{"id":2902619,"name":"restrictedpython","ecosystem":"pypi","description":"RestrictedPython is a defined subset of the Python language which allows to provide a program input into a trusted environment.","homepage":"https://github.com/zopefoundation/RestrictedPython","licenses":"ZPL-2.1","normalized_licenses":["ZPL-2.1"],"repository_url":"https://github.com/zopefoundation/RestrictedPython","keywords_array":["restricted","execution","security","untrusted","code"],"namespace":null,"versions_count":42,"first_release_published_at":"2007-07-28T09:59:32.000Z","latest_release_published_at":"2010-07-09T19:11:26.000Z","latest_release_number":"3.6.0","last_synced_at":"2026-04-12T09:45:03.175Z","created_at":"2022-04-10T12:28:21.179Z","updated_at":"2026-04-12T15:11:03.749Z","registry_url":"https://pypi.org/project/restrictedpython/","install_command":"pip install restrictedpython --index-url https://pypi.org/simple","documentation_url":"https://restrictedpython.readthedocs.io/","metadata":{"funding":null,"documentation":"https://restrictedpython.readthedocs.io/","classifiers":["Development Status :: 6 - Mature","License :: OSI Approved :: Zope Public License","Operating System :: OS Independent","Programming Language :: Python","Programming Language :: Python :: 3","Programming Language :: Python :: 3.10","Programming Language :: Python :: 3.11","Programming Language :: Python :: 3.12","Programming Language :: Python :: 3.13","Programming Language :: Python :: 3.14","Programming Language :: Python :: 3.9","Programming Language :: Python :: Implementation :: CPython","Topic :: Security"],"normalized_name":"restrictedpython","project_status":null},"repo_metadata":{"id":7178722,"uuid":"8480726","full_name":"zopefoundation/RestrictedPython","owner":"zopefoundation","description":"A restricted execution environment for Python to run untrusted code.","archived":false,"fork":false,"pushed_at":"2024-08-07T06:30:06.000Z","size":1736,"stargazers_count":457,"open_issues_count":21,"forks_count":38,"subscribers_count":77,"default_branch":"master","last_synced_at":"2024-09-06T15:58:42.557Z","etag":null,"topics":["code","hacktoberfest","plone","python","restrictions","untrusted","zope"],"latest_commit_sha":null,"homepage":"http://restrictedpython.readthedocs.io/","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/zopefoundation.png","metadata":{"files":{"readme":"README.rst","changelog":"CHANGES.rst","contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE.txt","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":"docs/roadmap/index.rst","authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2013-02-28T14:29:45.000Z","updated_at":"2024-09-06T09:49:58.000Z","dependencies_parsed_at":"2023-11-06T08:29:15.874Z","dependency_job_id":"e622b7b7-4bbf-4033-ba48-a2e348bd57c2","html_url":"https://github.com/zopefoundation/RestrictedPython","commit_stats":{"total_commits":616,"total_committers":51,"mean_commits":12.07843137254902,"dds":0.6655844155844156,"last_synced_commit":"ca2e613fe158595b7220162653206adf5ac0c3e3"},"previous_names":[],"tags_count":44,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/zopefoundation","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":218083434,"owners_count":16275356,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"},"owner_record":{"login":"zopefoundation","name":"Zope","uuid":"1163184","kind":"organization","description":"","email":null,"website":"https://www.zope.dev","location":null,"twitter":null,"company":null,"icon_url":"https://avatars.githubusercontent.com/u/1163184?v=4","repositories_count":393,"last_synced_at":"2023-04-09T06:01:48.113Z","metadata":{"has_sponsors_listing":false},"html_url":"https://github.com/zopefoundation","funding_links":[],"total_stars":2872,"followers":null,"following":null,"created_at":"2022-11-02T16:21:46.626Z","updated_at":"2023-04-09T06:01:50.004Z","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/zopefoundation","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/zopefoundation/repositories"},"tags":[{"name":"7.2","sha":"a5ab235f174943b0525b553b34c32583a72afb67","kind":"tag","published_at":"2024-08-02T07:33:51.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/7.2","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/7.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/7.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/7.2/manifests"},{"name":"7.2a1.dev0","sha":"2fd9544661e4205e0bdfa548a4b0aa586463e295","kind":"tag","published_at":"2024-03-14T07:15:23.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/7.2a1.dev0","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/7.2a1.dev0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/7.2a1.dev0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/7.2a1.dev0/manifests"},{"name":"7.1","sha":"4b6d3751d9b188859ec2fa03290375049d2de491","kind":"tag","published_at":"2024-03-14T07:13:42.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/7.1","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/7.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/7.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/7.1/manifests"},{"name":"7.0","sha":"b5d4ba289306cbee128fb0ab8a80feda0c72ed6f","kind":"tag","published_at":"2023-11-17T07:19:06.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/7.0","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/7.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/7.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/7.0/manifests"},{"name":"7.0a2.dev0","sha":"01459ed41d7929df9cbc70255d82b4a3a99995d5","kind":"tag","published_at":"2023-11-06T07:19:50.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/7.0a2.dev0","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/7.0a2.dev0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/7.0a2.dev0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/7.0a2.dev0/manifests"},{"name":"7.0a1.dev1","sha":"251d3353534966dda3788a63caa1350a6d46c438","kind":"tag","published_at":"2023-09-06T06:17:43.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/7.0a1.dev1","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/7.0a1.dev1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/7.0a1.dev1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/7.0a1.dev1/manifests"},{"name":"5.4","sha":"7031e2d8d83ec5cdbe2b38c78beab0cdab565ee8","kind":"tag","published_at":"2023-08-30T06:29:58.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/5.4","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/5.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/5.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/5.4/manifests"},{"name":"6.2","sha":"a460be4348edb773138d7b3cccab9a2bb67e62f4","kind":"tag","published_at":"2023-08-30T06:29:23.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/6.2","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/6.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/6.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/6.2/manifests"},{"name":"5.3","sha":"f9ef13be3f38cb55fb6f714c608075e3c895032e","kind":"tag","published_at":"2023-07-08T08:11:46.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/5.3","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/5.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/5.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/5.3/manifests"},{"name":"6.1","sha":"311f2f7eee4988f25f402fbc927360f5f7f5771f","kind":"tag","published_at":"2023-07-08T07:29:27.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/6.1","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/6.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/6.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/6.1/manifests"},{"name":"7.0a1.dev0","sha":"b0ba4d24089c00f2e671c608e007cb40d10e55a0","kind":"tag","published_at":"2023-03-10T07:13:00.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/7.0a1.dev0","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/7.0a1.dev0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/7.0a1.dev0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/7.0a1.dev0/manifests"},{"name":"6.0","sha":"725665ae49d604f05bce91555965569456fb2cf5","kind":"tag","published_at":"2022-11-03T07:09:07.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/6.0","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/6.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/6.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/6.0/manifests"},{"name":"6.0a1.dev0","sha":"7772d068628aaadf6be5ff986c2db439cc8e78f0","kind":"tag","published_at":"2022-06-22T06:23:40.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/6.0a1.dev0","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/6.0a1.dev0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/6.0a1.dev0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/6.0a1.dev0/manifests"},{"name":"5.3a1.dev0","sha":"6f1d9d092f83378a95bf570061ba40a32acf2654","kind":"tag","published_at":"2022-04-13T08:06:58.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/5.3a1.dev0","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/5.3a1.dev0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/5.3a1.dev0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/5.3a1.dev0/manifests"},{"name":"5.2","sha":"3a532d144c3924f7bf1fab9ad1ce14b29c119c7a","kind":"tag","published_at":"2021-11-19T13:20:23.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/5.2","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/5.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/5.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/5.2/manifests"},{"name":"5.2a1.dev0","sha":"e5cce77c91fb6358e6be6282565d75e0b7ee788f","kind":"tag","published_at":"2021-10-28T06:16:41.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/5.2a1.dev0","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/5.2a1.dev0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/5.2a1.dev0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/5.2a1.dev0/manifests"},{"name":"5.1","sha":"5cbfb1c8edb623fed5bbc415926d86761ad1b185","kind":"tag","published_at":"2020-10-07T12:19:29.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/5.1","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/5.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/5.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/5.1/manifests"},{"name":"5.0","sha":"58ad5bb642455ddf08b81dc4cdb0d73c14cffd6e","kind":"tag","published_at":"2019-09-03T06:16:35.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/5.0","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/5.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/5.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/5.0/manifests"},{"name":"4.0","sha":"4655a49cc4f0e96ba387f0153c45cb22eb63c5ba","kind":"tag","published_at":"2019-05-10T09:49:44.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/4.0","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/4.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/4.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/4.0/manifests"},{"name":"4.0b8","sha":"1da3189f0fb4bdb7cd74981cc24b3169cf907139","kind":"tag","published_at":"2019-02-09T13:48:59.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/4.0b8","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/4.0b8","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/4.0b8","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/4.0b8/manifests"},{"name":"4.0b7","sha":"5e3f5cd9ccc971f95dd3b87533b6fe5fca8a9da8","kind":"tag","published_at":"2018-10-30T08:58:02.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/4.0b7","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/4.0b7","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/4.0b7","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/4.0b7/manifests"},{"name":"4.0b6","sha":"4a219eb49c935ab2c26fa507352594dab07fc4d6","kind":"tag","published_at":"2018-10-05T11:01:23.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/4.0b6","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/4.0b6","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/4.0b6","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/4.0b6/manifests"},{"name":"4.0b5","sha":"8f089f29286e08b45070e7e65b62aa31d359228c","kind":"tag","published_at":"2018-09-05T09:13:57.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/4.0b5","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/4.0b5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/4.0b5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/4.0b5/manifests"},{"name":"4.0b4","sha":"baaabfd313caea0bd8ecebe02089db035f936f5d","kind":"tag","published_at":"2018-05-18T12:29:31.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/4.0b4","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/4.0b4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/4.0b4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/4.0b4/manifests"},{"name":"4.0b3","sha":"00618868e73b60c77dcec5eb510bef5b03a8798a","kind":"tag","published_at":"2018-04-12T09:00:33.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/4.0b3","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/4.0b3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/4.0b3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/4.0b3/manifests"},{"name":"4.0b2","sha":"13a4316fcc9348dd8ea3202e39b2a0b6099d2bd9","kind":"tag","published_at":"2017-09-15T15:14:22.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/4.0b2","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/4.0b2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/4.0b2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/4.0b2/manifests"},{"name":"4.0b1","sha":"ebb82eeb78c783cf527f23f68be34192d572f0a6","kind":"tag","published_at":"2017-09-15T13:03:26.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/4.0b1","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/4.0b1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/4.0b1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/4.0b1/manifests"},{"name":"4.0a3","sha":"d92736b3aed4824fe0f561556bc29d222cd402b5","kind":"tag","published_at":"2017-06-20T07:25:44.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/4.0a3","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/4.0a3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/4.0a3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/4.0a3/manifests"},{"name":"4.0a2","sha":"fbe0ae3343cde92e76a244a46db17784866acdda","kind":"tag","published_at":"2017-05-26T11:33:51.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/4.0a2","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/4.0a2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/4.0a2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/4.0a2/manifests"},{"name":"4.0a1","sha":"badda1829a75013b5f9237a378ae56d4ea850bc2","kind":"tag","published_at":"2017-05-05T11:53:52.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/4.0a1","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/4.0a1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/4.0a1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/4.0a1/manifests"},{"name":"3.6.0","sha":"c3bab8afa61c2acca687c95e5cb7aa1df719b6f3","kind":"commit","published_at":"2010-07-09T17:10:39.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/3.6.0","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/3.6.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/3.6.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/3.6.0/manifests"},{"name":"backups/davisagli-python27@114380","sha":"99d08ba3b3867d640c5e444344812c08118f25ce","kind":"commit","published_at":"2010-07-08T17:42:33.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/backups/davisagli-python27@114380","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/backups/davisagli-python27@114380","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/backups%2Fdavisagli-python27@114380","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/backups%2Fdavisagli-python27@114380/manifests"},{"name":"3.6.0a1","sha":"0e7011d5ac974960fca498d2b78bb6e8c1e08ca9","kind":"commit","published_at":"2010-06-05T16:36:25.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/3.6.0a1","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/3.6.0a1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/3.6.0a1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/3.6.0a1/manifests"},{"name":"3.5.2","sha":"33506c5ed90d74ecee3382c40f6a1143b6f47102","kind":"commit","published_at":"2010-04-30T17:09:28.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/3.5.2","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/3.5.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/3.5.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/3.5.2/manifests"},{"name":"3.5.1","sha":"0479b5d37f4cc616305e3a4a8d5ac7f5bcc532ca","kind":"commit","published_at":"2009-03-17T16:48:02.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/3.5.1","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/3.5.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/3.5.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/3.5.1/manifests"},{"name":"3.5.0","sha":"7f342bf9c5773c63c9d6b2b61530ad4f43397cfc","kind":"commit","published_at":"2009-02-09T21:38:33.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/3.5.0","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/3.5.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/3.5.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/3.5.0/manifests"},{"name":"3.4.3","sha":"8b08804356cb3841dea2dae4cd16df1c22d8b9af","kind":"commit","published_at":"2008-10-26T05:34:37.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/3.4.3","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/3.4.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/3.4.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/3.4.3/manifests"},{"name":"backups/nikhil_n-py25@79581","sha":"1239ddb89027a3e066048720222291e6456f8ada","kind":"commit","published_at":"2007-08-28T15:58:58.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/backups/nikhil_n-py25@79581","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/backups/nikhil_n-py25@79581","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/backups%2Fnikhil_n-py25@79581","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/backups%2Fnikhil_n-py25@79581/manifests"},{"name":"3.4.2","sha":"b31ed2e2006b03f30a9190ec8fe3dfe3be5209b9","kind":"commit","published_at":"2007-07-28T09:58:54.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/3.4.2","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/3.4.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/3.4.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/3.4.2/manifests"},{"name":"3.4.1","sha":"694ce52dab98d19662f6fe8277834f65b3c30dd3","kind":"commit","published_at":"2007-06-23T11:24:43.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/3.4.1","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/3.4.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/3.4.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/3.4.1/manifests"},{"name":"3.4.0","sha":"6fbafc53e6ea33446bf8e90de7159fff32823fdf","kind":"commit","published_at":"2007-06-04T17:54:17.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/3.4.0","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/3.4.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/3.4.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/3.4.0/manifests"},{"name":"backups/zope2@76328","sha":"607418634eea18d1fe5d9b54880791ea25b3fa3a","kind":"commit","published_at":"2007-01-13T16:42:22.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/backups/zope2@76328","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/backups/zope2@76328","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/backups%2Fzope2@76328","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/backups%2Fzope2@76328/manifests"},{"name":"3.2.0","sha":"bdcfb685f53380308f26fbcd777b492eb7c9087e","kind":"commit","published_at":"2006-04-05T16:06:32.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/3.2.0","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/3.2.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/3.2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/3.2.0/manifests"},{"name":"3.0.0","sha":"363618d54635583fb9cad35e11cab487b0b659f0","kind":"commit","published_at":"2006-04-05T15:59:48.000Z","download_url":"https://codeload.github.com/zopefoundation/RestrictedPython/tar.gz/3.0.0","html_url":"https://github.com/zopefoundation/RestrictedPython/releases/tag/3.0.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/3.0.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/tags/3.0.0/manifests"}]},"repo_metadata_updated_at":"2024-09-08T02:45:01.367Z","dependent_packages_count":15,"downloads":2105126,"downloads_period":"last-month","dependent_repos_count":716,"rankings":{"downloads":0.3592566287878788,"dependent_repos_count":0.45594055008931306,"dependent_packages_count":0.5949079511204363,"stargazers_count":3.4467724116161613,"forks_count":6.636673967521064,"docker_downloads_count":0.2684229951664124,"average":1.960329084050211},"purl":"pkg:pypi/restrictedpython","advisories":[{"uuid":"GSA_kwCzR0hTQS1nbWo5LWg4MjUtY2hxMs4ABDvw","url":"https://github.com/advisories/GHSA-gmj9-h825-chq2","title":"try/except* clauses could allow bypass RestrictedPython via type confusion bug in the CPython interpreter","description":"### Impact\nVia a type confusion bug in the CPython interpreter when using `try/except*` RestrictedPython could be bypassed.\n\nWe believe this should be fixed upstream in Python itself until that we remove support for `try/except*` from RestrictedPython.\n(It has been fixed for some Python versions.)\n\n### Patches\nPatched in version 8.0 by removing support for `try/except*` clauses\n\n### Workarounds\nThere is no workaround.\n\n### References\nnone\n","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2025-01-23T17:19:34.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":7.9,"cvss_vector":"CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:L","references":["https://github.com/zopefoundation/RestrictedPython/security/advisories/GHSA-gmj9-h825-chq2","https://github.com/zopefoundation/RestrictedPython/commit/48a92c5bb617a647cffd0dadd4d5cfe626bcdb2f","https://nvd.nist.gov/vuln/detail/CVE-2025-22153","https://github.com/advisories/GHSA-gmj9-h825-chq2"],"source_kind":"github","identifiers":["GHSA-gmj9-h825-chq2","CVE-2025-22153"],"repository_url":"https://github.com/zopefoundation/RestrictedPython","blast_radius":0.0,"created_at":"2025-01-23T18:09:10.912Z","updated_at":"2026-04-10T16:03:33.657Z","epss_percentage":0.00059,"epss_percentile":0.18552,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1nbWo5LWg4MjUtY2hxMs4ABDvw","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS1nbWo5LWg4MjUtY2hxMs4ABDvw","packages":[{"ecosystem":"pypi","package_name":"RestrictedPython","versions":[{"first_patched_version":"8.0","vulnerable_version_range":"\u003e= 6.0, \u003c 8.0"}],"purl":"pkg:pypi/restrictedpython"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1nbWo5LWg4MjUtY2hxMs4ABDvw/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS01cmZ2LTY2ZzQtanI4aM4AA_3y","url":"https://github.com/advisories/GHSA-5rfv-66g4-jr8h","title":"RestrictedPython information leakage via `AttributeError.obj` and the `string` module","description":"### Impact\nA user can gain access to protected (and potentially sensible) information indirectly via `AttributeError.obj` and the `string` module.\n\n### Patches\nThe problem will be fixed in version 7.3.\n\n\n### Workarounds\nIf the application does not require access to the module `string`, it can remove it from `RestrictedPython.Utilities.utility_builtins`  or otherwise do not make it available in the restricted execution environment.\n","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2024-09-30T17:14:00.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":8.7,"cvss_vector":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N","references":["https://github.com/zopefoundation/RestrictedPython/security/advisories/GHSA-5rfv-66g4-jr8h","https://github.com/zopefoundation/RestrictedPython/commit/d701cc36cccac36b21fa200f1f2d1945a9a215e6","https://nvd.nist.gov/vuln/detail/CVE-2024-47532","https://github.com/pypa/advisory-database/tree/main/vulns/restrictedpython/PYSEC-2024-186.yaml","https://github.com/advisories/GHSA-5rfv-66g4-jr8h"],"source_kind":"github","identifiers":["GHSA-5rfv-66g4-jr8h","CVE-2024-47532"],"repository_url":"https://github.com/zopefoundation/RestrictedPython","blast_radius":24.83774329407834,"created_at":"2024-09-30T18:06:17.499Z","updated_at":"2026-04-05T20:04:08.419Z","epss_percentage":0.00805,"epss_percentile":0.73773,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS01cmZ2LTY2ZzQtanI4aM4AA_3y","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS01cmZ2LTY2ZzQtanI4aM4AA_3y","packages":[{"ecosystem":"pypi","package_name":"RestrictedPython","versions":[{"first_patched_version":"7.3","vulnerable_version_range":"\u003c 7.3"}],"purl":"pkg:pypi/restrictedpython"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS01cmZ2LTY2ZzQtanI4aM4AA_3y/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS14ancyLTZqbTktcmY2N84AA1lM","url":"https://github.com/advisories/GHSA-xjw2-6jm9-rf67","title":"Sandbox escape via various forms of \"format\".","description":"### Impact\nPython's \"format\" functionality allows someone controlling the format string to \"read\" all objects accessible through recursive attribute lookup and subscription from objects he can access. This can lead to critical information disclosure.\nWith `RestrictedPython`, the format functionality is available via the `format` and `format_map` methods of `str` (and `unicode`) (accessed either via the class or its instances) and via `string.Formatter`.\nAll known versions of `RestrictedPython` are vulnerable. \n\n### Patches\nThe issue will be fixed in 5.4 and 6.2.\n\n### Workarounds\nThere are no workarounds to fix the issue without upgrading.\n\n### References\n* https://docs.python.org/3/library/stdtypes.html#str.format_map\n* http://lucumr.pocoo.org/2016/12/29/careful-with-str-format/\n* https://www.exploit-db.com/exploits/51580\n\n### For more information\n\nIf you have any questions or comments about this advisory:\n\n* Open an issue in the [RestrictedPython issue tracker](https://github.com/zopefoundation/RestrictedPython/issues)\n* Email us at [security@plone.org](mailto:security@plone.org)\n\n### Credits\n\nThanks for analysing and reporting the go to:\n\n* Abhishek Govindarasu\n* Ankush Menat\n* Ward Theunisse\n\n","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2023-08-30T20:47:58.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":8.3,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:L","references":["https://github.com/zopefoundation/RestrictedPython/security/advisories/GHSA-xjw2-6jm9-rf67","https://nvd.nist.gov/vuln/detail/CVE-2023-41039","https://github.com/zopefoundation/RestrictedPython/commit/4134aedcff17c977da7717693ed89ce56d54c120","https://github.com/advisories/GHSA-xjw2-6jm9-rf67"],"source_kind":"github","identifiers":["GHSA-xjw2-6jm9-rf67","CVE-2023-41039"],"repository_url":"https://github.com/zopefoundation/RestrictedPython","blast_radius":0.0,"created_at":"2023-08-30T21:05:29.841Z","updated_at":"2026-04-05T20:08:10.116Z","epss_percentage":0.00088,"epss_percentile":0.25046,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS14ancyLTZqbTktcmY2N84AA1lM","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS14ancyLTZqbTktcmY2N84AA1lM","packages":[{"ecosystem":"pypi","package_name":"RestrictedPython","versions":[{"first_patched_version":"6.2","vulnerable_version_range":"\u003e= 6.0, \u003c= 6.1"},{"first_patched_version":"5.4","vulnerable_version_range":"\u003c= 5.3"}],"purl":"pkg:pypi/restrictedpython"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS14ancyLTZqbTktcmY2N84AA1lM/related_packages","related_advisories":[]},{"uuid":"GSA_kwCzR0hTQS13cWM4LXgycHItN2pxaM4AA0id","url":"https://github.com/advisories/GHSA-wqc8-x2pr-7jqh","title":"RestrictedPython vulnerable to arbitrary code execution via stack frame sandbox escape","description":"### Impact\n\nRestrictedPython does not check access to stack frames and their attributes. Stack frames are accessible within at least generators and generator expressions, which are allowed inside RestrictedPython. An attacker with access to a RestrictedPython environment can write code that gets the current stack frame in a generator and then walk the stack all the way beyond the RestrictedPython invocation boundary, thus breaking out of the restricted scope allowing the call of unrestricted Python code and therefore potentially allowing arbitrary code execution in the Python interpreter.\n\nAll RestrictedPython deployments that allow untrusted users to write Python code in the RestrictedPython environment are at risk. In terms of Zope and Plone, this would mean deployments where the administrator allows untrusted users to create and/or edit objects of type `Script (Python)`, `DTML Method`, `DTML Document` or `Zope Page Template`. This is a non-default configuration and likely to be extremely rare.\n\n### Patches\n\nThe problem has been fixed in releases 5.3 and 6.1.\n\n### Workarounds\n\nThere is no workaround available. If you cannot upgrade to the latest release you should ensure the RestrictedPython environment is only available for trusted users.\n\n### References\n\n- [RestrictedPython security advisory GHSA-wqc8-x2pr-7jqh](https://github.com/zopefoundation/RestrictedPython/security/advisories/GHSA-wqc8-x2pr-7jqh)\n\n## For more information\n\nIf you have any questions or comments about this advisory:\n\n- Open an issue in the [RestrictedPython issue tracker](https://github.com/zopefoundation/RestrictedPython/issues)\n- Email us at [security@plone.org](mailto:security@plone.org)\n\n## Credits\n\nThanks for analysing and reporting the go to:\n- Nakul Choudhary (Quasar0147 on GitHub)\n- despawningbone on GitHub\n- Robert Xiao (nneonneo on GitHub)","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2023-07-10T21:53:22.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":8.4,"cvss_vector":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L","references":["https://github.com/zopefoundation/RestrictedPython/security/advisories/GHSA-wqc8-x2pr-7jqh","https://github.com/zopefoundation/RestrictedPython/commit/c8eca66ae49081f0016d2e1f094c3d72095ef531","https://nvd.nist.gov/vuln/detail/CVE-2023-37271","https://github.com/pypa/advisory-database/tree/main/vulns/restrictedpython/PYSEC-2023-118.yaml","https://github.com/advisories/GHSA-wqc8-x2pr-7jqh"],"source_kind":"github","identifiers":["GHSA-wqc8-x2pr-7jqh","CVE-2023-37271"],"repository_url":"https://github.com/zopefoundation/RestrictedPython","blast_radius":0.0,"created_at":"2023-07-10T22:03:37.312Z","updated_at":"2026-04-12T14:07:12.992Z","epss_percentage":0.00307,"epss_percentile":0.53831,"api_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS13cWM4LXgycHItN2pxaM4AA0id","html_url":"https://advisories.ecosyste.ms/advisories/GSA_kwCzR0hTQS13cWM4LXgycHItN2pxaM4AA0id","packages":[{"ecosystem":"pypi","package_name":"RestrictedPython","versions":[{"first_patched_version":"6.1","vulnerable_version_range":"\u003e= 6.0a1.dev0, \u003c 6.1"},{"first_patched_version":"5.3","vulnerable_version_range":"\u003c 5.3"}],"purl":"pkg:pypi/restrictedpython"}],"related_packages_url":"https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS13cWM4LXgycHItN2pxaM4AA0id/related_packages","related_advisories":[]}],"docker_usage_url":"https://docker.ecosyste.ms/usage/pypi/restrictedpython","docker_dependents_count":67,"docker_downloads_count":834658299,"usage_url":"https://repos.ecosyste.ms/usage/pypi/restrictedpython","dependent_repositories_url":"https://repos.ecosyste.ms/api/v1/usage/pypi/restrictedpython/dependencies","status":null,"funding_links":[],"critical":null,"issue_metadata":{"last_synced_at":"2024-09-06T15:36:19.968Z","issues_count":66,"pull_requests_count":69,"avg_time_to_close_issue":9982177.461538462,"avg_time_to_close_pull_request":1180472.8208955224,"issues_closed_count":52,"pull_requests_closed_count":67,"pull_request_authors_count":19,"issue_authors_count":42,"avg_comments_per_issue":3.3484848484848486,"avg_comments_per_pull_request":1.710144927536232,"merged_pull_requests_count":62,"bot_issues_count":0,"bot_pull_requests_count":0,"past_year_issues_count":17,"past_year_pull_requests_count":9,"past_year_avg_time_to_close_issue":926881.7142857143,"past_year_avg_time_to_close_pull_request":860251.2222222222,"past_year_issues_closed_count":7,"past_year_pull_requests_closed_count":9,"past_year_pull_request_authors_count":5,"past_year_issue_authors_count":11,"past_year_avg_comments_per_issue":3.588235294117647,"past_year_avg_comments_per_pull_request":1.6666666666666667,"past_year_bot_issues_count":0,"past_year_bot_pull_requests_count":0,"past_year_merged_pull_requests_count":8,"issues_url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/repositories/zopefoundation%2FRestrictedPython/issues","maintainers":[{"login":"icemac","count":38,"url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/authors/icemac"},{"login":"loechel","count":21,"url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/authors/loechel"},{"login":"dataflake","count":6,"url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/authors/dataflake"},{"login":"jugmac00","count":3,"url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/authors/jugmac00"},{"login":"ale-rt","count":1,"url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/authors/ale-rt"},{"login":"davisagli","count":1,"url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/authors/davisagli"},{"login":"mauritsvanrees","count":1,"url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/authors/mauritsvanrees"}],"active_maintainers":[{"login":"loechel","count":4,"url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/authors/loechel"},{"login":"icemac","count":3,"url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/authors/icemac"},{"login":"mauritsvanrees","count":1,"url":"https://issues.ecosyste.ms/api/v1/hosts/GitHub/authors/mauritsvanrees"}]},"versions_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/packages/restrictedpython/versions","version_numbers_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/packages/restrictedpython/version_numbers","dependent_packages_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/packages/restrictedpython/dependent_packages","related_packages_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/packages/restrictedpython/related_packages","codemeta_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/packages/restrictedpython/codemeta","maintainers":[{"uuid":"agroszer","login":"agroszer","name":null,"email":null,"url":null,"packages_count":361,"html_url":"https://pypi.org/user/agroszer/","role":null,"created_at":"2023-02-25T08:37:01.199Z","updated_at":"2023-02-25T08:37:01.199Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/maintainers/agroszer/packages"},{"uuid":"davisagli","login":"davisagli","name":null,"email":null,"url":null,"packages_count":534,"html_url":"https://pypi.org/user/davisagli/","role":null,"created_at":"2023-02-25T08:37:01.228Z","updated_at":"2023-02-25T08:37:01.228Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/maintainers/davisagli/packages"},{"uuid":"hannosch","login":"hannosch","name":null,"email":null,"url":null,"packages_count":500,"html_url":"https://pypi.org/user/hannosch/","role":null,"created_at":"2023-02-25T08:37:01.235Z","updated_at":"2023-02-25T08:37:01.235Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/maintainers/hannosch/packages"},{"uuid":"icemac","login":"icemac","name":null,"email":null,"url":null,"packages_count":249,"html_url":"https://pypi.org/user/icemac/","role":null,"created_at":"2023-02-25T08:37:01.242Z","updated_at":"2023-02-25T08:37:01.242Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/maintainers/icemac/packages"},{"uuid":"J1m","login":"J1m","name":null,"email":null,"url":null,"packages_count":275,"html_url":"https://pypi.org/user/J1m/","role":null,"created_at":"2023-02-25T08:37:01.257Z","updated_at":"2023-02-25T08:37:01.257Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/maintainers/J1m/packages"},{"uuid":"mgedmin","login":"mgedmin","name":null,"email":null,"url":null,"packages_count":302,"html_url":"https://pypi.org/user/mgedmin/","role":null,"created_at":"2023-02-25T08:37:01.264Z","updated_at":"2023-02-25T08:37:01.264Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/maintainers/mgedmin/packages"},{"uuid":"tlotze","login":"tlotze","name":null,"email":null,"url":null,"packages_count":294,"html_url":"https://pypi.org/user/tlotze/","role":null,"created_at":"2023-02-25T08:37:01.271Z","updated_at":"2023-02-25T08:37:01.271Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/maintainers/tlotze/packages"},{"uuid":"tseaver","login":"tseaver","name":null,"email":null,"url":null,"packages_count":146,"html_url":"https://pypi.org/user/tseaver/","role":null,"created_at":"2023-02-25T08:37:01.278Z","updated_at":"2023-02-25T08:37:01.278Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/maintainers/tseaver/packages"},{"uuid":"Zope Foundation","login":"Zope Foundation","name":null,"email":null,"url":null,"packages_count":45,"html_url":"https://pypi.org/user/Zope Foundation/","role":null,"created_at":"2024-09-08T02:44:57.597Z","updated_at":"2024-09-08T02:44:57.597Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/pypi.org/maintainers/Zope%20Foundation/packages"}]}