)]}'
{"/PATCHSET_LEVEL":[{"author":{"_account_id":11655,"name":"Julia Kreger","email":"juliaashleykreger@gmail.com","username":"jkreger","status":"Flying to the moon with a Jetpack!"},"change_message_id":"31c6f7da79f7c8dd0447b36c4ab01315eec051ba","unresolved":false,"context_lines":[],"source_content_type":"","patch_set":7,"id":"e1556d81_adf67316","updated":"2026-06-05 14:00:59.000000000","message":"LGTM, just needs the patch links.","commit_id":"068300ded73793cc4f869ebbb47d8680615eb5e5"}],"security-notes/OSSN-0099":[{"author":{"_account_id":10342,"name":"Jay Faulkner","display_name":"JayF","email":"jay@jvf.cc","username":"JayF","status":"youtube.com/@oss-gr / podcast.gr-oss.io"},"change_message_id":"b3ed474a0064891146be290a24aa59e46033bf10","unresolved":true,"context_lines":[{"line_number":26,"context_line":"the introspection data endpoint had no control to disable it\u0027s availability"},{"line_number":27,"context_line":"by the API service, and is introducing a new"},{"line_number":28,"context_line":"``[api]allow_continue_inspection`` configuration to bring the ramdisk"},{"line_number":29,"context_line":"endpoint configuration into parity across the service."},{"line_number":30,"context_line":""},{"line_number":31,"context_line":"### Recommended Actions ###"},{"line_number":32,"context_line":"Apply the provided Ironic patches."}],"source_content_type":"application/octet-stream","patch_set":2,"id":"f286ded2_3ae8e183","line":29,"updated":"2026-06-04 19:49:19.000000000","message":"I currently have review feedback on the proposed fix, confused about what the other ramdisk endpoint CONF options are. I was going to mention them below in the section talking about allow_continue_inspection in recommended actions. If they don\u0027t exist, it\u0027s not clear to me we should add one here. It\u0027s more likely I just couldn\u0027t find them /o\\","commit_id":"01bda4d6c97cc6ec3b478c9b8040dbf4bab806ab"},{"author":{"_account_id":10342,"name":"Jay Faulkner","display_name":"JayF","email":"jay@jvf.cc","username":"JayF","status":"youtube.com/@oss-gr / podcast.gr-oss.io"},"change_message_id":"d8f40e4befea051b5cad3760e6c2717541846701","unresolved":false,"context_lines":[{"line_number":26,"context_line":"the introspection data endpoint had no control to disable it\u0027s availability"},{"line_number":27,"context_line":"by the API service, and is introducing a new"},{"line_number":28,"context_line":"``[api]allow_continue_inspection`` configuration to bring the ramdisk"},{"line_number":29,"context_line":"endpoint configuration into parity across the service."},{"line_number":30,"context_line":""},{"line_number":31,"context_line":"### Recommended Actions ###"},{"line_number":32,"context_line":"Apply the provided Ironic patches."}],"source_content_type":"application/octet-stream","patch_set":2,"id":"ba4bbc26_d8ddff14","line":29,"in_reply_to":"f286ded2_3ae8e183","updated":"2026-06-04 21:04:46.000000000","message":"Done","commit_id":"01bda4d6c97cc6ec3b478c9b8040dbf4bab806ab"},{"author":{"_account_id":16643,"name":"Goutham Pacha Ravi","email":"gouthampravi@gmail.com","username":"gouthamr"},"change_message_id":"ee18e103a987aaa22f61a3ab2179782e33a1692a","unresolved":true,"context_lines":[{"line_number":19,"context_line":"based upon the intended patterns of interaction with Ironic."},{"line_number":20,"context_line":""},{"line_number":21,"context_line":"An operator can workaround this issue by increasing the process stack size"},{"line_number":22,"context_line":"to the default value of ``8388608`` utilizing the"},{"line_number":23,"context_line":"``IRONIC_THREAD_STACK_SIZE`` environment variable."},{"line_number":24,"context_line":""},{"line_number":25,"context_line":"### Recommended Actions ###"}],"source_content_type":"application/octet-stream","patch_set":6,"id":"d9bbec13_93d56ad3","line":22,"range":{"start_line":22,"start_character":7,"end_line":22,"end_character":14},"updated":"2026-06-04 20:45:46.000000000","message":"python default?","commit_id":"05622f5a9239e794c85ec26370b92825ef5e4952"},{"author":{"_account_id":10342,"name":"Jay Faulkner","display_name":"JayF","email":"jay@jvf.cc","username":"JayF","status":"youtube.com/@oss-gr / podcast.gr-oss.io"},"change_message_id":"d8f40e4befea051b5cad3760e6c2717541846701","unresolved":false,"context_lines":[{"line_number":19,"context_line":"based upon the intended patterns of interaction with Ironic."},{"line_number":20,"context_line":""},{"line_number":21,"context_line":"An operator can workaround this issue by increasing the process stack size"},{"line_number":22,"context_line":"to the default value of ``8388608`` utilizing the"},{"line_number":23,"context_line":"``IRONIC_THREAD_STACK_SIZE`` environment variable."},{"line_number":24,"context_line":""},{"line_number":25,"context_line":"### Recommended Actions ###"}],"source_content_type":"application/octet-stream","patch_set":6,"id":"623aae4a_b7d3e5ff","line":22,"range":{"start_line":22,"start_character":7,"end_line":22,"end_character":14},"in_reply_to":"d9bbec13_93d56ad3","updated":"2026-06-04 21:04:46.000000000","message":"this section was an unintentional dupe anyway","commit_id":"05622f5a9239e794c85ec26370b92825ef5e4952"},{"author":{"_account_id":16643,"name":"Goutham Pacha Ravi","email":"gouthampravi@gmail.com","username":"gouthamr"},"change_message_id":"ee18e103a987aaa22f61a3ab2179782e33a1692a","unresolved":false,"context_lines":[{"line_number":20,"context_line":""},{"line_number":21,"context_line":"An operator can workaround this issue by increasing the process stack size"},{"line_number":22,"context_line":"to the default value of ``8388608`` utilizing the"},{"line_number":23,"context_line":"``IRONIC_THREAD_STACK_SIZE`` environment variable."},{"line_number":24,"context_line":""},{"line_number":25,"context_line":"### Recommended Actions ###"},{"line_number":26,"context_line":"Apply the provided Ironic patches."}],"source_content_type":"application/octet-stream","patch_set":6,"id":"4d423ead_d9bc050a","line":23,"range":{"start_line":23,"start_character":0,"end_line":23,"end_character":50},"updated":"2026-06-04 20:45:46.000000000","message":"note: This isn\u0027t always easy to do given how differently this software gets deployed..","commit_id":"05622f5a9239e794c85ec26370b92825ef5e4952"},{"author":{"_account_id":10342,"name":"Jay Faulkner","display_name":"JayF","email":"jay@jvf.cc","username":"JayF","status":"youtube.com/@oss-gr / podcast.gr-oss.io"},"change_message_id":"d8f40e4befea051b5cad3760e6c2717541846701","unresolved":false,"context_lines":[{"line_number":20,"context_line":""},{"line_number":21,"context_line":"An operator can workaround this issue by increasing the process stack size"},{"line_number":22,"context_line":"to the default value of ``8388608`` utilizing the"},{"line_number":23,"context_line":"``IRONIC_THREAD_STACK_SIZE`` environment variable."},{"line_number":24,"context_line":""},{"line_number":25,"context_line":"### Recommended Actions ###"},{"line_number":26,"context_line":"Apply the provided Ironic patches."}],"source_content_type":"application/octet-stream","patch_set":6,"id":"1f2ba388_e7f997da","line":23,"range":{"start_line":23,"start_character":0,"end_line":23,"end_character":50},"in_reply_to":"4d423ead_d9bc050a","updated":"2026-06-04 21:04:46.000000000","message":"Yep, but you can\u0027t use real config for this for technical reasons.","commit_id":"05622f5a9239e794c85ec26370b92825ef5e4952"},{"author":{"_account_id":11655,"name":"Julia Kreger","email":"juliaashleykreger@gmail.com","username":"jkreger","status":"Flying to the moon with a Jetpack!"},"change_message_id":"31c6f7da79f7c8dd0447b36c4ab01315eec051ba","unresolved":true,"context_lines":[{"line_number":52,"context_line":"2026.1/gaspacho: https://review.opendev.org/c/openstack/ironic/+/xxxxxx"},{"line_number":53,"context_line":"2025.2/flamingo: https://review.opendev.org/c/openstack/ironic/+/xxxxxx"},{"line_number":54,"context_line":"bugfix/34.0: https://review.opendev.org/c/openstack/ironic/+/xxxxxx"},{"line_number":55,"context_line":"bugfix/33.0: https://review.opendev.org/c/openstack/ironic/+/xxxxxx"},{"line_number":56,"context_line":""},{"line_number":57,"context_line":"### Credits ###"},{"line_number":58,"context_line":"Dmitry Tantsur, Red Hat"}],"source_content_type":"application/octet-stream","patch_set":7,"id":"43a3e986_04a15f19","line":55,"updated":"2026-06-05 14:00:59.000000000","message":"These are all posted now. \nhttps://review.opendev.org/q/I09d67857fc90b1eab4ccf786a984c1a16e7d32a7","commit_id":"068300ded73793cc4f869ebbb47d8680615eb5e5"},{"author":{"_account_id":15197,"name":"Pierre Riteau","email":"pierre@stackhpc.com","username":"priteau","status":"StackHPC"},"change_message_id":"77efe2b900cff0e51924d0450e49a340027373da","unresolved":true,"context_lines":[{"line_number":4,"context_line":"### Summary ###"},{"line_number":5,"context_line":"An unauthenticated malicious user could submit a specially crafted"},{"line_number":6,"context_line":"JSON string to certain endpoints on the API service or the JSON-RPC"},{"line_number":7,"context_line":"endpoint if enabled, and effect a service crash until the service is"},{"line_number":8,"context_line":"restarted. This was due to the memory allocation exceeding the stack"},{"line_number":9,"context_line":"size of the Python runtime due to Ironic\u0027s reduced default stack size"},{"line_number":10,"context_line":"prior to the initial payload validation."}],"source_content_type":"application/octet-stream","patch_set":8,"id":"38496d13_7ba4e3e4","line":7,"range":{"start_line":7,"start_character":25,"end_line":7,"end_character":31},"updated":"2026-06-05 14:36:01.000000000","message":"```suggestion\nendpoint if enabled, and cause a service crash until the service is\n```","commit_id":"95c98a806ae125b31a858d2e208774068d37a433"},{"author":{"_account_id":10342,"name":"Jay Faulkner","display_name":"JayF","email":"jay@jvf.cc","username":"JayF","status":"youtube.com/@oss-gr / podcast.gr-oss.io"},"change_message_id":"baa23e6f982c654975f926c930d1b60344ca3be8","unresolved":false,"context_lines":[{"line_number":4,"context_line":"### Summary ###"},{"line_number":5,"context_line":"An unauthenticated malicious user could submit a specially crafted"},{"line_number":6,"context_line":"JSON string to certain endpoints on the API service or the JSON-RPC"},{"line_number":7,"context_line":"endpoint if enabled, and effect a service crash until the service is"},{"line_number":8,"context_line":"restarted. This was due to the memory allocation exceeding the stack"},{"line_number":9,"context_line":"size of the Python runtime due to Ironic\u0027s reduced default stack size"},{"line_number":10,"context_line":"prior to the initial payload validation."}],"source_content_type":"application/octet-stream","patch_set":8,"id":"ec0ad66d_7563bc99","line":7,"range":{"start_line":7,"start_character":25,"end_line":7,"end_character":31},"in_reply_to":"38496d13_7ba4e3e4","updated":"2026-06-05 14:39:49.000000000","message":"Done","commit_id":"95c98a806ae125b31a858d2e208774068d37a433"},{"author":{"_account_id":10239,"name":"Dmitry Tantsur","email":"dtantsur@protonmail.com","username":"dtantsur"},"change_message_id":"b7d6719d324ab16f62519bcfecbba0477bf13c5b","unresolved":true,"context_lines":[{"line_number":5,"context_line":"An unauthenticated malicious user could submit a specially crafted"},{"line_number":6,"context_line":"JSON string to certain endpoints on the API service or the JSON-RPC"},{"line_number":7,"context_line":"endpoint if enabled, and cause a service crash until the service is"},{"line_number":8,"context_line":"restarted. This was due to the memory allocation exceeding the stack"},{"line_number":9,"context_line":"size of the Python runtime due to Ironic\u0027s reduced default stack size"},{"line_number":10,"context_line":"prior to the initial payload validation."},{"line_number":11,"context_line":""}],"source_content_type":"application/octet-stream","patch_set":9,"id":"8d76fadb_87c23534","line":8,"updated":"2026-06-05 14:58:53.000000000","message":"nit: in my experience it\u0027s restarted automatically, although it may depends on the exact deployment method","commit_id":"be26bcec374ef1ecb8f5327ee763617b12d43f26"},{"author":{"_account_id":10342,"name":"Jay Faulkner","display_name":"JayF","email":"jay@jvf.cc","username":"JayF","status":"youtube.com/@oss-gr / podcast.gr-oss.io"},"change_message_id":"0cb3a9f1a6041f90aee09bcc0ad88b0e6db18ac3","unresolved":true,"context_lines":[{"line_number":5,"context_line":"An unauthenticated malicious user could submit a specially crafted"},{"line_number":6,"context_line":"JSON string to certain endpoints on the API service or the JSON-RPC"},{"line_number":7,"context_line":"endpoint if enabled, and cause a service crash until the service is"},{"line_number":8,"context_line":"restarted. This was due to the memory allocation exceeding the stack"},{"line_number":9,"context_line":"size of the Python runtime due to Ironic\u0027s reduced default stack size"},{"line_number":10,"context_line":"prior to the initial payload validation."},{"line_number":11,"context_line":""}],"source_content_type":"application/octet-stream","patch_set":9,"id":"a8210897_16cff37c","line":8,"in_reply_to":"8d76fadb_87c23534","updated":"2026-06-05 16:25:48.000000000","message":"Yeah, it\u0027s an implementation detail I\u0027m leaving to the operator.","commit_id":"be26bcec374ef1ecb8f5327ee763617b12d43f26"},{"author":{"_account_id":5263,"name":"Jeremy Stanley","display_name":"fungi","email":"fungi@yuggoth.org","username":"fungi","status":"missing, presumed fed"},"change_message_id":"e37973e54aa562d6a01a38ebfdc0a63a52d5760b","unresolved":false,"context_lines":[{"line_number":49,"context_line":"The following reviews contain the fix for this issue:"},{"line_number":50,"context_line":""},{"line_number":51,"context_line":"2026.2/hibiscus (master): https://review.opendev.org/c/openstack/ironic/+/991717"},{"line_number":52,"context_line":"2026.1/gaspacho: https://review.opendev.org/c/openstack/ironic/+/991854"},{"line_number":53,"context_line":"2025.2/flamingo: https://review.opendev.org/c/openstack/ironic/+/991858"},{"line_number":54,"context_line":"bugfix/34.0: https://review.opendev.org/c/openstack/ironic/+/991856"},{"line_number":55,"context_line":"bugfix/33.0: https://review.opendev.org/c/openstack/ironic/+/991857"}],"source_content_type":"application/octet-stream","patch_set":9,"id":"7a5e91cf_94ac9135","line":52,"updated":"2026-06-05 14:49:27.000000000","message":"Nit: Gazpacho is spelled with a Z.","commit_id":"be26bcec374ef1ecb8f5327ee763617b12d43f26"}]}