Workflow

Django-storages

Latest version: v1.14.5

Safety actively analyzes 721794 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 6 of 9

1.5.2

Not secure
******************

* Actually use ``SFTP_STORAGE_HOST`` in ``SFTPStorage`` backend (`204`_)
* Fix ``S3Boto3Storage`` to avoid race conditions in a multi-threaded WSGI environment (`238`_)
* Fix trying to localize a naive datetime when ``settings.USE_TZ`` is ``False`` in ``S3Boto3Storage.modified_time``.
(`235`_, `234`_)
* Fix automatic bucket creation in ``S3Boto3Storage`` when ``AWS_AUTO_CREATE_BUCKET`` is ``True`` (`196`_)
* Improve the documentation for the S3 backends

.. _204: https://github.com/jschneier/django-storages/pull/204
.. _238: https://github.com/jschneier/django-storages/pull/238
.. _234: https://github.com/jschneier/django-storages/issues/234
.. _235: https://github.com/jschneier/django-storages/pull/235
.. _196: https://github.com/jschneier/django-storages/pull/196

1.5.1

Not secure
******************

* **Breaking:** Drop support for Django 1.7 (`185`_)
* **Deprecation:** hashpath, image, overwrite, mogile, symlinkorcopy, database, mogile, couchdb.
See (`202`_) to discuss maintenance going forward
* Use a fixed ``mtime`` argument for ``GzipFile`` in ``S3BotoStorage`` and ``S3Boto3Storage`` to ensure
a stable output for gzipped files
* Use ``.putfileobj`` instead of ``.put`` in ``S3Boto3Storage`` to use the transfer manager,
allowing files greater than 5GB to be put on S3 (`194`_ , `201`_)
* Update ``S3Boto3Storage`` for Django 1.10 (`181`_) (``get_modified_time`` and ``get_accessed_time``)
* Fix bad kwarg name in ``S3Boto3Storage`` when `AWS_PRELOAD_METADATA` is `True` (`189`_, `190`_)

.. _202: https://github.com/jschneier/django-storages/issues/202
.. _201: https://github.com/jschneier/django-storages/pull/201
.. _194: https://github.com/jschneier/django-storages/issues/194
.. _190: https://github.com/jschneier/django-storages/pull/190
.. _189: https://github.com/jschneier/django-storages/issues/189
.. _185: https://github.com/jschneier/django-storages/pull/185
.. _181: https://github.com/jschneier/django-storages/pull/181

1.5.0

Not secure
******************

* Add new backend ``S3Boto3Storage`` (`179`_)
* Add a `strict` option to `utils.setting` (`176`_)
* Tests, documentation, fixing ``.close`` for ``SFTPStorage`` (`177`_)
* Tests, documentation, add `.readlines` for ``FTPStorage`` (`175`_)
* Tests and documentation for ``DropBoxStorage`` (`174`_)
* Fix ``MANIFEST.in`` to not ship ``.pyc`` files. (`145`_)
* Enable CI testing of Python 3.5 and fix test failure from api change (`171`_)

.. _145: https://github.com/jschneier/django-storages/pull/145
.. _171: https://github.com/jschneier/django-storages/pull/171
.. _174: https://github.com/jschneier/django-storages/pull/174
.. _175: https://github.com/jschneier/django-storages/pull/175
.. _177: https://github.com/jschneier/django-storages/pull/177
.. _176: https://github.com/jschneier/django-storages/pull/176
.. _179: https://github.com/jschneier/django-storages/pull/179

1.4.1

Not secure
******************

* Files that have a guessable encoding (e.g. gzip or compress) will be uploaded with that Content-Encoding
in the ``s3boto`` backend. Compressable types such as ``application/javascript`` will still be gzipped.
PR `122`_
* Fix ``DropBoxStorage.exists`` check and add ``DropBoxStorage.url`` (`127`_)
* Add ``GS_HOST`` setting (with a default of ``GSConnection.DefaultHost``) to fix ``GSBotoStorage``.
(`124`_, `125`_)

.. _122: https://github.com/jschneier/django-storages/pull/122
.. _127: https://github.com/jschneier/django-storages/pull/127
.. _124: https://github.com/jschneier/django-storages/issues/124
.. _125: https://github.com/jschneier/django-storages/pull/125

1.4

Not secure
****************

* This package is now released on PyPI as `django-storages`. Please update your requirements files to
`django-storages==1.4`.

1.3.2

******************

* Fix memory leak from not closing underlying temp file in ``s3boto`` backend (`106`_)
* Allow easily specifying a custom expiry time when generating a url for ``S3BotoStorage`` (`96`_)
* Check for bucket existence when the empty path ('') is passed to ``storage.exists`` in ``S3BotoStorage`` -
this prevents a crash when running ``collectstatic -c`` on Django 1.9.1 (`112`_) fixed in `116`_

.. _106: https://github.com/jschneier/django-storages/pull/106
.. _96: https://github.com/jschneier/django-storages/pull/96
.. _112: https://github.com/jschneier/django-storages/issues/112
.. _116: https://github.com/jschneier/django-storages/pull/116

Page 6 of 9

Links

Releases

Has known vulnerabilities

Previous Next

© 2025 Safety CLI Cybersecurity Inc. All Rights Reserved.