Package: flask-security / 4.0.0-1+deb11u1

Metadata

Package Version Patches format
flask-security 4.0.0-1+deb11u1 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
0001 A hopeful fix for possible open redirect.patch | (download)

docs/configuration.rst | 53 52 + 1 - 0 !
flask_security/core.py | 7 6 + 1 - 0 !
flask_security/datastore.py | 2 1 + 1 - 0 !
flask_security/decorators.py | 4 2 + 2 - 0 !
flask_security/utils.py | 31 31 + 0 - 0 !
requirements/docs.txt | 6 3 + 3 - 0 !
tests/test_misc.py | 17 17 + 0 - 0 !
tests/view_scaffold.py | 8 8 + 0 - 0 !
8 files changed, 120 insertions(+), 8 deletions(-)

 
 a (hopeful) fix for possible open-redirect.

While this is only an issue if the application sets the Werkzeug response variable:
autocorrect_location_header = False - it none the less poses a small security concern.

pyupgrade and black changed again .. sigh...
pin read the docs sphinx versions.

Closes: #486

Forwared: https://github.com/Flask-Middleware/flask-security/pull/489