted field to the User class
[#8607] perm checks on ticket bulk edit & move
[#8607] require post for phone verification endpoints
[#8607] validate links via rest
[#8607] check domain when adding github auth token
[#8607] lock down a bit of the incomplete commit_status endpoint
enforce text limits for all markdown rendering paths
Thank you for reporting Rich An Apache project called Help Wanted! was announced in 2016. Discussion about that project make it clear that helpwanted.apache.org was not just focused on solving issues. Recruitment was an important goal. Perhaps because recruitment is non-trivial, helpwanted.apache.org was abandoned years ago. Rewards As this ticket shares origins with helpwanted.apache.org, recruitment is probably its main goal. However, if we focus on the challenge of matching tasks to potential...
Skills are now on https://sourceforge.net/auth/user_info/skills/
Are you talking about ticket #2660 in this ITS?
OpenHatch was "winded down" in 2017.
[#8604] Update transient anonymous user property to not use encrypted field
Remove dead ProjectUserSelect code
[#8604] Implement field level encryption for User's display_name_field
[#8604] Add the display_name_encrypted field to the User class
Implement field level encryption for the email field from the EmailAddress model
[#8606] Implement field level encryption for EmailAddress email field