Purl Encoding/Decoding bug

As per [purl specification](https://github.com/package-url/purl-spec/blob/master/PURL-SPECIFICATION.rst#a-purl-is-a-url),  purl URL should conform to the URL definitions or specifications of [rfc3986](https://tools.ietf.org/html/rfc3986). Current implementation uses `WebUtility.UrlEncode()` and `WebUtility.UrlDecode()` which does not follow [rfc3986](https://tools.ietf.org/html/rfc3986) specification.
Example - 
```c#
PackageURL purl = new PackageURL("docker", "ruby advisory db check");
Console.WriteLine(purl.ToString());
// This code produces the following output:
// pkg:docker/ruby+advisory+db+check
```
As here we can see the [WebUtility.UrlEncode()](https://learn.microsoft.com/en-us/dotnet/api/system.net.webutility.urlencode?view=net-8.0#remarks) encodes spaces as `+` but as per [rfc3986](https://tools.ietf.org/html/rfc3986) it should be encoded as `%20`. If we look other implementations of purl ([JAVA](https://github.com/package-url/packageurl-java), [JS](https://github.com/package-url/packageurl-js)) those implementations encode spaces as `%20`. There's incompatibility with other implementations when they decode purl encoded by this dotnet implementation. 

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Purl Encoding/Decoding bug #29

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Purl Encoding/Decoding bug #29

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions