Security update __init__.py #1
No reviewers
Labels
No labels
bug
documentation
duplicate
enhancement
good first issue
help wanted
invalid
question
wontfix
No milestone
No project
No assignees
1 participant
Notifications
Due date
No due date set.
Dependencies
No dependencies set.
Reference: muyrety/Smarter#1
Loading…
Add table
Add a link
Reference in a new issue
No description provided.
Delete branch "patch-1"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Secret key was hardcoded to "dev". A proper secret key shall be added to .env to make it safe and publicly deployable. If it is not present it'll fallback to "dev" so it will work even if you don't do it
sqlite path also changed to make it more secure, database URL can be also added secretly.
Thank you for contributing. However, the default variables would be overwritten in production by the configuration loaded from config.py in the instance folder. This is recommended in the README.md. Although, a comment could be added in the code for more clarity. Same goes for the database.
Oh I see, sorry for that.
Pull request closed