This should have been obvious to me for a longer time, but until earlier today I did not really realize the severity of the issues caused by str.format on untrusted user input. It came up as a way to bypass the Jinja2 Sandbox in a way that would permit r...

On April 20th, 2020, a release manager named Benjamin Peterson smashed the “publish” button on Python 2.7.18. (more…)

Wisdom of the crowd web framework rank. Contribute to tbicr/web-framework-rank development by creating an account on GitHub. (more…)

A common applied statistics task involves building regression models to characterize non-linear relationships between variables. It is possible to fit such... (more…)

python -m lets you run modules as scripts. If your module is just one .py file it'll be executed (which usually means code under if __name_...