Tag: security

All the articles with the tag "security".

• Dangerous Python Functions, Part 3

  Published:Jan 30, 2017 |  at 09:30 AM

  Updates on Python security: new vulnerabilities discovered in PyYAML and other libraries, plus community feedback on dangerous function usage.

• Answers to Django Security Questions

  Published:Oct 16, 2015 |  at 06:56 AM

  Answers to the Django security questions I get asked most often: CSRF protection, SQL injection prevention, secure sessions, and authentication gotchas.

• Using Bandit in the Field

  Published:Sep 25, 2015 |  at 03:17 PM

  Real-world experience using Bandit to scan Python codebases for security vulnerabilities. What works, what doesn't, and how to integrate it into your workflow.

• Finding Vulnerabilities with Bandit Talk

  Published:Sep 24, 2015 |  at 06:23 AM

  How to use Bandit to automatically scan Python codebases for security vulnerabilities: setup, configuration, and integrating security checks into your development workflow.

• Dangerous Python Functions, Part 2

  Published:Aug 15, 2015 |  at 08:22 AM

  More Python functions that can introduce security vulnerabilities, including pickle, PyYAML, and SQL injection risks. Learn how to use them safely.

• Dangerous Python Functions, Part 1

  Published:Jul 26, 2015 |  at 12:54 PM

  Python functions like eval(), exec(), and input() can create serious security vulnerabilities. Here's how to identify and avoid these dangerous patterns in your code.