- drop testing and support for Python3.8, add Python 3.13, change document to reflect this.
- implement safe_getattr and safe_format functions; fix bugs in UNSAFE_ATTRS and UNSAFE_ATTRS_DTYPES usage
- make all procedure attributes private to curb access to AST nodes, which can be exploited
- improvements to error messages, including use ast functions to construct better error messages
- remove import of
numpy.linalg, as documented - update doc description for security advisory
Special thanks to @SteakEnthusiast for the security-related fixes
Contributors
SteakEnthusiast