Data

Tools

Indexes

Applications

Experiments

Packages

An open API service providing package, version and dependency metadata of many open source software ecosystems and registries.

Top 0.3% on pypi.org
Top 0.1% downloads on pypi.org
Top 0.1% dependent packages on pypi.org
Top 0.1% dependent repos on pypi.org
Top 1.4% forks on pypi.org
Top 0.1% docker downloads on pypi.org

pypi.org : jinja2

A very fast and expressive template engine.

Registry - Source - Documentation - JSON - codemeta.json
purl: pkg:pypi/jinja2
Keywords: jinja , jinja2 , pallets , python , template-engine , templates
License: BSD-3-Clause
Latest release: 8 months ago
First release: over 17 years ago
Dependent packages: 4,068
Dependent repositories: 133,056
Downloads: 361,869,668 last month
Stars: 9,990 on GitHub
Forks: 1,577 on GitHub
Docker dependents: 4,221
Docker downloads: 2,367,763,010
Total Commits: 2060
Committers: 309
Average commits per author: 6.667
Development Distribution Score (DDS): 0.462
More commit stats: commits.ecosyste.ms
See more repository details: repos.ecosyste.ms
Funding links: https://github.com/sponsors/pallets, https://palletsprojects.com/donate, https://tidelift.com/funding/github/pypi/Flask
Last synced: about 21 hours ago

High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhqMmotNzd4bS1tYzV2
Jinja2 sandbox escape vulnerability
Ecosystems: pypi
Packages: Jinja2
Source: github
Published: over 6 years ago
Moderate
GSA_kwCzR0hTQS1jcHd4LXZycDQtNHBxN84ABFI_
Jinja2 vulnerable to sandbox breakout through attr filter selecting format method
Ecosystems: pypi
Packages: Jinja2
Source: github
Published: 8 months ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ2Mnctdjk3ci00bTQ1
Jinja2 sandbox escape via string formatting
Ecosystems: pypi
Packages: Jinja2
Source: github
Published: over 6 years ago
Moderate
GSA_kwCzR0hTQS1xMng3LThydjYtNnE3aM4ABCrP
Jinja has a sandbox breakout through indirect reference to format method
Ecosystems: pypi
Packages: jinja2
Source: github
Published: 11 months ago
Moderate
GSA_kwCzR0hTQS1oNWM4LXJxd3AtY3A5Nc4AA4Ys
Jinja vulnerable to HTML attribute injection when passing user input as keys to xmlattr filter
Ecosystems: pypi
Packages: jinja2
Source: github
Published: almost 2 years ago
Moderate
GSA_kwCzR0hTQS1mcWg5LTJxZ2ctaDg0aM4AAde9
Insecure Temporary File in Jinja2
Ecosystems: pypi
Packages: Jinja2
Source: github
Published: over 3 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWczcnEtZzI5NS00ajNt
Regular Expression Denial of Service (ReDoS) in Jinja2
Ecosystems: pypi
Packages: jinja2
Source: github
Published: over 4 years ago
Moderate
GSA_kwCzR0hTQS1oNzV2LTN2dmotNW1mas4AA7xw
Jinja vulnerable to HTML attribute injection when passing user input as keys to xmlattr filter
Ecosystems: pypi
Packages: Jinja2
Source: github
Published: over 1 year ago
High
GSA_kwCzR0hTQS04cjdxLWN2anEteDM1M84AAX4s
Incorrect Privilege Assignment in Jinja2
Ecosystems: pypi
Packages: Jinja2
Source: github
Published: over 3 years ago
Moderate
GSA_kwCzR0hTQS1nbWo2LTZmOGYtNjY5Oc4ABCrO
Jinja has a sandbox breakout through malicious filenames
Ecosystems: pypi
Packages: jinja2
Source: github
Published: 11 months ago