[OAUTH-WG] Weekly github digest (OAuth Activity Summary)
Repository Activity Summary Bot <do_not_reply@mnot.net> Sun, 14 June 2026 10:40 UTC
Return-Path: <do_not_reply@mnot.net>
X-Original-To: oauth@mail2.ietf.org
Delivered-To: oauth@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 8CBBF1010031D for <oauth@mail2.ietf.org>; Sun, 14 Jun 2026 03:40:36 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1781433636; bh=/ssS2pHtY2EpDGCSMVLwJ2/TwML78UzQ45PUqbkAx3M=; h=From:To:Subject:Date; b=lhcwECZLSLqfFzW9wcmcz93qWbMwsvPX5SD+8ffZBgp2kE7Yoyvie4XOSRj4UfII2 6U/uYoqE9mi4voG/OIX9M8CweWErHT9+xu6VqgBILGXrC2aZ8wNSqytBejRf+T1zVs iFquyVaDT59H4VOfESKW/j08wKYzsIj3gmt3JDuI=
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.397
X-Spam-Level:
X-Spam-Status: No, score=-2.397 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_INVALID=0.1, DKIM_SIGNED=0.1, HTML_MESSAGE=0.001, MSGID_FROM_MTA_HEADER=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_VALIDITY_CERTIFIED_BLOCKED=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=fail (2048-bit key) reason="fail (message has been altered)" header.d=mnot.net header.b="Riu5MRIG"; dkim=fail (2048-bit key) reason="fail (message has been altered)" header.d=messagingengine.com header.b="EOeDyIEL"
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id W_n9IGqn0Z_u for <oauth@mail2.ietf.org>; Sun, 14 Jun 2026 03:40:34 -0700 (PDT)
Received: from fout-a8-smtp.messagingengine.com (fout-a8-smtp.messagingengine.com [103.168.172.151]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256)) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id E12C4100FF85A for <oauth@ietf.org>; Sun, 14 Jun 2026 03:39:30 -0700 (PDT)
Received: from phl-compute-03.internal (phl-compute-03.internal [10.202.2.43]) by mailfout.phl.internal (Postfix) with ESMTP id CB9A8EC012B for <oauth@ietf.org>; Sun, 14 Jun 2026 06:39:30 -0400 (EDT)
Received: from phl-frontend-04 ([10.202.2.163]) by phl-compute-03.internal (MEProxy); Sun, 14 Jun 2026 06:39:30 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mnot.net; h=cc :content-type:content-type:date:from:from:in-reply-to:message-id :mime-version:reply-to:subject:subject:to:to; s=fm2; t= 1781433570; x=1781519970; bh=pkHhzRY/RG5duOTdZ4ImXMO9W9srERpGsi8 UKz5HMA8=; b=Riu5MRIGs87WDx1rNQc6fe2adwIe1wslSMmgAc6JmpOpjb+T63B iTL6vU7nYIkjWSJkc0l2mCJhGaX5qGCt7tsQ42WntRaq8pBMC/ZjgoC/8u16KvCP mGt8coOhBgtHlcOFCFJ1oxUci0wTJ1cXepNxFzbtjkUTEnarmfrvNo/5NzweRGAY mMYVvfQx1WHGDmnu2PPRc8qKMAvp9SUAf5enQml+2LD9VMQ8jFu6WIxQTKQPO2qQ iOkTfL8CZhnD3yti+QlJPN1cEvBWlxZPYThZj/P5G6zmUVi2dUiXqOrUVCBV51aS GrNRyyRouoYXIP3AyzSQuux3xaxqeQ0dZJQ==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-type:content-type:date :feedback-id:feedback-id:from:from:in-reply-to:message-id :mime-version:reply-to:subject:subject:to:to:x-me-proxy :x-me-sender:x-me-sender:x-sasl-enc; s=fm1; t=1781433570; x= 1781519970; bh=pkHhzRY/RG5duOTdZ4ImXMO9W9srERpGsi8UKz5HMA8=; b=E OeDyIELg3wei4iFhWmpUeCQsIye26YuB3zwohK/fMfcgHEj0/xOZMuSHs/8LbtbT no71sbhsDnQDGmXWlgtVFHSIM9CH3/ITtkw+PZVdg1CrMMnRlGXfouV/2jIgGdJ5 tsEvI20j3kIp8xBYYYYHAo4DKcQM5kdx8RoQ3v2WRw6vw08Fw2z+2YYOURNRwfPK QQFo5YJvCRmvbdsnJgt0RooxuHcud6I947ch4ycYJmrvfYpQ3Jcj5VkVg8kSt8cD v46b85k3+OHU+e/6YCZyNTQ2jW6Br7lYLldIJGzvFpPE7hnha/XNBeq/pI34ygx6 OyuRfTSNvbDpVv9H0m4Ag==
X-ME-Sender: <xms:4oQuaq6qHgVUO4WX1MEnIJAPoPzsEWPytpXMxhGJ4rQqAQm6MbenJg> <xme:4oQuapyRbGpwjhM-5H3rSIGhnRHMNB-OO7duGzyJyH-gMd1edzG1HKORshe9wTJ9H e-oOi8fWbCFo1XCExxVp0rIddfPL2ijzim0rD2bu-sLtepCPVuaeg>
X-ME-Received: <xmr:4oQuakj0jGdybAjdtvuHfPs5p6nA3mrN5xsOpKM7tM6X8X_JG955zn8vfx1Afc09Ph1NTUBRiqypycr4XRqqP27ZTe6fvxw_-ddMuQEc1GXVpn0Wz40BJbGYR2aYfV8l9Ec1D9U>
X-ME-Proxy-Cause: dmFkZTE/M+/Cy2f64ujqFS1stMHrCnjBJh/HrcfuVY4WOETQ8eC9qYKKo+1oATU5F7IzUL QRtCfNawYcGY61vGJrZjqXKIWE9UowabcTwQ8g8yC4O3qqVhQCAXj/6uVhSq6xLshTql+I 8o9TNACx/jfT2RH20nIR1dBY1RRAN0Yo0ZqZOOEJas7nQ81vCYs3Yr5kRvAE28bMafdmSj 5DO6qLe8I11VHRgoj1Xn4wD8wGgvL58oQS8v1N1UIHgFlgdP4lg+EUWHtCMPhFzwtrPS4R cS+piFIg6o7pllHEgN3FATqA/lEzi+rlstooevOgR/osGPCn+65uYL1ZkwC+oMq+w8t5eS PA+1qtWj89Wq4cQ/Fh+m53Jn2d+3ni4y5NHAStVhjk/edwZsvSQDhwdP/K4oZTwaLmB3io QyfS7lgwQxJ2OUrBsP5fxNU3TragFEDuBluVuUxFd0T7hDeB03kR8t01iCwTNmtHtevY+q XtjVzKnb7BvCE6NB2h9e0dsYIpftVA06J8Eg7LeTb03MWEnGrFPuksGA2z1KOzh+i4WNH+ 7seIF19dG5YTpH37/EaEqmuolxSWq9wfaHj4LUhwcUlk9Na+vSBKL0VbrQ2DNYTEkrdyaT DvKm2QhncyfpmIQ2LHdehWOtzMVf+82W5NI9fnQU7SIYw0z23Wi66s0U1VHg
X-ME-Proxy: <xmx:4oQuaj_HfAO-xtbBbMllThYcs06QTYzU9F9wqNsuWex0R7LA_CIhiQ> <xmx:4oQuahvbWWNWxeZeQrQ7yt1YatIA0b4iY4u1FqEfOVafM3Wl4Ajo5g> <xmx:4oQuaqYNdtd9s2WKxcntPL_rEjIK-7GLTxfyeNX00Dm6OpYc5U4mag> <xmx:4oQuahrps_dldgpB0m1DGCcU2Msryi5rXFkH3OEgbEy1dKfSAMWk9g> <xmx:4oQuagjyvu-CdecdBKKx7oGcRkygN60zZC4KFW_JJIsBB1F8U93lwcQF>
Feedback-ID: i1c3946f2:Fastmail
Message-Id: <1781433570.3348402.5DD8DF49@outbound.messagingengine.com>
Received: by mail.messagingengine.com (Postfix) with ESMTPA for <oauth@ietf.org>; Sun, 14 Jun 2026 06:39:30 -0400 (EDT)
Content-Type: multipart/alternative; boundary="===============1948734773534189789=="
MIME-Version: 1.0
From: Repository Activity Summary Bot <do_not_reply@mnot.net>
To: oauth@ietf.org
Date: Sun, 14 Jun 2026 03:39:30 -0700
Message-ID-Hash: TT6F7BYCU4XOAP4J5W4ICSN4QZ6ETBQW
X-Message-ID-Hash: TT6F7BYCU4XOAP4J5W4ICSN4QZ6ETBQW
X-MailFrom: do_not_reply@mnot.net
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-oauth.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [OAUTH-WG] Weekly github digest (OAuth Activity Summary)
List-Id: OAUTH WG <oauth.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/dVPe5vzvimXg2XXdxHZ2SQnq_Rk>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Owner: <mailto:oauth-owner@ietf.org>
List-Post: <mailto:oauth@ietf.org>
List-Subscribe: <mailto:oauth-join@ietf.org>
List-Unsubscribe: <mailto:oauth-leave@ietf.org>
Events without label "editorial"
Issues
------
* oauth-wg/oauth-sd-jwt-vc (+1/-0/š¬0)
1 issues created:
- what does "Type Metadata MAY be retrieved" mean? (by jogu)
https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/414
* oauth-wg/draft-ietf-oauth-attestation-based-client-auth (+2/-0/š¬7)
2 issues created:
- Draft 9 - Relationship with rfc7521 (by matthieusieben)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/200
- Draft9 - Clarification on DPoP Combined Mode and `dpop_jkt` (by babisRoutis)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/199
3 issues received 7 new comments:
- #198 Draft9 - Clarification on DPoP with "attest_jwt_client_auth" + HAIPv1 (4 by babisRoutis, c2bo, paulbastian)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/198 [ready-for-pr]
- #197 A Clarification on DPoP Access Token (2 by babisRoutis, paulbastian)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/197
- #196 Interim Feedback: Add more explanation/requirements on Client Attester (1 by c2bo)
https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth/issues/196 [ready-for-pr]
* oauth-wg/oauth-identity-assertion-authz-grant (+1/-0/š¬2)
1 issues created:
- Should SAML->RT->ID-JAG flow suggest or require the `email` scope? (by aaronpk)
https://github.com/oauth-wg/oauth-identity-assertion-authz-grant/issues/100
1 issues received 2 new comments:
- #100 Should SAML->RT->ID-JAG flow suggest or require the `email` scope? (2 by aaronpk, mcguinness)
https://github.com/oauth-wg/oauth-identity-assertion-authz-grant/issues/100
* oauth-wg/draft-ietf-oauth-rfc8725bis (+1/-0/š¬0)
1 issues created:
- Replace Replaces (by yaronf)
https://github.com/oauth-wg/draft-ietf-oauth-rfc8725bis/issues/38
* oauth-wg/draft-ietf-oauth-rfc7523bis (+1/-1/š¬2)
1 issues created:
- Replace Replaces (by yaronf)
https://github.com/oauth-wg/draft-ietf-oauth-rfc7523bis/issues/36
1 issues received 2 new comments:
- #36 Replace Replaces (2 by bc-pi, yaronf)
https://github.com/oauth-wg/draft-ietf-oauth-rfc7523bis/issues/36
1 issues closed:
- Replace Replaces https://github.com/oauth-wg/draft-ietf-oauth-rfc7523bis/issues/36
* oauth-wg/oauth-first-party-apps (+0/-0/š¬4)
1 issues received 4 new comments:
- #177 Differentiate actual errors from insufficient authorization by Status Code (4 by camcaine, fkj, mickrau, paulbastian)
https://github.com/oauth-wg/oauth-first-party-apps/issues/177
Pull requests
-------------
* oauth-wg/oauth-sd-jwt-vc (+2/-0/š¬0)
2 pull requests submitted:
- (by awoie)
- (by awoie)
Repositories tracked by this digest:
-----------------------------------
* https://github.com/oauth-wg/oauth-browser-based-apps
* https://github.com/oauth-wg/oauth-identity-chaining
* https://github.com/oauth-wg/oauth-transaction-tokens
* https://github.com/oauth-wg/oauth-sd-jwt-vc
* https://github.com/oauth-wg/draft-ietf-oauth-resource-metadata
* https://github.com/oauth-wg/oauth-cross-device-security
* https://github.com/oauth-wg/oauth-selective-disclosure-jwt
* https://github.com/oauth-wg/oauth-v2-1
* https://github.com/oauth-wg/draft-ietf-oauth-status-list
* https://github.com/oauth-wg/draft-ietf-oauth-attestation-based-client-auth
* https://github.com/oauth-wg/oauth-identity-assertion-authz-grant
* https://github.com/oauth-wg/draft-ietf-oauth-rfc8725bis
* https://github.com/oauth-wg/draft-ietf-oauth-rfc7523bis
* https://github.com/oauth-wg/oauth-first-party-apps
* https://github.com/oauth-wg/draft-ietf-oauth-client-id-metadata-document
--
To have a summary like this sent to your list, see: https://github.com/ietf-github-services/activity-summary
- [OAUTH-WG] Weekly github digest (OAuth Activity Sā¦ Repository Activity Summary Bot