Use https for links where available #31145

rebecca-palmer · 2020-01-20T07:57:35Z

As some of our links are suggestions to install add-on software, insecure links potentially allow an attacker to replace this with their malware.

During the process of writing this, I also found and fixed some broken or semi-broken (e.g. redirected to the top level instead of the page we want) links.

The following (already) broken links remain:
http://nipunbatra.github.io/2015/06/timeseries/ + others from this site
http://collaboration.cmc.ec.gc.ca/science/rpn/biblio/ddj/Website/articles/CUJ/1992/9210/ross/ross.htm
http://mysite.verizon.net/aesir_research/date/jdalg2.htm

pep8speaks · 2020-01-20T07:57:54Z

Hello @rebecca-palmer! Thanks for updating this PR. We checked the lines you've touched for PEP 8 issues, and found:

There are currently no PEP 8 issues detected in this Pull Request. Cheers! 🍻

Comment last updated at 2020-01-21 23:00:06 UTC

jreback · 2020-01-20T15:21:21Z

can you rebase on master.

also if you can add a code_checks for this as well (can be a followup too)

rebecca-palmer · 2020-01-20T20:50:18Z

ci/code_checks.sh looks like it checks everything (not just new changes), so while it would be easy to add "http://" to its banned patterns list, that would fail as long as we have any http links. As some of our existing links (the ones I didn't convert) don't work over https, this is probably not a good idea.

The PEP8 issue isn't new, and involves a link that is >80char by itself.

ShaharNaveh · 2020-01-21T22:30:45Z

ci/code_checks.sh looks like it checks everything (not just new changes), so while it would be easy to add "http://" to its banned patterns list, that would fail as long as we have any http links. As some of our existing links (the ones I didn't convert) don't work over https, this is probably not a good idea.

The PEP8 issue isn't new, and involves a link that is >80char by itself.

@rebecca-palmer I think that appending # noqa should do the trick despite the fact that it's inside a comment, so it will look kida like this:

# <comments> <comments>
# <VERY_LARGE_URL> # noqa
# <more comments> <more comments>

WillAyd

lgtm @jreback

jreback · 2020-01-24T03:55:12Z

thanks !

Also fix some (semi-)broken links found while checking https availability. Author: Rebecca N. Palmer <[email protected]> Forwarded: accepted for 1.1 pandas-dev/pandas#31145 Gbp-Pq: Name link_security.patch

rebecca-palmer added 3 commits January 19, 2020 11:33

DOC: Use https for links where possible

88a423e

DOC: Fix possibly broken or suboptimally redirected links

4981181

formatting fixup

4aa7f4f

jreback added the Docs label Jan 20, 2020

Merge branch 'master' into httpslinks and fix conflict

f6edcb3

silence linter error

eccd211

WillAyd approved these changes Jan 21, 2020

View reviewed changes

jreback added this to the 1.1 milestone Jan 24, 2020

jreback merged commit 2dadd0f into pandas-dev:master Jan 24, 2020

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Use https for links where available #31145

Use https for links where available #31145

rebecca-palmer commented Jan 20, 2020

pep8speaks commented Jan 20, 2020 •

edited

Loading

jreback commented Jan 20, 2020

rebecca-palmer commented Jan 20, 2020

ShaharNaveh commented Jan 21, 2020

WillAyd left a comment

jreback commented Jan 24, 2020

Use https for links where available #31145

Use https for links where available #31145

Conversation

rebecca-palmer commented Jan 20, 2020

pep8speaks commented Jan 20, 2020 • edited Loading

Comment last updated at 2020-01-21 23:00:06 UTC

jreback commented Jan 20, 2020

rebecca-palmer commented Jan 20, 2020

ShaharNaveh commented Jan 21, 2020

WillAyd left a comment

Choose a reason for hiding this comment

jreback commented Jan 24, 2020

pep8speaks commented Jan 20, 2020 •

edited

Loading