简体繁体中英

Which Python template engine is safe to be used by untrusted users?

原文 2012-04-12 22:26:46 0 1 python/ security/ templates/ template-engine/ code-injection

I'm looking for a good standalone Python template engine that is safe, against code injecting, to be used in an application that allows untrusted users to write and edit templates. Could someone recommend such an engine?

1 answers

starcom referenced jinja.

The jinja website says, under "features":

Sandboxed execution mode. Every aspect of the template execution is monitored and explicitly whitelisted or blacklisted, whatever is preferred. This makes it possible to execute untrusted templates.

Untrusted templates in Python - what is a safe library to use?

Is python-markdown safe on untrusted input?

Is it safe to put information from an untrusted source as python exception message?

Can Python's string .format() be made safe for untrusted format strings?

Can Lupa be used to run untrusted lua code in python?

Is pylint safe to run on untrusted input?

Python 3 Template Engine

Python template engine

Python web template engine

Evaluating algorithms from 'untrusted' users

暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Untrusted templates in Python - what is a safe library to use? Is python-markdown safe on untrusted input? Is it safe to put information from an untrusted source as python exception message? Can Python's string .format() be made safe for untrusted format strings? Can Lupa be used to run untrusted lua code in python? Is pylint safe to run on untrusted input? Python 3 Template Engine Python template engine Python web template engine Evaluating algorithms from 'untrusted' users

Related Tags

Which Python template engine is safe to be used by untrusted users?

Question

1 answers

solution1 0 2012-05-19 21:47:36

solution1
0 2012-05-19 21:47:36