Flux
Couleur d'accent
Toutes les catégories

Programmation

2074 articles

CVE-2026-49210: XSS in symfony/ux-live-component via attacker-controlled child component tag

CVE-2026-49210: XSS in symfony/ux-live-component via attacker-controlled child component tag

Affected versions Symfony versions >=2.8.0, =3.0.0, <3.1.0 of the Symfony UX Live Component component are affected by this security issue. The issue has been fixed in Symfony 2.36.0, 3.1.0. Description Symfony\UX\LiveComponent\Util\ChildComponentPartialRenderer::createHtml()…

Symfony Blog
CVE-2026-49209: Denial of service in symfony/ux-live-component via unbounded batch action requests

CVE-2026-49209: Denial of service in symfony/ux-live-component via unbounded batch action requests

Affected versions Symfony versions >=2.5.0, =3.0.0, <3.1.0 of the Symfony UX Live Component component are affected by this security issue. The issue has been fixed in Symfony 2.36.0, 3.1.0. Description Symfony\UX\LiveComponent\Controller\BatchActionController::__invoke()…

Symfony Blog
datasette 1.0a31

datasette 1.0a31

Release: datasette 1.0a31 Another significant alpha release, with two new headline features. Datasette now offers users with the necessary permissions the ability to both execute write queries against their database and to save stored queries (renamed from "canned queries") both privately and for use by other members of their Datasette instance. There's more detail in SQL write queries and stored queries in Datasette 1.0a31 on the Datasette blog, which now has three posts introducing new…

Simon Willison's Weblog
Anthropic's run-rate revenue hits $47 billion

Anthropic's run-rate revenue hits $47 billion

The most interesting thing about Anthropic's $65B Series H announcement is this line (emphasis mine): Since our Series G in February, adoption has continued to grow across global enterprise customers, and our run-rate revenue crossed $47 billion earlier this month. Anthropic have made a bit of a habit of sharing their "run-rate revenue" in this kind of announcement, which is an annualized projection of their current revenue - typically calculated by taking the most recent month and multiplying…

Simon Willison's Weblog
Esc