PyPi: Fflogsapi

CVE-2024-26130

Safety vulnerability ID: 67467

This vulnerability was reviewed by experts

The information on this page was manually curated by our Cybersecurity Intelligence Team.

Created at Feb 21, 2024 Updated at Nov 29, 2024
Scan your Python projects for vulnerabilities →

Advisory

Fflogsapi version 2.1.0 upgrades its cryptography library to version 42.0.5 from 39.0.1 to address the security issue CVE-2024-26130.

Affected package

fflogsapi

Latest version: 2.1.2

Python client for the FF Logs v2 API

Affected versions

Fixed versions

Vulnerability changelog

* Added support for the new phase data exposed by the API. See
[the official v2 API docs](https://www.fflogs.com/v2-api-docs/ff/encounterphases.doc.html)
for more information
* Phase information is exposed at the fight level in this client (`FFLogsFight.phases`),
*not* at the report level
* Fix quotes not being properly escaped in query filters
* System temporary directories are now used for query caches
* As a result, the `cache_directory` param on the client is now deprecated
* Bump cryptography dependency (vulnerability fix)

Resources

Use this package?

Scan your Python project for dependency vulnerabilities in two minutes

Scan your application