Triaged
---
https://code.djangoproject.com/ticket/28243 - Renaming Base model in
multi-table inheritance raises django.core.exceptions.FieldError:
Auto-generated field clashes (duplicate)
https://code.djangoproject.com/ticket/28244 - Exceptions derived from
BaseException instead of
I've recently been introduced to `django-environ`, a similar library that
has additional features to DB connect URLs that we may want to consider:
https://github.com/joke2k/django-environ
It has the same issue with third party DB engines; for example, I recently
issued a PR to include `pyodbc`
Edit: DJANGO_SETTINGS_MODULE isn't relative, it will import any arbitrary
module you give it. If we accept that then I think we are accepting the
risk of imports via an attacker controlling environment variables whilst
Django starts up?
On Sat, May 27, 2017 at 8:49 PM, Tom Forbes
> I'm wary of possible security ramifications: if we do this, changing a
configuration value will import an arbitrary module, which could make it
easier to run arbitrary code in some scenarios. I don't have a clear threat
model in mind here, though.
Good point, it's not wise to enable this even
Hi Everyone!
I got a 'Admin Module' named Logs Entries (it's in Portuguese in the pic)
and I need to use as Plugin to show Latest Changed Files at my homepage.
How would I do that?
