Workflow

Plone.namedfile

Latest version: v7.0.1

Safety actively analyzes 723152 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 11 of 14

2.0.2

Not secure
------------------

* Use plone.app.imaging's (>=1.0.8) quality setting if it exists.
https://dev.plone.org/ticket/13337
[khink]

* fix invalidation on contexts that do not implement dublin core; Notably
portlet assignments. Fallback is bobo_modification_time. Maybe portlet
assignments should implement modified() instead?
[tmog]

* Fixed handling of TTW Dexterity content type image field
data when image data is large and stored as
zope.app.file.file.FileChunk in ZODB instead of raw string data.
Issue appearated after Plone 4.3 migration [miohtama]

2.0.1

Not secure
------------------

* Add direction parameter support in scaling (was ignored in tag and scale
functions).
Now calling tag function with parameter direction='down' crops the image.
direction='thumbnail' by default so default behaviour remains the same.
[jriboux]

2.0

Not secure
----------------

* Move file and image value implementations here instead of extending
the ones from zope.app.file and z3c.blobfile. This helps tame a mess
of dependencies.
[davisagli]

* The blob-based file and image implementations are now always available.
(But they will only work if Zope is using a storage with blob support.)
[davisagli]

* Add support for HEAD requests to images view
[anthonygerrard]

* Add hook to override headers in subclasses of file download view
[anthonygerrard]

* Don't set filename in header if filename contains non ascii chars.
[do3cc]

* Adding Dexterity Image caused TypeError if jpeg file contained
corrupt metadata. Closes http://dev.plone.org/ticket/12753.
[patch by joka, applied by kleist]

1.0.6

Not secure
------------------

* Fix test failure.
[davisagli]

* Fix bug in producing tag for a scale on an item with a unicode title
[tomster]

1.0.5

Not secure
------------------

* Make the ``download`` view respect custom read permissions for the field
being downloaded, rather than only checking the view permission for the
object as a whole.
[davisagli]

1.0.4

Not secure
------------------

* Fix bug in producing tag for a scale on an item whose title has non-ASCII
characters.
[davisagli]

* Make sure image scales of allowed attributes can be accessed on disallowed
containers.
[davisagli]

* Add unit tests for safe_filename, since not exercised within this module.
(should be moved to plone.formwidget.namedfile?)
[lentinj]

Page 11 of 14

Links

Releases

Has known vulnerabilities

Previous Next

© 2025 Safety CLI Cybersecurity Inc. All Rights Reserved.