Importing with ctypes in Python: preventing overflows

No matter is trivial when you’re talking about security. This post explores a pursuit for cleaner link between Themis core C library and a Python wrapper. Read more


Be Careful with Python’s New-Style String Format

This should have been obvious to me for a longer time, but until earlier today I did not really realize the severity of the issues caused by str.format on untrusted user input. It came up as a way to bypass the Jinja2 Sandbox in a way that would permit r...

Read more »