Simon Willison 11/6/2025

Open redirect endpoint in Datasette prior to 0.65.2 and 1.0a21

Read Original

GitHub security advisory detailing an open redirect vulnerability in Datasette versions prior to 0.65.2 and 1.0a21. The fix by James Jefferies is included in these releases, which also add Python 3.14 support, a Cloud Run deployment fix, and new features for inspecting headers and bypassing permission checks in the internal client.

0 comments
#Python #Datasette #Security Vulnerability
Open redirect endpoint in Datasette prior to 0.65.2 and 1.0a21

Comments

No comments yet

Be the first to share your thoughts!

Browser Extension

Get instant access to AllDevBlogs from your browser

Top of the Week

1
React vs Browser APIs (Mental Model)
Jivbcoop 4 votes
2
React, useEffect, and Stale Closures: How to Avoid Them with Dependencies and useRef
Jivbcoop 3 votes
3
Building Type-Safe Compound Components
TkDodo Dominik Dorfmeister 2 votes
4
Dew Drop – January 15, 2026 (#4583)
Alvin Ashcraft 1 votes
5
Using Browser Apis In React Practical Guide
Jivbcoop 1 votes
6
Better react-hook-form Smart Form Components
Maarten Hus 1 votes
7
Building a Complete FIRE Calculator App with GitHub Copilot in One Chat Session
James Montemagno 1 votes