CherryPy Security

classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view

CherryPy Security

Hello CherryPy developers! My name is Craig Younkins. I'm an intern at
OWASP, the Open Web Application Security Project, and this summer I'm
focusing on web security in Python. My mission is to help developers
make more secure applications.

First, I'd like to invite you to a new community -
. I started this community a week ago as a hub for security in Python.
We're writing articles on security topics and how they pertain to
Python, analyzing the security of software, and providing a forum
where developers can get answers to their security questions. If
you're interested, you can help this blossoming community by
contributing to our wiki.

Second, I'd like to help you, the developers, take a look at the
security of
CherryPy. I've created a template page for CherryPy on our wiki
with a number of questions developers can answer that will help
clarify the security of the framework.
Of course, that page links to the broader security topics including
XSS, CSRF, Cryptography, and more.

If any developers are concerned about security or have a security-
related question, we're here with the answers. Join our Google Group:


Craig Younkins

You received this message because you are subscribed to the Google Groups "cherrypy-devel" group.
To post to this group, send email to [hidden email].
To unsubscribe from this group, send email to [hidden email].
For more options, visit this group at