Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Set black to 24.3.0 #167

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Set black to 24.3.0 #167

wants to merge 1 commit into from

Conversation

fabaff
Copy link

@fabaff fabaff commented Apr 4, 2024

Just to be sure not to be affected by CVE-2024-21503

Just to be sure not to be affected by CVE-2024-21503
@dimaqq
Copy link
Contributor

dimaqq commented Apr 4, 2024

Exploiting this vulnerability is possible when running Black on untrusted input, or if you habitually put thousands of leading tab characters in your docstrings.

🤣

@ojii
Copy link
Contributor

ojii commented Apr 4, 2024

how is this relevant? we run black on our own code, not untrusted input. it's not part of the actual package and only used in development.

also, if I were to touch how we do code-formatting, I'd just switch to ruff.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants