CVE-2023-29159: Release Version 0.27.0 · encode/starlette

Skip to content

• • Actions

    Automate any workflow

  • Packages

    Host and manage packages

  • Security

    Find and fix vulnerabilities

  • Codespaces

    Instant dev environments

  • Copilot

    Write better code with AI

  • Code review

    Manage code changes

  • Issues

    Plan and track work

  • Discussions

    Collaborate outside of code

• • GitHub Sponsors

    Fund open source developers

*   The ReadME Project
    
    GitHub community articles

• Pricing

• Notifications

• Fork 749

• Code

• Issues 28

• Pull requests 17

• Discussions

• Actions

• Security

• Insights

1. Releases
2. 0.27.0

· 5 commits to master since this release

0c4b68a

This commit was created on GitHub.com and signed with GitHub’s verified signature.

This release fixes a path traversal vulnerability in StaticFiles. You can view the full security advisory:
GHSA-v5gw-mw7f-84px

Added

• Minify JSON websocket data via send_json #2128

Fixed

• Replace commonprefix by commonpath on StaticFiles 1797de4.
• Convert ImportErrors into ModuleNotFoundError #2135.
• Correct the RuntimeError message content in websockets #2141.

Full Changelog: 0.26.1…0.27.0

JonasKs, Kludex, gh640, alexted, i0tool5, strongbugman, adamzr, Molkree, and fmeneghetti reacted with thumbs up emoji alexted reacted with laugh emoji alexted and i0tool5 reacted with hooray emoji alexted and v3ss0n reacted with heart emoji alexted, i0tool5, and leynier reacted with rocket emoji alexted and nilsfast reacted with eyes emoji

12 people reacted