Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

URI and the percent-encoding #176

Closed
bortzmeyer opened this issue Dec 12, 2019 · 1 comment
Closed

URI and the percent-encoding #176

bortzmeyer opened this issue Dec 12, 2019 · 1 comment
Labels
➡ Contact: ▶️ spec

Comments

@bortzmeyer
Copy link

(This is related to #62 )

Since contact needs to be an URI (RFC 3986), some characters MAY be percent-encoded and some MUST be.

It goes without saying but the draft does not emphasize it. This may lead to bug for instance I created a security.txt file with:

Contact: mailto:stephane%2Bsecurity@bortzmeyer.org

And Shodan, for instance, does not display it correctly (it displays the %2B instead of a +).

True, I was not forced to percent-escape the +. But I believe my security.txt is still legal. May be add a strong warning in the draft "URI MAY BE PERCENT-ENCODED!"?
@nightwatchcyber nightwatchcyber mentioned this issue Dec 31, 2019
Merged
@nightwatchcyber
Copy link
Contributor

Addressed in the -09 draft

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
➡ Contact: ▶️ spec
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@bortzmeyer @nightwatchcyber @EdOverflow