Skip to content

python-3.13: cherry-pick proposed change to block blake2 #36503

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Dec 12, 2024
Merged

python-3.13: cherry-pick proposed change to block blake2 #36503

merged 1 commit into from
Dec 12, 2024

Conversation

xnox
Copy link
Member

@xnox xnox commented Dec 12, 2024
edited
Loading

@octo-sts Octo STS

This comment was marked as resolved.

Sign in to view
@xnox
python-3.13: cherry-pick proposed change to block blake2
91c52c5 
With these changes, blake will not be available in FIPS mode unless
usedforsecurity=False.

Also see:
- python/cpython#127301
- python/cpython#127298
@octo-sts octo-sts bot added the bincapz/pass bincapz/pass Bincapz (aka. malcontent) scan didn't detect any CRITICALs on the scanned packages. label Dec 12, 2024
@xnox xnox marked this pull request as ready for review December 12, 2024 11:56
@xnox xnox merged commit 21c2bdd into wolfi-dev:main Dec 12, 2024
10 checks passed
@techalchemy techalchemy mentioned this pull request Apr 28, 2025
Merged
techalchemy added a commit to techalchemy/os that referenced this pull request Apr 28, 2025
@techalchemy
fix python fips detection and blocking of blake2
c575006 
- fixes chainguard-dev/internal-dev/wolfi-dev#11886
- backports from wolfi-dev#36503 (see python/cpython#127301)

Signed-off-by: Dan Ryan <[email protected]>
techalchemy added a commit to techalchemy/os that referenced this pull request Apr 28, 2025
@techalchemy
fix python fips detection and blocking of blake2
6e48613 
- fixes chainguard-dev/internal-dev#11886
- backports from wolfi-dev#36503 (see python/cpython#127301)

Signed-off-by: Dan Ryan <[email protected]>
techalchemy added a commit to techalchemy/os that referenced this pull request Apr 29, 2025
@techalchemy
fix python fips detection and blocking of blake2
59a0f9f 
- fixes chainguard-dev/internal-dev#11886
- backports from wolfi-dev#36503 (see python/cpython#127301)

Signed-off-by: Dan Ryan <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@smoser smoser smoser approved these changes

Assignees
No one assigned
Labels
bincapz/pass bincapz/pass Bincapz (aka. malcontent) scan didn't detect any CRITICALs on the scanned packages.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@xnox @smoser