Django Fellow Report - Jacob - 2026

Django Internals
14

Week ending 2026-04-05 (Week 14)

In addition to advancing work on pending security issues, this week I reviewed some improvements around accessibility and performance.

Triaged
#37009 (Filter action icons in the admin changelist are slightly misaligned vertically) – Django accepted
#37012 (Improve punctuation and sentence clarity in templates documentation) – Django wontfix
#37021 (Add a helper function to return the permission string representation to be used with `user.has_perm()`) – Django accepted
Reviewed
Fixed #20024 -- Fixed handling of __in lookups with None in exclude(). by Eddy-123 · Pull Request #20027 · django/django · GitHub
Fixed #24800 -- Added logging for applied and unapplied migrations. by forwardyoung · Pull Request #20064 · django/django · GitHub
Fixed #27825 -- Document that model instances may not cast field values to the same type returned by the database. by AaravBot · Pull Request #20885 · django/django · GitHub
Fixed #35870 -- Made blank choice label in forms more accessible. by annalauraw · Pull Request #20848 · django/django · GitHub
Fixed #37004 -- Used QuerySet.totally_ordered in BaseModelFormSet.get_queryset() for stable ordering. by rodbv · Pull Request #21036 · django/django · GitHub
Run tests in postgis container by smithdc1 · Pull Request #20746 · django/django · GitHub
Added section for respecting maintainer time to the security policy. by nessita · Pull Request #21033 · django/django · GitHub
https://github.com/django/django/pull/20938
fixing issue #36813 by MehrazRumman · Pull Request #20439 · django/django · GitHub
Fixed #36553 -- Improved semantic structure of admin widgets. by Antoliny0919 · Pull Request #19735 · django/django · GitHub
Fixed #36973 -- Made fields.E348 detect accessor and manager name clashes for relationships across different models. by cliffordgama · Pull Request #20889 · django/django · GitHub
Fixed #37016 -- Avoided propagating invalid arguments from When() to Q(). by varunkasyap · Pull Request #21046 · django/django · GitHub
Fixed #36949 -- Improved RelatedFieldWidgetWrapper <labels>. by smithdc1 · Pull Request #21035 · django/django · GitHub
Fixed #36459 -- Added Aria labels to the buttons inside the AdminDate Widget. by Skyiesac · Pull Request #20913 · django/django · GitHub
Refs #35440 -- Optimized `parse_header_parameters` for common cases. by p-r-a-v-i-n · Pull Request #20532 · django/django · GitHub
Refs #36949 -- Removed hardcoded pks in modeladmin tests. by timgraham · Pull Request #21050 · django/django · GitHub
Authored
Refs #36770 -- Guarded against an endless wait in LiveServerThread.terminate(). by jacobtylerwalls · Pull Request #21029 · django/django · GitHub
Refs #36926 -- Added release note for boolean icons for related fields in list_display. by jacobtylerwalls · Pull Request #21030 · django/django · GitHub
[5.2.x] Bumped black to 26.3.1. by jacobtylerwalls · Pull Request #21032 · django/django · GitHub
#37013 (Omitting tzinfo argument to Trunc & Extract with USE_TZ = True and TIME_ZONE != UTC creates ambiguity for migrations) – Django
#37014 (SQLite emulation of db_default involving Extract/Trunc might unexpectedly apply overridden timezone for inserted values) – Django
Checklists: Sorting by CVE number is alphabetical, not numeric · Issue #2577 · django/djangoproject.com · GitHub
Fixed #36862 -- Doc'd the need for a proxy when deploying RemoteUserMiddleware under ASGI. by jacobtylerwalls · Pull Request #21043 · django/django · GitHub
Fixed #37017 -- Fixed setting or clearing of request.user after alogin()/alogout(). by jacobtylerwalls · Pull Request #21045 · django/django · GitHub
Refs #36862 -- Reiterated security note on both variants of RemoteUserMiddleware. by jacobtylerwalls · Pull Request #21047 · django/django · GitHub
#37019 (Make sync login() and logout() set request.auser if present) – Django
#37020 (Adjust release instructions to stop editing *.po files fetched from Transifex) – Django
Fixed #37020 -- Removed guidance to edit fetched .po files by hand. by jacobtylerwalls · Pull Request #21048 · django/django · GitHub
Discussed
#36912 (Q.create() doesn't validate connectors as Q.__init__() does) – Django
Misc
Engaged in security reports
Fellows weekly sync
Sent prenotifications for April security release
Sent a last-six-months rundown memo to Sarah
Added members to T&R team
3 Likes