Marubucin mitmproxy, kayan aiki don nazarin zirga-zirgar HTTP/HTTPS, ya ja hankali ga bayyanar cokali mai yatsu na aikin sa a cikin PyPI (Python Package Index) directory na fakitin Python. An rarraba cokali mai yatsa a ƙarƙashin sunan mai kama da mitmproxy2 da nau'in 8.0.1 wanda ba shi da shi (mitmproxy 7.0.4 saki na yanzu) tare da tsammanin cewa masu amfani da rashin kulawa za su fahimci kunshin a matsayin sabon bugu na babban aikin (nau'in nau'in) kuma za su so. don gwada sabon sigar.
A cikin abun da ke ciki, mitmproxy2 yayi kama da mitmproxy, ban da canje-canje tare da aiwatar da ayyukan mugunta. Canje-canjen sun haɗa da tsayawa saitin taken HTTP “X-Frame-Options: DENY”, wanda ke hana sarrafa abun ciki a cikin iframe, hana kariya daga hare-haren XSRF da saita taken “Samar-Samar-Ba da izinin Asalin: *”, "Samar-Ikon- Izinin-Kasuwanci: *" da "Samar-Ikon-Ba da izinin-Hanyoyin: POST, SAMU, SHAFE, ZABI".
Waɗannan canje-canje sun cire hani kan samun damar HTTP API ɗin da aka yi amfani da su don sarrafa mitmproxy ta hanyar Intanet, wanda ya ba duk wani maharin da ke kan hanyar sadarwar gida ɗaya damar tsara aiwatar da lambar su akan tsarin mai amfani ta hanyar aika buƙatun HTTP.
Hukumar gudanarwar ta amince da cewa za a iya fassara canje-canjen da aka yi a matsayin ƙeta, kuma kunshin kanta a matsayin yunƙuri na haɓaka wani samfuri a ƙarƙashin sunan babban aikin (bayanin fakitin ya bayyana cewa wannan sabon sigar mitmproxy ne, ba cokali mai yatsa). Bayan cire kunshin daga cikin kasidar, washegari wani sabon kunshin, mitmproxy-iframe, an buga zuwa PyPI, bayanin wanda shima ya yi daidai da kunshin hukuma. Kunshin mitmproxy-iframe shima yanzu an cire shi daga kundin adireshin PyPI.
source: budenet.ru