| CARVIEW |
Select Language
HTTP/2 200
server: nginx
content-type: text/html; charset=utf-8
content-language: en
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
referrer-policy: same-origin
cross-origin-opener-policy: same-origin
expires: Sat, 11 Oct 2025 09:05:18 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000; includeSubDomains; preload
permissions-policy: interest-cohort=()
x-xss-protection: 1; mode=block
access-control-allow-origin: https://code.djangoproject.com
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
age: 0
date: Sat, 11 Oct 2025 09:00:18 GMT
x-served-by: cache-fra-eddf8230057-FRA, cache-bom-vanm7210021-BOM
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1760173218.045905,VS0,VE254
vary: Cookie, Accept-Language, Accept-Encoding
content-length: 6127
August 2013 | Weblog | Django
Skip to main content
archive
-
DjangoCon US 2013 travel grants awarded
Posted by Russell Keith-Magee on Aug. 16, 2013Travel grants for DjangoCon US 2013 have now been awarded.
Read more -
Security releases issued
Posted by Jacob Kaplan-Moss on Aug. 13, 2013Today the Django team is issuing multiple releases -- Django 1.4.6, Django 1.5.2, and Django 1.6 beta 2 -- which fix two security issues.
Read more -
Security advisory: BREACH and Django
Posted by Jacob Kaplan-Moss on Aug. 6, 2013At last week's Black Hat conference, researchers announced the BREACH attack, a new attack on web apps that can recover data even when secured with SSL connections. We believe that BREACH may be used to compromise Django's CSRF protection, so we're issuing this advisory so that our users can defend themselves.
Read more
