BlueSoybean.com - Free RSS-Based News Reader

close
  • rss_feed Follow any RSS- or Atom Feed tell me more...
  • language Use in your Browser on any Computer, Laptop or Phone tell me more...
  • money_off Free tell me more...
  • mouse Scroll and skim through a lot of Articles super fast tell me more...
  • keyboard Keyboard Shortcuts help you be more efficient yet. tell me more...
  • label Organise and easily find again interesting articles using Tags. tell me more...
  • share Share your Tags and Recommendations tell me more...

The Django weblog

Latest news about Django, the Python Web framework.


Source: https://www.djangoproject.com/rss/weblog/

Articles

Django bugfix release: 3.1.5 | Weblog | Django


via The Django weblog
Share  
Tags  

Channels security release issued: 3.0.3

In accordance with our security release policy, the Django team is issuing Channels 3.0.3. This release addresses the security issue detailed below. We encourage all users of Channels to upgrade as soon as possible. CVE-2020-35681: Potential leakage of session data using legacy AsgiHandler The legacy channels.http.AsgiHandler class, used for handling HTTP type requests in an ASGI environment prior to Django 3.0, did not correctly separate request scopes in Channels 3.0. In many cases this would result in a crash but, with correct timing responses could be sent to the wrong client, resulting in potential leakage of session identifiers and other sensitive data. This issue affects Channels 3.0.x before 3.0.3, and is resolved in Channels 3.0.3. Users of ProtocolTypeRouter not explicitly specifying the handler for the 'http' key, or those explicitly using channels.http.AsgiHandler, likely to support Django v2.2, are affected and should update immediately. Please see the Channels version 3.0.3 release notes for full details. General notes regarding security reporting As always, we ask that potential security issues be reported via private email to security@djangoproject.com, and not via Django's Trac instance or the django-developers list. Please see our security policies for further information.

via The Django weblog
Share  
Tags  

2020 Malcolm Tredinnick Memorial Prize awarded to Ken Whitesell

The Board of the Django Software Foundation is pleased to announce that the 2020 Malcolm Tredinnick Memorial Prize has been awarded to Ken Whitesell. Ken Whitesell has been an active member of the Django forum since it started, helping new members by patiently answering their questions and making them feel welcome and has in that way helped to grow the forum. He has also volunteered many times at DjangoCon US. Matt Layman, one of the six people who nominated Ken had this to say about Ken: Ken is a stalwart contributor to the Django Forum. He is prolific on the forum in supporting new people with all their various questions. He is patient and kind in how he responds. I think the forum is a growing way that new people get involved in Django. Ken is a welcoming person in that arena who I believe demonstrates the qualities desired for a Malcolm Tredinnick Memorial Prize recipient. Other nominations for this year included: Adam Johnson (Adam Chainz) Baptiste Mispelone Carlton Gibson Eyitemi Egbejule Kalob Taelien Matthias Kestenholz William Vincent Each year we receive many nominations, and it is always hard to pick the winner. This year we received the highest number of nominations ever received for the Malcolm Tredinnick Memorial Price with some being nominated twice, three times, and the highest being six times. Some people have been nominated in multiple years, so if your nominee didn’t make it this year, you can always nominate them again next year. Malcolm would be very proud of the legacy he has fostered in our community! Congratulations Ken on the well-deserved honor!

via The Django weblog
Share  
Tags  

2021 DSF Board Election Results

Here are the results of this year's election in order of most votes: Anna Makarudze William Vincent Kátia Nakamura Aaron Bassett Žan Anderle Chaim Kirby Mfon Eti-mfon Congratulations to our winners and a big thank you for our Board members who are leaving James Bennett and Sayantika Banik. We'll be finishing up the 2020 Board business, ratifying the election and passing the torch to the 2021 Board at our meeting next week. Also a special thank you to the large number of candidates we had this year. The DSF simply isn't possible without the help of all of our volunteers.

via The Django weblog
Share  
Tags  

Django bugfix release: 3.1.4

Django bugfix release: 3.1.4 Today we've issued the 3.1.4 bugfix release. The release package and checksums are available from our downloads page, as well as from the Python Package Index. The PGP key ID used for this release is Mariusz Felisiak: 2EF56372BA48CD1B.

via The Django weblog
Share  
Tags