[GNAP] Weekly github digest (GNAP Weekly GitHub Activity Summary)
Repository Activity Summary Bot <do_not_reply@mnot.net> Sun, 19 December 2021 09:36 UTC
Return-Path: <do_not_reply@mnot.net>
X-Original-To: txauth@ietfa.amsl.com
Delivered-To: txauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 77AB83A043E for <txauth@ietfa.amsl.com>; Sun, 19 Dec 2021 01:36:01 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.1
X-Spam-Level:
X-Spam-Status: No, score=-2.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=mnot.net header.b=cClKRu8J; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=MCE4nzfm
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FnsY_EdpWnqG for <txauth@ietfa.amsl.com>; Sun, 19 Dec 2021 01:35:55 -0800 (PST)
Received: from wout4-smtp.messagingengine.com (wout4-smtp.messagingengine.com [64.147.123.20]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D987D3A0433 for <txauth@ietf.org>; Sun, 19 Dec 2021 01:35:55 -0800 (PST)
Received: from compute3.internal (compute3.nyi.internal [10.202.2.43]) by mailout.west.internal (Postfix) with ESMTP id D96DE3200AC9 for <txauth@ietf.org>; Sun, 19 Dec 2021 02:39:50 -0500 (EST)
Received: from mailfrontend1 ([10.202.2.162]) by compute3.internal (MEProxy); Sun, 19 Dec 2021 02:39:51 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mnot.net; h= content-type:mime-version:from:to:subject; s=fm1; bh=vkvCTR4M5BQ WXQEgEhYypPASvNcIZFobFUELK/bEzyE=; b=cClKRu8JpynOF5aUIF29rSVliEH 6fEGiCOFOMBrYKlmHp/KhgOnAYjKNOaGxhGfyuqpA3Tf+fjsX/eVkO9Jty39vYlU /z86Ro24sOhn9iVgP8KEO+c/ACyely+TRDd05Qgg4lBQpXk/6AZ+OOgwhZ3N9Wti TbFWddDlRmZJDn8OKImVQS4v4oZDs1Dy6Jk72gsyxtVLSLHvVU95H/cbN13NM19C EICMVHWUuwO7TdToeJdue4sMWITellfU9Ha/b6B4eFl7dmo6VVvLP3IK3zKk09BO Q1Ta2xCr2MjbcWIvtXwT+uc27hNczMEUS4atwPq/3EVHtZ8hWv/rMbmdAKw==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=content-type:from:mime-version:subject:to :x-me-proxy:x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s= fm1; bh=vkvCTR4M5BQWXQEgEhYypPASvNcIZFobFUELK/bEzyE=; b=MCE4nzfm bSKtMfoBXu18MtvOTFGTEQnCubguvih9Ldv0DWGsCNKf8NY+v/Tp4n6fqGJrmy5l xjCy4bLonDQolv7J0PGE9y1pVC8QJMQPvVEawq5WjulmEsCv9PP2uCVeUoZ0x7E3 QStVVcA/gMCnEdAYDJZzJp2BAmaO2MwLJyCf6FSuq+gJ2MLjIrVSqIuTNOrBg+jy NfZnjYFSpcVWxLhgAu57bvfkegIl8xXzubuRXlnDUPlWiXmRoQHFV13mG34EpH7D JKCGIMtM3azSVd7t99JFJazD+g+ZUS7jEhBu/oKa2ytOTlp5+sWkbPg0mUBn1Gq9 Z+o2CJ6zqs/U/Q==
X-ME-Sender: <xms:xuG-YWrtTureZFSdTYJzg9HiAf0Z2h4QAtbeR1Qg7Vc1d9Q5B4zl2A> <xme:xuG-YUpulr7ou0WehIEVOlJqtO2725ObYMylCFmOn51QeAfaNpDJhMPfnN3CfwjrM Mp7AnxrcJltcP5RaA>
X-ME-Received: <xmr:xuG-YbPJuxxtRL02cndNJQ5bfbwLGhVPwW0Zt3LXPnYSJPJKPa-mZVAf0f3kUc9tYcgB97Wc2-N-Ab99hc9qnF5UZ6uC2iFOFLriIbRTmkoFol9HNuDCGUjEwmpzFjVO6zRWEg>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvuddrleelgddutdelucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucfpohcuuggrthgvuchfihgvlhguucdlgeelmdenuc fjughrpegtggfhvffusegrtddtredttdejnecuhfhrohhmpeftvghpohhsihhtohhrhicu tegtthhivhhithihucfuuhhmmhgrrhihuceuohhtuceoughopghnohhtpghrvghplhihse hmnhhothdrnhgvtheqnecuggftrfgrthhtvghrnhepkeefvdduteejvdefkeehieevuefg fefhteetveegffekffefteffvdelheduieetnecuffhomhgrihhnpehgihhthhhusgdrtg homhenucevlhhushhtvghrufhiiigvpeefnecurfgrrhgrmhepmhgrihhlfhhrohhmpegu ohgpnhhothgprhgvphhlhiesmhhnohhtrdhnvght
X-ME-Proxy: <xmx:xuG-YV4fE2MqQrfkNXeA70x0WiCjcZJCb7a2zZ6-Ug3TPkFwvpNOQg> <xmx:xuG-YV6TPghg5DmZpw1oPJZHsw5aYZ0DqBPEmIl9Z1qGWbHi8mwfuw> <xmx:xuG-YVjPmZq7NbxHiYr_tjIVycNDs3fOkAsqT-XAR7dewfQhfuFewg> <xmx:xuG-YVFu-Vj7Hx8PaRPMH1trgqIFsYC8YDHPCa6kNHYc4AkseGWh3g>
Received: by mail.messagingengine.com (Postfix) with ESMTPA for <txauth@ietf.org>; Sun, 19 Dec 2021 02:39:50 -0500 (EST)
Content-Type: multipart/alternative; boundary="===============7680773746209726288=="
MIME-Version: 1.0
From: Repository Activity Summary Bot <do_not_reply@mnot.net>
To: txauth@ietf.org
Message-Id: <20211219093555.D987D3A0433@ietfa.amsl.com>
Date: Sun, 19 Dec 2021 01:35:55 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/txauth/k_HTQQv6JN3cvZBF1jUahml3Duo>
Subject: [GNAP] Weekly github digest (GNAP Weekly GitHub Activity Summary)
X-BeenThere: txauth@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: GNAP <txauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/txauth>, <mailto:txauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/txauth/>
List-Post: <mailto:txauth@ietf.org>
List-Help: <mailto:txauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/txauth>, <mailto:txauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 19 Dec 2021 09:36:02 -0000
Events without label "editorial"
Issues
------
* ietf-wg-gnap/core-protocol (+2/-1/💬19)
2 issues created:
- End user/client instance mix-up attack (by pq2)
https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/364
- Security Consideration: SSRF attacks (by jricher)
https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/363
17 issues received 19 new comments:
- #364 End user/client instance mix-up attack (1 by jricher)
https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/364
- #361 How to ensure that the end-user is present? (2 by jricher)
https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/361
- #350 Cross-User Subject Information (1 by jricher)
https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/350
- #147 rotation of tokens related to Continuation Request? (1 by jricher)
https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/147
- #146 Persistent Grant Identifier (1 by jricher)
https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/146
- #141 Require return of "resources" in token response (2 by jricher)
https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/141
- #135 security assessment of the protocol (1 by jricher)
https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/135
- #134 Guidance for Extensions (1 by jricher)
https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/134
- #131 Generic claim extension mechanism (1 by jricher)
https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/131 [Needs Text]
- #123 Stable URL for “Display of a Short User Code” (1 by jricher)
https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/123
- #109 Modification of content type by attached JWS signature method (1 by jricher)
https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/109
- #105 Rotation of bound client keys (1 by jricher)
https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/105
- #104 Token presentation headers (1 by jricher)
https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/104
- #103 Rotating the token's bound key (1 by jricher)
https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/103
- #102 Require inclusion of token management URI in rotation response (1 by jricher)
https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/102
- #101 Invalidating previous access tokens during rotation (1 by jricher)
https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/101
- #14 Split Tokens (1 by jricher)
https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/14
1 issues closed:
- Unicode In Document https://github.com/ietf-wg-gnap/gnap-core-protocol/issues/352 [Editorial]
Pull requests
-------------
* ietf-wg-gnap/core-protocol (+1/-2/💬4)
1 pull requests submitted:
- expand section on key references (by aaronpk)
https://github.com/ietf-wg-gnap/gnap-core-protocol/pull/362
2 pull requests received 4 new comments:
- #362 expand section on key references (1 by netlify)
https://github.com/ietf-wg-gnap/gnap-core-protocol/pull/362
- #357 Consistent use of "end-user" instead of "end user" (3 by fimbault, pq2)
https://github.com/ietf-wg-gnap/gnap-core-protocol/pull/357 [Editorial]
2 pull requests merged:
- Update Unicode Handling
https://github.com/ietf-wg-gnap/gnap-core-protocol/pull/359 [Editorial]
- Some editorial changes
https://github.com/ietf-wg-gnap/gnap-core-protocol/pull/358 [Editorial]
Repositories tracked by this digest:
-----------------------------------
* https://github.com/ietf-wg-gnap/core-protocol
* https://github.com/ietf-wg-gnap/gnap-resource-servers
- [GNAP] Weekly github digest (GNAP Weekly GitHub A… Repository Activity Summary Bot