pillar

History

Sybren A. Stüvel d0557445cd Fix privilege escalation leak

A PUT request on /api/user/{user-id} by the user themselves would allow
too much, and would allow self-granting of roles (including admin),
group membership (so join any arbitrary project) and pretend to be
service accounts.

2017-05-04 12:48:30 +02:00

test_api

Fix privilege escalation leak

2017-05-04 12:48:30 +02:00

test_web

Made markdown jinja filter None-safe

2017-03-30 09:37:48 +02:00

BlenderDesktopLogo.png

Some security fixes and other fixes for file storage.

2016-03-25 18:23:01 +01:00

test_sdk.py

Ran 2to3 on unittests, same sort of manual fixups as before

2017-03-22 15:49:51 +01:00

Download

What's New

Blender Studio

Manual

Developers Blog

Documentation

Benchmark

Blender Conference

Development Fund

One-time Donations