Skip to content

v1.1.4

Choose a tag to compare

View all tags
@lostsnow lostsnow released this 18 Dec 09:06
· 99 commits to master since this release
v1.1.4
1e59e4d
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
  • FEATURES
    • Add funchook for Python C API functions/methods
    • Add fstring patch
    • Add str/bytes/bytearray cformat(%) patches
    • Add str.__new__, bytes.__new__, bytearray.__init__ patches
    • Add pickle.load, pickle.loads hook rules for Insecure Deserialization detection
    • Add some filtering rules for HTML escaping
  • BUGFIXES
    • Fix yaml.load and yaml.load_all sink parameters check
  • CHANGES
    • Change yaml.load, yaml.unsafe_load strategy type to Insecure Deserialization
    • For requests containing multiple sink methods, tracking is no longer stopped after the first sink method is detected
  • BUILD
    • Support for C extension build under Windows
    • Add build actions on Ubuntu/macOS/Windows
Assets 2
Loading