- Allow to use the package with Python 3.13 -- Caution: No security audit has been done so far.
- Add support for single mode statements / execution.
- Add support for the matmul (
@
) operator.
- Drop support for Python 3.6.
- Officially support Python 3.12.
- Prevent DeprecationWarnings from
ast.Str
andast.Num
on Python 3.12 - Forbid using some attributes providing access to restricted Python internals. (CVE-2023-37271)
- Fix information disclosure problems through Python's "format" functionality (
format
andformat_map
methods onstr
and its instances,string.Formatter
). (CVE-2023-41039)
- Drop support for Python 2.7 and 3.5.
- Officially support Python 3.11.
- Allow to use the Python 3.11 feature of exception groups and except* (PEP 654).
- Document that
__name__
is needed to define classes. - Add support for Python 3.10. Auditing the Python 3.10 change log did not reveal any changes which require actions in RestrictedPython.
- Avoid deprecation warnings when using Python 3.8+. (#192)
- Add support for (Python 3.8+) assignment expressions (i.e. the
:=
operator) - Add support for Python 3.9 after checking the security implications of the syntax changes made in that version.
- Add support for the
bytes
andsorted
builtins (#186)
- Document parameter
mode
for thecompile_restricted
functions (#157) - Fix documentation for
compile_restricted_function
(#158)
- Fix
compile_restricted_function
with SyntaxErrors that have no text (#181) - Drop install dependency on
setuptools
. (#189)
- Revert the allowance of the
...
(Ellipsis) statement, as of 4.0. It is not needed to support Python 3.8. The security implications of the Ellipsis Statement is not 100 % clear and is not checked....
(Ellipsis) is disallowed again.
- Add support for f-strings in Python 3.6+. (#123)
Changes since 3.6.0:
- The
compile_restricted*
functions now return anamedtuple CompileResult
instead of a simpletuple
. - Drop the old implementation of version 3.x: RCompile.py, SelectCompiler.py, MutatingWorker.py, RestrictionMutator.py and tests/verify.py.
- Drop support for long-deprecated
sets
module.
RestrictedPython now ships with a default implementation for
_getattr_
which prevents from using theformat()
method on str/unicode as it is not safe, see: http://lucumr.pocoo.org/2016/12/29/careful-with-str-format/Caution: If you do not already have secured the access to this
format()
method in your_getattr_
implementation useRestrictedPython.Guards.safer_getattr()
in your implementation to benefit from this fix.
- Mostly complete rewrite based on Python AST module. [loechel (Alexander Loechel), icemac (Michael Howitz), stephan-hof (Stephan Hofmockel), tlotze (Thomas Lotze)]
- Add support for Python 3.5, 3.6, 3.7.
- Add preliminary support for Python 3.8. as of 3.8.0a3 is released.
- Warn when using another Python implementation than CPython as it is not safe to use RestrictedPython with other versions than CPyton. See https://bitbucket.org/pypy/pypy/issues/2653 for PyPy.
- Allow the
...
(Ellipsis) statement. It is needed to support Python 3.8. - Allow yield and yield from statements. Generator functions would now work in RestrictedPython.
- Allow the following magic methods to be defined on classes. (#104) They cannot be called directly but by the built-in way to use them (e. g. class instantiation, or comparison):
__init__
__contains__
__lt__
__le__
__eq__
__ne__
__gt__
__ge__
- Imports like
from a import *
(so called star imports) are now forbidden as they allow to import names starting with an underscore which could override protected build-ins. (#102) - Allow to use list comprehensions in the default implementation of
RestrictionCapableEval.eval()
. - Switch to pytest as test runner.
- Bring test coverage to 100 %.
- Improve .Guards.safer_getattr to prevent accessing names starting with underscore. (#142)
- Add name check for names assigned during imports using the
from x import y
format. - Add test for name check when assigning an alias using multiple-context
with
statements in Python 2.7. - Add tests for protection of the iterators for dict and set comprehensions in Python 2.7.
- Remove support for
DocumentTemplate.sequence
- this is handled in the DocumentTemplate package itself.
- Remove a testing dependency on
zope.testing
.
- Add tests for
Utilities
module. - Filter DeprecationWarnings when importing Python's
sets
module.
- Drop legacy support for Python 2.1 / 2.2 (
__future__
imports ofnested_scopes
/generators
.).
- Fix deprecation warning:
with
is now a reserved keyword on Python 2.6. That means RestrictedPython should run on Python 2.6 now. Thanks to Ranjith Kannikara, GSoC Student for the patch. - Add tests for ternary if expression and for
with
keyword and context managers.
- Changed homepage URL to the PyPI site
- Improve
README.txt
.
- Fix http://www.zope.org/Collectors/Zope/2295: Bare conditional in a Zope 2 PythonScript followed by a comment causes SyntaxError.
- RestrictedPython now has its own release cycle as a separate project.
- Synchronized with RestrictedPython from Zope 2 tree.
- Corresponds to the verison of the RestrictedPython package shipped as part of the Zope 3.2.0 release.
- No changes from 3.1.0.
- Corresponds to the verison of the RestrictedPython package shipped as part of the Zope 3.1.0 release.
- Remove unused fossil module,
SafeMapping
. - Replaced use of deprecated
whrandom
module withrandom
(aliased towhrandom
for backward compatibility).
- Corresponds to the verison of the RestrictedPython package shipped as part of the Zope X3.0.0 release.