Skip to content

gh-139313: Improve docs on XML security #139460

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 5 commits into
base: main
Choose a base branch
from
Open

gh-139313: Improve docs on XML security #139460

wants to merge 5 commits into from
+27 −4

Conversation

hartwork
Copy link
Contributor

@hartwork hartwork commented Sep 30, 2025
edited by github-actions bot
Loading

@hartwork
Doc/library/xml.rst: Improve section on XML security
7c336ac 
Clarify that:
- it takes parsing for an attack
- that some doors are closed by default
- only version 2.7.2 has all the fixes
- use of the bundle depends on configuration
@hartwork
Doc/library/pyexpat.rst: Document risk of ExternalEntityRefHandler
adb0de6
@hartwork
Add news item
fb47ad6
@bedevere-app bedevere-app bot added awaiting review docs Documentation in the Doc dir labels Sep 30, 2025
@bedevere-app bedevere-app bot mentioned this pull request Sep 30, 2025
Open
@github-project-automation github-project-automation bot moved this to Todo in Docs PRs Sep 30, 2025
@hartwork
Copy link
Contributor Author

hartwork commented Oct 4, 2025

@vstinner I saw your related work in commit cb99d99. Would you be up for review here?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
awaiting review docs Documentation in the Doc dir
Projects
Docs PRs
Status: Todo
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@hartwork