Abhishekmishra2808 commented on PR #608: URL: https://github.com/apache/tooling-trusted-releases/pull/608#issuecomment-3819954355
Hi, @sbp ### PR Update I have addressed all the feedback and performed surgical refactor to align with project conventions: * **Import Compliance**: Refactored to `import email.message as message` and renamed function variables to `msg` to avoid naming conflicts. * **UTC Standards**: Updated the `Date` header to use `usegmt=True` for UTC consistency across servers. * **No Style Churn**: Reverted back to the original `bytes(msg_text, "utf-8")` syntax to keep the diff focused strictly on security logic. * **Lockfile**: Completely reverted `uv.lock` to the project baseline; this PR now contains zero dependency or timestamp changes. * **Technical Justification**: Added a test case (`test_smtp_policy_vs_smtputf8`) demonstrating that standard `SMTP` policy fails with Unicode headers where `SMTPUTF8` succeeds. * **Security Context**: Updated the CRLF injection test recipient to `[email protected]`. The PR is now restricted to exactly 2 files and all tests are passing. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
