Brad Warren

Ubuntu 24.04 freeze is scheduled for February 29th[[1]](https://discourse.ubuntu.com/t/noble-numbat-release-schedule/35649). If we want a version newer than 2.1.0 frozen in Ubuntu 24.04 for the next 5+ years, we should try to resolve...

starting with our next release, all source code tarballs will be included in our github release along with a SHA256SUMS and SHA256SUMS.asc file using our same signing keys. please let...

thanks for the heads up! poking around https://github.com/cloudflare/python-cloudflare and in particular https://github.com/cloudflare/python-cloudflare/discussions/191#discussion-6462999, it sounds like 2.19.* will receive security fixes for 6 months, after which it will be abandoned. we...

got it. thanks for the additional info :heart: because of that, 3.0 not being out yet, and us having https://github.com/certbot/certbot/pull/9940 which should be merged soon, i'm dropping the priority of...

@adferrand, if and only if you have the time and interest to take a look at this, I'd appreciate you doing so. if not, I can probably start poking at...

after looking at the attached log and https://github.com/AnalogJ/lexicon/blob/v3.17.0/src/lexicon/_private/providers/ovh.py, it doesn't seem to me that certbot is leaking any records at least on that run. that lexicon file contains a number...

Grepping our codebase, it doesn't look like we depend on virtualenv and it's being pulled in as a transitive dependency. After playing with [pipdeptree](https://pypi.org/project/pipdeptree/), this seems to be from poetry...

Hmm. Our snap repos being compromised seems unlikely. The snaps being served from our repositories are the ones we uploaded during our last release a month ago and this has...

I think we should either fix this soon or talk with cryptography devs about when they plan to remove this feature.

We still need to do something here to actually deal with the deprecation and not just silence the warning. I just did the latter in https://github.com/certbot/certbot/pull/9848.