Miss Islington (bot) f48a96a280 [3.10] [3.11] gh-102153: Start stripping C0 control and space chars in urlsplit (GH-102508) (GH-104575) (#104592) ... gh-102153: Start stripping C0 control and space chars in `urlsplit` (GH-102508) `urllib.parse.urlsplit` has already been respecting the WHATWG spec a bit GH-25595. This adds more sanitizing to respect the "Remove any leading C0 control or space from input" [rule](https://url.spec.whatwg.org/GH-url-parsing:~:text=Remove%20any%20leading%20and%20trailing%20C0%20control%20or%20space%20from%20input.) in response to [CVE-2023-24329](https://nvd.nist.gov/vuln/detail/CVE-2023-24329). I simplified the docs by eliding the state of the world explanatory paragraph in this security release only backport. (people will see that in the mainline /3/ docs) --------- (cherry picked from commit 2f630e1ce1) (cherry picked from commit 610cc0ab1b) Co-authored-by: Miss Islington (bot) <31488909+miss-islington@users.noreply.github.com> Co-authored-by: Illia Volochii <illia.volochii@gmail.com> Co-authored-by: Gregory P. Smith [Google] <greg@krypto.org>		2023-05-17 16:06:06 -07:00
..
__init__.py
error.py	[3.10] gh-101936: Update the default value of fp from io.StringIO to io.BytesIO (gh-102100) (#102118)	2023-02-22 20:42:28 +09:00
parse.py	[3.10] [3.11] gh-102153: Start stripping C0 control and space chars in urlsplit (GH-102508) (GH-104575) (#104592)	2023-05-17 16:06:06 -07:00
request.py	[3.10] bpo-43564: preserve original exception in args of FTP URLError (GH-24938) (#98138)	2022-10-09 23:36:51 -07:00
response.py	bpo-12707: deprecate info(), geturl(), getcode() methods in favor of headers, url, and status properties for HTTPResponse and addinfourl (GH-11447)	2019-09-13 12:40:07 +01:00
robotparser.py	bpo-35922: Fix RobotFileParser when robots.txt has no relevant crawl delay or request rate (GH-11791)	2019-06-16 09:48:57 +03:00