{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":3758878,"defaultBranch":"master","name":"flask-admin","ownerLogin":"pallets-eco","currentUserCanPush":false,"isFork":false,"isEmpty":false,"createdAt":"2012-03-18T23:21:57.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/84816014?v=4","public":true,"private":false,"isOrgOwned":true},"refInfo":{"name":"","listCacheKey":"v0:1722290465.0","currentOid":""},"activityList":{"items":[{"before":"1cd36210b66ff7351e89110ca1b61c726b075a2b","after":"aaaa32ee01ebf72c49c04f798466b1bf9f302e82","ref":"refs/heads/master","pushedAt":"2024-07-30T21:13:55.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"samuelhwilliams","name":"Samuel Williams","path":"/samuelhwilliams","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2920760?s=80&v=4"},"commit":{"message":"Merge pull request #2491 from cjmayo/test_multi_pk_2\n\nRevert \"Add SQLAlchemy 1 support back to test_multi_pk.py\"","shortMessageHtmlLink":"Merge pull request <a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2438431023\" data-permission-text=\"Title is private\" data-url=\"https://github.com/pallets-eco/flask-admin/issues/2491\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/pallets-eco/flask-admin/pull/2491/hovercard\" href=\"https://github.com/pallets-eco/flask-admin/pull/2491\">#2491</a> from cjmayo/test_multi_pk_2"}},{"before":"02126dc26caf2125e969b0207fc5d289952bfd3a","after":"5e5f7d4c8874897c51965f302aa16ed43afc7e52","ref":"refs/heads/support-csp-nonces","pushedAt":"2024-07-29T22:02:11.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"samuelhwilliams","name":"Samuel Williams","path":"/samuelhwilliams","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2920760?s=80&v=4"},"commit":{"message":"Support Content-Security-Policies via nonce values\n\nContent-Security-Policy is a common way of restricting which assets\n(javascript, styles, etc) are loaded by the browser as a way of\npreventing a number of vulnerabilities.\n\nFlask-Admin loads a fair amount of JavaScript and styling to support its\nfunctionality, and previously it has been difficult to get this to pass\nCSP checks.\n\nWe can add support for CSP by taking a CSP nonce generator and using\nthat to inject a nonce value wherever we load these resources (either\nasking the client to download files or with inline scripts/styles).","shortMessageHtmlLink":"Support Content-Security-Policies via nonce values"}},{"before":null,"after":"8f69cdca228f0101f3180d0eaed3549008bf3131","ref":"refs/heads/dependabot/pip/requirements-skip/werkzeug-3.0.3","pushedAt":"2024-07-29T22:01:05.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump werkzeug from 2.3.8 to 3.0.3 in /requirements-skip\n\nBumps [werkzeug](https://github.com/pallets/werkzeug) from 2.3.8 to 3.0.3.\n- [Release notes](https://github.com/pallets/werkzeug/releases)\n- [Changelog](https://github.com/pallets/werkzeug/blob/main/CHANGES.rst)\n- [Commits](https://github.com/pallets/werkzeug/compare/2.3.8...3.0.3)\n\n---\nupdated-dependencies:\n- dependency-name: werkzeug\n  dependency-type: direct:production\n...\n\nSigned-off-by: dependabot[bot] <support@github.com>","shortMessageHtmlLink":"Bump werkzeug from 2.3.8 to 3.0.3 in /requirements-skip"}},{"before":null,"after":"d2e9dd27a0afc6395f75d251757430b12f07ebe2","ref":"refs/heads/dependabot/pip/requirements-skip/azure-storage-blob-12.13.0","pushedAt":"2024-07-29T22:00:48.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump azure-storage-blob from 2.1.0 to 12.13.0 in /requirements-skip\n\nBumps [azure-storage-blob](https://github.com/Azure/azure-sdk-for-python) from 2.1.0 to 12.13.0.\n- [Release notes](https://github.com/Azure/azure-sdk-for-python/releases)\n- [Changelog](https://github.com/Azure/azure-sdk-for-python/blob/main/doc/esrp_release.md)\n- [Commits](https://github.com/Azure/azure-sdk-for-python/compare/azure-mgmt-sql_2.1.0...azure-storage-blob_12.13.0)\n\n---\nupdated-dependencies:\n- dependency-name: azure-storage-blob\n  dependency-type: direct:production\n...\n\nSigned-off-by: dependabot[bot] <support@github.com>","shortMessageHtmlLink":"Bump azure-storage-blob from 2.1.0 to 12.13.0 in /requirements-skip"}},{"before":null,"after":"72307aede829bc9846d60d21b8c48cee83931b61","ref":"refs/heads/dependabot/pip/requirements-skip/pymongo-4.6.3","pushedAt":"2024-07-29T22:00:47.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump pymongo from 3.7.0 to 4.6.3 in /requirements-skip\n\nBumps [pymongo](https://github.com/mongodb/mongo-python-driver) from 3.7.0 to 4.6.3.\n- [Release notes](https://github.com/mongodb/mongo-python-driver/releases)\n- [Changelog](https://github.com/mongodb/mongo-python-driver/blob/master/doc/changelog.rst)\n- [Commits](https://github.com/mongodb/mongo-python-driver/compare/3.7.0...4.6.3)\n\n---\nupdated-dependencies:\n- dependency-name: pymongo\n  dependency-type: direct:production\n...\n\nSigned-off-by: dependabot[bot] <support@github.com>","shortMessageHtmlLink":"Bump pymongo from 3.7.0 to 4.6.3 in /requirements-skip"}},{"before":null,"after":"c99a7cff9d0b18ce2b1b4f1e1c8fa24e4de9a25a","ref":"refs/heads/dependabot/pip/requirements-skip/flask-2.2.5","pushedAt":"2024-07-29T22:00:43.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump flask from 2.1.3 to 2.2.5 in /requirements-skip\n\nBumps [flask](https://github.com/pallets/flask) from 2.1.3 to 2.2.5.\n- [Release notes](https://github.com/pallets/flask/releases)\n- [Changelog](https://github.com/pallets/flask/blob/main/CHANGES.rst)\n- [Commits](https://github.com/pallets/flask/compare/2.1.3...2.2.5)\n\n---\nupdated-dependencies:\n- dependency-name: flask\n  dependency-type: direct:production\n...\n\nSigned-off-by: dependabot[bot] <support@github.com>","shortMessageHtmlLink":"Bump flask from 2.1.3 to 2.2.5 in /requirements-skip"}},{"before":null,"after":"c221cbc352c03a403841f89a27bfad8182adb748","ref":"refs/heads/dependabot/pip/requirements-skip/pillow-10.3.0","pushedAt":"2024-07-29T22:00:42.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump pillow from 10.0.0 to 10.3.0 in /requirements-skip\n\nBumps [pillow](https://github.com/python-pillow/Pillow) from 10.0.0 to 10.3.0.\n- [Release notes](https://github.com/python-pillow/Pillow/releases)\n- [Changelog](https://github.com/python-pillow/Pillow/blob/main/CHANGES.rst)\n- [Commits](https://github.com/python-pillow/Pillow/compare/10.0.0...10.3.0)\n\n---\nupdated-dependencies:\n- dependency-name: pillow\n  dependency-type: direct:production\n...\n\nSigned-off-by: dependabot[bot] <support@github.com>","shortMessageHtmlLink":"Bump pillow from 10.0.0 to 10.3.0 in /requirements-skip"}},{"before":"dd48a273f4fb90b68cdf53ff45cf700aebef084f","after":null,"ref":"refs/heads/test-min-deps","pushedAt":"2024-07-29T21:59:12.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"samuelhwilliams","name":"Samuel Williams","path":"/samuelhwilliams","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2920760?s=80&v=4"}},{"before":"2d6dd165d17d803bb15725223d5f42847dab0316","after":"1cd36210b66ff7351e89110ca1b61c726b075a2b","ref":"refs/heads/master","pushedAt":"2024-07-29T21:59:11.000Z","pushType":"pr_merge","commitsCount":7,"pusher":{"login":"samuelhwilliams","name":"Samuel Williams","path":"/samuelhwilliams","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2920760?s=80&v=4"},"commit":{"message":"Merge pull request #2482 from pallets-eco/test-min-deps\n\nTest min deps","shortMessageHtmlLink":"Merge pull request <a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2431092963\" data-permission-text=\"Title is private\" data-url=\"https://github.com/pallets-eco/flask-admin/issues/2482\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/pallets-eco/flask-admin/pull/2482/hovercard\" href=\"https://github.com/pallets-eco/flask-admin/pull/2482\">#2482</a> from pallets-eco/test-min-deps"}},{"before":"c8dde90f61b0ef7f8b76dc0a0f781136a2e73a3b","after":"dd48a273f4fb90b68cdf53ff45cf700aebef084f","ref":"refs/heads/test-min-deps","pushedAt":"2024-07-29T21:55:48.000Z","pushType":"push","commitsCount":12,"pusher":{"login":"samuelhwilliams","name":"Samuel Williams","path":"/samuelhwilliams","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2920760?s=80&v=4"},"commit":{"message":"Fix constraints and tests for mongoengine/sqlalchemy1","shortMessageHtmlLink":"Fix constraints and tests for mongoengine/sqlalchemy1"}},{"before":"c79fe0f4ceeaaa26b42f1e52181ca3b4bb83510d","after":"2d6dd165d17d803bb15725223d5f42847dab0316","ref":"refs/heads/master","pushedAt":"2024-07-29T21:18:09.000Z","pushType":"pr_merge","commitsCount":8,"pusher":{"login":"samuelhwilliams","name":"Samuel Williams","path":"/samuelhwilliams","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2920760?s=80&v=4"},"commit":{"message":"Merge pull request #2483 from cjmayo/sqlalchemy-2\n\nSQLAlchemy 2.0 Compatibility","shortMessageHtmlLink":"Merge pull request <a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2432794696\" data-permission-text=\"Title is private\" data-url=\"https://github.com/pallets-eco/flask-admin/issues/2483\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/pallets-eco/flask-admin/pull/2483/hovercard\" href=\"https://github.com/pallets-eco/flask-admin/pull/2483\">#2483</a> from cjmayo/sqlalchemy-2"}},{"before":"24c21d71ff0c7f2b2b0458696535ba87b21dfb2f","after":"c79fe0f4ceeaaa26b42f1e52181ca3b4bb83510d","ref":"refs/heads/master","pushedAt":"2024-07-29T21:12:06.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"samuelhwilliams","name":"Samuel Williams","path":"/samuelhwilliams","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2920760?s=80&v=4"},"commit":{"message":"Merge pull request #2484 from cjmayo/test_different_bind_joins\n\nFix test_different_bind_joins UnboundExecutionError","shortMessageHtmlLink":"Merge pull request <a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2434040289\" data-permission-text=\"Title is private\" data-url=\"https://github.com/pallets-eco/flask-admin/issues/2484\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/pallets-eco/flask-admin/pull/2484/hovercard\" href=\"https://github.com/pallets-eco/flask-admin/pull/2484\">#2484</a> from cjmayo/test_different_bind_joins"}},{"before":"998fae44660f87ff92406e05f764d2243f93e3c4","after":"c8dde90f61b0ef7f8b76dc0a0f781136a2e73a3b","ref":"refs/heads/test-min-deps","pushedAt":"2024-07-29T10:30:06.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"samuelhwilliams","name":"Samuel Williams","path":"/samuelhwilliams","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2920760?s=80&v=4"},"commit":{"message":"Run CI suite every Monday morning at 3am\n\nThis should help flag any issues with new releases of our dependencies\n(when we've got unlocked upper bounds on our dependencies).","shortMessageHtmlLink":"Run CI suite every Monday morning at 3am"}},{"before":"e82092ddc90d8f8ac0f4771d50d9427ed049661a","after":"998fae44660f87ff92406e05f764d2243f93e3c4","ref":"refs/heads/test-min-deps","pushedAt":"2024-07-28T21:51:15.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"samuelhwilliams","name":"Samuel Williams","path":"/samuelhwilliams","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2920760?s=80&v=4"},"commit":{"message":"Run CI suite every Monday morning at 3am\n\nThis should help flag any issues with new releases of our dependencies\n(when we've got unlocked upper bounds on our dependencies).","shortMessageHtmlLink":"Run CI suite every Monday morning at 3am"}},{"before":"18c3b28a8e25c1a58998bc18ddaf24f924eed53a","after":"e82092ddc90d8f8ac0f4771d50d9427ed049661a","ref":"refs/heads/test-min-deps","pushedAt":"2024-07-28T21:44:40.000Z","pushType":"push","commitsCount":2,"pusher":{"login":"samuelhwilliams","name":"Samuel Williams","path":"/samuelhwilliams","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2920760?s=80&v=4"},"commit":{"message":"Remove min deps test on py318","shortMessageHtmlLink":"Remove min deps test on py318"}},{"before":"b7d24dd5d9088bdf510dee2258b88ffed46eba0c","after":"18c3b28a8e25c1a58998bc18ddaf24f924eed53a","ref":"refs/heads/test-min-deps","pushedAt":"2024-07-26T06:01:00.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"samuelhwilliams","name":"Samuel Williams","path":"/samuelhwilliams","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2920760?s=80&v=4"},"commit":{"message":"Define and test minimum dependency requirements","shortMessageHtmlLink":"Define and test minimum dependency requirements"}},{"before":"c178ef88fd5636cfe29575c02b88026433b93e5a","after":"b7d24dd5d9088bdf510dee2258b88ffed46eba0c","ref":"refs/heads/test-min-deps","pushedAt":"2024-07-25T22:53:32.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"samuelhwilliams","name":"Samuel Williams","path":"/samuelhwilliams","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2920760?s=80&v=4"},"commit":{"message":"Define and test minimum dependency requirements","shortMessageHtmlLink":"Define and test minimum dependency requirements"}},{"before":null,"after":"c178ef88fd5636cfe29575c02b88026433b93e5a","ref":"refs/heads/test-min-deps","pushedAt":"2024-07-25T22:50:06.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"samuelhwilliams","name":"Samuel Williams","path":"/samuelhwilliams","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2920760?s=80&v=4"},"commit":{"message":"Define and test minimum dependency requirements","shortMessageHtmlLink":"Define and test minimum dependency requirements"}},{"before":"a50acd2802c6e0f0a7d12f535f67b73bb73a2888","after":null,"ref":"refs/heads/remove-appengine","pushedAt":"2024-07-25T22:04:28.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"samuelhwilliams","name":"Samuel Williams","path":"/samuelhwilliams","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2920760?s=80&v=4"}},{"before":"50bfe0ac97ed9c5195cd87a94e805b5855c66c82","after":"24c21d71ff0c7f2b2b0458696535ba87b21dfb2f","ref":"refs/heads/master","pushedAt":"2024-07-25T22:04:26.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"samuelhwilliams","name":"Samuel Williams","path":"/samuelhwilliams","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2920760?s=80&v=4"},"commit":{"message":"Merge pull request #2481 from pallets-eco/remove-appengine\n\nRemove `appengine` support","shortMessageHtmlLink":"Merge pull request <a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2431043503\" data-permission-text=\"Title is private\" data-url=\"https://github.com/pallets-eco/flask-admin/issues/2481\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/pallets-eco/flask-admin/pull/2481/hovercard\" href=\"https://github.com/pallets-eco/flask-admin/pull/2481\">#2481</a> from pallets-eco/remove-appengine"}},{"before":null,"after":"a50acd2802c6e0f0a7d12f535f67b73bb73a2888","ref":"refs/heads/remove-appengine","pushedAt":"2024-07-25T21:58:59.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"samuelhwilliams","name":"Samuel Williams","path":"/samuelhwilliams","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2920760?s=80&v=4"},"commit":{"message":"Remove `appengine` support\n\nAppengine's integration with Flask-Admin:\n\n* has seen no commits since 2017\n* has an example that doesn't run\n* has no tests\n* has very limited code/features\n* is causing maintenance issues with other features because of outdated\n  dependencies\n\nOn these grounds, I believe we should remove support. If there is an\noutswell of interest, we should look to support it fresh from the ground\nup with a clean slate.","shortMessageHtmlLink":"Remove <code>appengine</code> support"}},{"before":"dba4c21d4f19bbd8de24fd34eafd6e9948e55aee","after":null,"ref":"refs/heads/depedencies-via-pip-extras","pushedAt":"2024-07-25T21:52:53.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"samuelhwilliams","name":"Samuel Williams","path":"/samuelhwilliams","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2920760?s=80&v=4"}},{"before":"6cefac86562ffb0310bdd1a65e3efd52812d1960","after":"50bfe0ac97ed9c5195cd87a94e805b5855c66c82","ref":"refs/heads/master","pushedAt":"2024-07-25T21:52:51.000Z","pushType":"pr_merge","commitsCount":10,"pusher":{"login":"samuelhwilliams","name":"Samuel Williams","path":"/samuelhwilliams","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2920760?s=80&v=4"},"commit":{"message":"Merge pull request #2476 from pallets-eco/depedencies-via-pip-extras\n\nDependencies via pip extras","shortMessageHtmlLink":"Merge pull request <a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2428022066\" data-permission-text=\"Title is private\" data-url=\"https://github.com/pallets-eco/flask-admin/issues/2476\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/pallets-eco/flask-admin/pull/2476/hovercard\" href=\"https://github.com/pallets-eco/flask-admin/pull/2476\">#2476</a> from pallets-eco/depedencies-via-pip-extras"}},{"before":"2cfe747d88edde06d9845419b589f3c3eb29fece","after":"6cefac86562ffb0310bdd1a65e3efd52812d1960","ref":"refs/heads/master","pushedAt":"2024-07-25T09:16:58.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"samuelhwilliams","name":"Samuel Williams","path":"/samuelhwilliams","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2920760?s=80&v=4"},"commit":{"message":"Merge pull request #2398 from cjmayo/mapper_attrs\n\nFix Exception: Cannot find reverse relation for model","shortMessageHtmlLink":"Merge pull request <a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"1967078852\" data-permission-text=\"Title is private\" data-url=\"https://github.com/pallets-eco/flask-admin/issues/2398\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/pallets-eco/flask-admin/pull/2398/hovercard\" href=\"https://github.com/pallets-eco/flask-admin/pull/2398\">#2398</a> from cjmayo/mapper_attrs"}},{"before":"ee20ab94ee517ff44c3153e011898a3d1234dbd1","after":"dba4c21d4f19bbd8de24fd34eafd6e9948e55aee","ref":"refs/heads/depedencies-via-pip-extras","pushedAt":"2024-07-25T07:24:25.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"samuelhwilliams","name":"Samuel Williams","path":"/samuelhwilliams","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2920760?s=80&v=4"},"commit":{"message":"Add tests-constraints.txt\n\nappengine-python-standard is becoming slightly out-of-date; it requires\nurllib3 < 2.0.0.\n\nOur tests dependencies want to install a version above 2.0.0, and with\n`constrain_package_deps` enabled this then causes tox to be unable to\ninstall flask-admin's dependencies because they conflict with the test\ndependencies.\n\nUsing a constraints file we can force tox to install urllib3<2 when\ninstalling test deps, which then allows flask-admin to be installed with\nno dependency conflicts.","shortMessageHtmlLink":"Add tests-constraints.txt"}},{"before":"2751c881d97236da72e3259f69289ab75cf992de","after":"ee20ab94ee517ff44c3153e011898a3d1234dbd1","ref":"refs/heads/depedencies-via-pip-extras","pushedAt":"2024-07-25T06:44:56.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"samuelhwilliams","name":"Samuel Williams","path":"/samuelhwilliams","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2920760?s=80&v=4"},"commit":{"message":"Update import error messages to suggest installing extras","shortMessageHtmlLink":"Update import error messages to suggest installing extras"}},{"before":"4c8b4b889c473a4b56fea3c2e4df2d7ba4da042e","after":"02126dc26caf2125e969b0207fc5d289952bfd3a","ref":"refs/heads/support-csp-nonces","pushedAt":"2024-07-24T22:40:31.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"samuelhwilliams","name":"Samuel Williams","path":"/samuelhwilliams","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2920760?s=80&v=4"},"commit":{"message":"Support Content-Security-Policies via nonce values\n\nContent-Security-Policy is a common way of restricting which assets\n(javascript, styles, etc) are loaded by the browser as a way of\npreventing a number of vulnerabilities.\n\nFlask-Admin loads a fair amount of JavaScript and styling to support its\nfunctionality, and previously it has been difficult to get this to pass\nCSP checks.\n\nWe can add support for CSP by taking a CSP nonce generator and using\nthat to inject a nonce value wherever we load these resources (either\nasking the client to download files or with inline scripts/styles).","shortMessageHtmlLink":"Support Content-Security-Policies via nonce values"}},{"before":"95403c999a2fce4428f0d94aeb760eb3eac6f412","after":"4c8b4b889c473a4b56fea3c2e4df2d7ba4da042e","ref":"refs/heads/support-csp-nonces","pushedAt":"2024-07-24T22:37:55.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"samuelhwilliams","name":"Samuel Williams","path":"/samuelhwilliams","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2920760?s=80&v=4"},"commit":{"message":"Support Content-Security-Policies via nonce values\n\nContent-Security-Policy is a common way of restricting which assets\n(javascript, styles, etc) are loaded by the browser as a way of\npreventing a number of vulnerabilities.\n\nFlask-Admin loads a fair amount of JavaScript and styling to support its\nfunctionality, and previously it has been difficult to get this to pass\nCSP checks.\n\nWe can add support for CSP by taking a CSP nonce generator and using\nthat to inject a nonce value wherever we load these resources (either\nasking the client to download files or with inline scripts/styles).","shortMessageHtmlLink":"Support Content-Security-Policies via nonce values"}},{"before":null,"after":"95403c999a2fce4428f0d94aeb760eb3eac6f412","ref":"refs/heads/support-csp-nonces","pushedAt":"2024-07-24T22:33:20.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"samuelhwilliams","name":"Samuel Williams","path":"/samuelhwilliams","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2920760?s=80&v=4"},"commit":{"message":"Support Content-Security-Policies via nonce values\n\nContent-Security-Policy is a common way of restricting which assets\n(javascript, styles, etc) are loaded by the browser as a way of\npreventing a number of vulnerabilities.\n\nFlask-Admin loads a fair amount of JavaScript and styling to support its\nfunctionality, and previously it has been difficult to get this to pass\nCSP checks.\n\nWe can add support for CSP by taking a CSP nonce generator and using\nthat to inject a nonce value wherever we load these resources (either\nasking the client to download files or with inline scripts/styles).","shortMessageHtmlLink":"Support Content-Security-Policies via nonce values"}},{"before":"eca8e8b3ae0c56aa432eca7ed36fca1b5b259fd7","after":null,"ref":"refs/heads/page-size","pushedAt":"2024-07-24T21:15:07.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"samuelhwilliams","name":"Samuel Williams","path":"/samuelhwilliams","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2920760?s=80&v=4"}}],"hasNextPage":true,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"djE6ks8AAAAEjWxM-gA","startCursor":null,"endCursor":null}},"title":"Activity · pallets-eco/flask-admin"}