bpo-9216: hashlib usedforsecurity fixes by tiran · Pull Request #20258 · python/cpython (original) (raw)

A user reading this shouldn't need to be aware of the internal implementation details behind the Python hashlib "usedforsecurity" construct. I'd just simplify this news entry:

func:`hashlib.new` now passes the ``usedforsecurity`` flag to the internal OpenSSL hash constructors.

and probably omit the final "test_hashlib and test_smtplib handle strict security policy better." part entirely as we don't need a NEWS entry to mention updates to our internal test suite. (though it is harmless to do so)