kopia lustrzana https://github.com/simonw/datasette
rodzic
f25391de1f
commit
b597aa07e6
|
@ -12,7 +12,7 @@ Changelog
|
|||
.. warning::
|
||||
This release contains a security fix related to authenticated writable canned queries. If you are using this feature you should upgrade as soon as possible.
|
||||
|
||||
- **Security fix:** CSRF tokens were incorrectly included in read-only canned query forms, which could allow them to be leaked to a sophisticated attacker. See `issue xxx <>`__ for details.
|
||||
- **Security fix:** CSRF tokens were incorrectly included in read-only canned query forms, which could allow them to be leaked to a sophisticated attacker. See `issue 918 <https://github.com/simonw/datasette/issues/918>`__ for details.
|
||||
- Datasette now supports GraphQL via the new `datasette-graphql <https://github.com/simonw/datasette-graphql>`__ plugin - see `GraphQL in Datasette with the new datasette-graphql plugin <https://simonwillison.net/2020/Aug/7/datasette-graphql/>`__.
|
||||
- Principle git branch has been renamed from ``main`` to ``master``. (`#849 <https://github.com/simonw/datasette/issues/849>`__)
|
||||
- New debugging tool: ``/-/allow-debug tool`` (`demo here <https://latest.datasette.io/-/allow-debug>`__) helps test allow blocks against actors, as described in :ref:`authentication_permissions_allow`. (`#908 <https://github.com/simonw/datasette/issues/908>`__)
|
||||
|
|
Ładowanie…
Reference in New Issue