Ecosyste.ms: OpenCollective
An open API service for software projects hosted on Open Collective.
marshmallow
A lightweight library for converting complex objects to and from simple Python datatypes.
Collective -
Host: opensource -
https://opencollective.com/marshmallow
- Code: https://github.com/marshmallow-code
High
Ecosystems: pypi
Packages: webargs
Source: github
Published: over 3 years ago
webargs: MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZqcTMtNXB4dy00d2o0
Cross-Site Request Forgery in WebargsEcosystems: pypi
Packages: webargs
Source: github
Published: over 3 years ago
High
Ecosystems: pypi
Packages: webargs
Source: github
Published: almost 6 years ago
webargs: MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg1NTQtanhjdy00NTRx
Webargs mishandles concurrent JSON parsingEcosystems: pypi
Packages: webargs
Source: github
Published: almost 6 years ago
Critical
Ecosystems: pypi
Packages: pyyaml
Source: github
Published: almost 6 years ago
apispec: MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJwcnctaDYydi1jMnc3
PyYAML insecurely deserializes YAML strings leading to arbitrary code executionEcosystems: pypi
Packages: pyyaml
Source: github
Published: almost 6 years ago
Moderate
Ecosystems: pypi
Packages: marshmallow
Source: github
Published: about 6 years ago
marshmallow: MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlxMnAtZmo0OS12cHhq
In marshmallow library the schema "only" option treats an empty list as implying no "only" optionEcosystems: pypi
Packages: marshmallow
Source: github
Published: about 6 years ago