#34172: Documentation of AdminSite.get_urls() encourages security
vulnerabilities
--------------------------------------+------------------------------------
Reporter: Sylvain Fankhauser | Owner: nobody
Type: Cleanup/optimization | Status: new
Component: contrib.admin | Version: 4.1
Severity: Normal | Resolution:
Keywords: | Triage Stage: Accepted
Has patch: 0 | Needs documentation: 0
Needs tests: 0 | Patch needs improvement: 0
Easy pickings: 0 | UI/UX: 0
--------------------------------------+------------------------------------
Changes (by Carlton Gibson):
* type: Uncategorized => Cleanup/optimization
* stage: Unreviewed => Accepted
Comment:
I tend to agree with the report here:
> ... as some people might stop reading there ...
I think that's likely very common. Folks just copy and paste without
really reading.
I take Mariusz' point that it's explained, but if a re-phrase is on offer,
having one correct example with a ''couple of things to note... '' below,
I think we should have a look at that.
I'll Accept on that basis (assuming that's why Mariusz left it unreviewed)
> Interested in submitting a documentation PR?
Sylvain, if you wanted to assign it to yourself and open a PR, that would
be great.
--
Ticket URL: <https://code.djangoproject.com/ticket/34172#comment:3>
Django <https://code.djangoproject.com/>
The Web framework for perfectionists with deadlines.
--
You received this message because you are subscribed to the Google Groups
"Django updates" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To view this discussion on the web visit
https://groups.google.com/d/msgid/django-updates/010701849e75c978-009dc896-dfd5-4028-a043-1e61aab141ed-000000%40eu-central-1.amazonses.com.
