Be Careful with Python’s New-Style String Format

This should have been obvious to me for a longer time, but until earlier
today I did not really realize the severity of the issues caused by
str.format on untrusted user input. It came up as a way to bypass the
Jinja2 Sandbox in a way that would permit r…

Read full article

Similar

Gradient-Free-Optimizers: A collection of modern optimization methods in Python

Simple and reliable optimization with local, global, population-based and sequential techniques in numerical search spaces. - SimonBlanke/Gradient-Free-Optimizers... (more…)

Snake Charmer’s Secret: Metaprogramming the Python SDK

We're releasing a bundle of Python resources, including CMA and CDA SDKs, a Getting Started guide and a Django example app. It's a great occasion to peek behind the curtain and learn more about metaprogramming, the trick we use to develop language-specifi... (more…)

How to use Sqlite’s JSON extension in your Python app

Back in September, word started getting around trendy programming circles about a new file that had appeared in the SQLite fossil repo named json1.c. I originally wrote up a post that contained some gross hacks in order to get pysqlite to compile and work...

Clojure: Parens for Python – UMAP and Trimap

We are going to explore some more Python libraries through the use of libpython-clj. (more…)

Python for SAS Users

An introduction to Pandas. A quick start guide to familiarize SAS users with Python and Python's various scientific computing tools.

Latest News

Survey: Machine Learning Algorithms for Detecting Ransomware Encryption Activity

State of AI Report 2021

AI Playing Perfect Tetris