Skip to content

v1.0.25 — Hotfix

Choose a tag to compare

View all tags
@pkasinathan pkasinathan released this 07 Mar 00:10
· 5 commits to main since this release
v1.0.25
71bc405

Fixed

  • Restored allow_unsafe_werkzeug=True — the v1.0.24 security hardening removed it (VULN-10), but Flask-SocketIO requires it when neither eventlet nor gevent is installed. Without it the web server crashed on startup. The actual VULN-10 concerns (debug info, version disclosure) remain mitigated via debug=False and Server header stripping.

Upgrade: pip3 install -U chronometry-ai

Assets 2
Loading