-
## CVE-2024-22195 - Medium Severity Vulnerability
Vulnerable Library - Jinja2-2.11.3-py2.py3-none-any.whl
A very fast and expressive template engine.
Library home page: https://files.pythonhosted.or…
-
### Bug description
I've tried to implement a login workflow with the REST API and I encountered some difficulties with the endpoints ending with a trailing `/`.
### A bit of context
The first en…
-
This project is currently unmaintained, and we don't expect to dedicate resources to it from now on, as our API development is moving out of Flask. So, we are in search of somebody that can take on th…
-
**Description: Inefficient Algorithmic Complexity**
Info: https://security.snyk.io/vuln/SNYK-PYTHON-WERKZEUG-6035177
Introduced through: flask@2.2.5
From: flask@2.2.5 > werkzeug@2.2.3
any …
-
# Flask-Login
Flask-Login is a Flask extension that provides user session management and authentication support for Flask applications. It simplifies the process of managing user sessions, handling…
-
https://airflow.apache.org/docs/apache-airflow/stable/security/webserver.html#web-authentication
https://flask-appbuilder.readthedocs.io/en/latest/security.html
## Issue checklist
This is…
-
In `start.sh`, export FLASK_ENV=development
Security vulnerabilities:
Debug mode exposes sensitive information about your application, including stack traces and environment variables.
It allow…
cl117 updated
2 months ago
-
**Is your feature request related to a problem? Please describe.**
Flask sessions are not encrypted, only signed/HMAC'd. This leaks user counts.
**Describe the solution you'd like**
Ideally b…
-
We should server the robot, sitemap, and security files. Right now they are not because of Flask. Will resolve.
-