Why is pickling such a huge security problem? why is it so frowned upon?

I hear frequently that pickling shouldnt be used if it can be avoided because it is a security risk, but noone ever explains why? and ive tried googling security issues with pickling but i found mostly opinion articles shit talking it and no real tutorials or facts on how to exploit it, or how it could be exploited, or why it is so easy to exploit? can someone please explain to me some of the methods to exploit pickling and why its considered to such a bad practice in the cyber sec world?

/r/Python
https://redd.it/bd8lb0

redirecting pages on django

hi!

i know you guys hate noobs questions, but i suck at researching since english is not my first language and most times i cant find what i want.

on my website, i want to select an option on a dropdown and be redirected to another page with info about this option.
the thing is, i want to use the same template for all the options, only changing the content for each one.

i also want to keep the url like "[http://127.0.0.1:8000/areas/area+3"](http://127.0.0.1:8000/areas/area+3) where area+3 is the option selected (i already managed how to redirect to this url but can't make templates appear, not know how to pass data between pages also)

thanks for your patience!

/r/django
https://redd.it/bd8vi3

Need Help Navigating To The Next and Previous URL Position

I am new to Django and I am using [https://github.com/justdjango/video-membership](https://github.com/justdjango/video-membership) to practice.

[https://imgur.com/aX944tV](https://imgur.com/aX944tV)

From lesson\_detail.html [https://github.com/justdjango/video-membership/tree/master/courses/templates/courses](https://github.com/justdjango/video-membership/tree/master/courses/templates/courses) I want to be able to navigate to the next and previous lesson video positions and their slugs and have a bit of logic that says that the first lesson only has next video (not previous video) displayed and the last lesson only has previous video (not next video) displayed. All other lessons in between the first and last lesson should have both next video and previous video displayed.

Any help would be greatly appreciated as I am unsure how to do this.

/r/django
https://redd.it/bd9qar

I don't know how everyone else learned Python, but the SoloLearn tutorial seems to have been a comprehensive introduction.
https://agentanakinai.wordpress.com/2019/04/15/python-3-tutorial-course/

/r/Python
https://redd.it/bdalsv

Just created a cheat sheet about Support Vector Machines

/r/Python
https://redd.it/bddla1

Using flask-restful with blueprints producing an error

Hi all,

I'm a bit new at this but I'm trying to create a flask app and I have this kind of thing happening in my app.py file:

from flask import Flask
from flask_restful import Resource, Api
from apitest.blueprints.home import home
from apitest.blueprints.api import api_bp

def create_app():
"""
Create a Flask application using the app factory pattern.
:return: Flask app
"""
# instance_relative_config tells flask to look for an instance module that's in the same folder depth as the main module
app = Flask(__name__, instance_relative_config=True)

# look for a settings.py file in the config folder
app.config.from_object('config.settings')

# look in the instance folder for settings.py. Silent = True means don't crash if file doesn't exist
#

/r/flask
https://redd.it/bdcrgg

Seeing a Lot of Posts about Vue.js recently, so frontend frameworks thread it is

Title says it all, seeing a ton of recent interest in Vue.js with Django.

Anyone care to share experience or preference on their frontend framework of choice (don’t want to start a war).

Personally, I’ve been using React recently. Might be overkill for some projects but I just really love the component system, really clean.


**What do you like or dislike or just wanna talk about Vue.js or whichever frontend framework you use with Django :)**

Additionally, what technology do you use alongside these that you recommend?

I’ve only touched the surface of react, and haven’t looked into stuff like WebPack, or browserfy or anything fancy like that, but would love to hear what you guys have to say.

/r/django
https://redd.it/bden00

I made another Excel formula parser for python
https://github.com/aidhound/hotxlfp

/r/Python
https://redd.it/bdi5o9

Struggling with creating modern day webscraping bot

Hi,

I am trying to make a bot in Python for fun utilizing selenium and the requests module. I have run into of trying to trigger a one-click captcha. I am aware that the one-click captcha is not 100% understood but there are techniques to trigger it over the image based one such as browsing youtube videos and signing in and out of gmail.

​

My normal chrome sessions are able to trigger a one-click captcha but my selenium chromedriver session always gets the image.

​

I am curious as to how modern sneaker bots such as aiobot([https://www.aiobot.com/](https://www.aiobot.com/)) are able to make their automation not detectable by chrome.

​

If I am able to trick chrome into thinking I'm not a bot initially, I believe I can then get to the point of watching youtube videos and basically further make chrome have more faith in my selenium session that it is a real human, thus triggering one-click captcha.

​

But does anyone have any thoughts has to how to get my selenium session to act 100% like a normal browsing session?

​

Thanks.

/r/Python
https://redd.it/bdl5wm

Reading in large text data using numba?

I want to read a large text file in and then use numba operations on it (and do this in parallel using prange). Does anyone have any good resources or tips on how to do this?

So far, I tried creating a generator to read text, but numba would not let me pass it in as a parameter (which I'm confused about, because [here](http://numba.pydata.org/numba-doc/0.18.1/developer/generators.html) it mentions that generators are supported by numba.

/r/Python
https://redd.it/bdmnbp

What did Fluent Python help you work on with Django?

I will read it in a few weeks, many recommend it, and I want to know what it helps in the Django scenario. For now, besides the basic python, I just needed to learn decorators and super(), but there is a difference between using a framework and learning to program.

/r/django
https://redd.it/bdndaj

🐍🕸 `wasmer`, a Python extension to run WebAssembly binaries as fast as possible
https://github.com/wasmerio/python-ext-wasm

/r/Python
https://redd.it/bdn7ij

Swagger without DRF?

Hello,

I want to have swagger ui in my project but I don't use Django Rest Framework but all the packages I found are specifically for DRF, like [https://django-rest-swagger.readthedocs.io/en/latest/](https://django-rest-swagger.readthedocs.io/en/latest/)


Is there a package for django that I could use to generate swagger docs without DRF?

/r/django
https://redd.it/bdpxrt

How To Create A Telegram Bot With Python!
https://youtu.be/GWH1XDXfAXQ

/r/Python
https://redd.it/bdo1g1

9 Django Tips for Working with Databases
https://python.works-hub.com/learn/9-django-tips-for-working-with-databases-f48d8?utm_source=reddit&utm_medium=organicsocial&utm_campaign=j.kaplan

/r/django
https://redd.it/bdsq7f

Learning Django for the first time. Need help with error. TemplateSyntaxError - Invalid block tag 'endif'

Hi, I'm new to Django, and Python in general.

I've been following Corey Schafer's Django tutorial but got stuck with an invalid blog tag error: [https://pastebin.com/816QTzDy](https://pastebin.com/816QTzDy)

My base.html looks like this: [https://pastebin.com/ndsbJKi4](https://pastebin.com/ndsbJKi4)

​

At 26:30 in this tutorial: [https://www.youtube.com/watch?v=q4jPR-M0TAQ](https://www.youtube.com/watch?v=q4jPR-M0TAQ)

​

Would appreciate if anyone can help me out here. Thanks in advance!

/r/django
https://redd.it/bdrp3u

Unaffected variables

Hello everyone.

I am doing some little benchmarks with loops on python's data structures

and I would like to know if python is doing some kind of optimization in these

following cases :

​

`for i in l:`

`i`

​

is Python computing the value of `i` even if it is not affected/used ?

​

Same with this for example :

`i = 0`

`while i < SIZE:`

`l[i]`

&#x200B;

Is `l[i]` computed anyway ?

&#x200B;

Thanks

/r/Python
https://redd.it/bdtyp9

What's everyone working on this week?

Tell /r/python what you're working on this week! You can be bragging, grousing, sharing your passion, or explaining your pain. Talk about your current project or your pet project; whatever you want to share.

/r/Python
https://redd.it/bdudq2

[P] I used a Variational Autoencoder to build a feature-based face editing software

Hey reddit,

In my latest weekend-project I have been using a Variational Autoencoder to build a feature-based face editor. The model is explained in my youtube video:

https://youtu.be/uszj2MOLY08

You can inspect the code at Github:

https://github.com/SteffenCzolbe/FeatureTransferApp

The feature editing is based on modifying the latent distribution of the VAE. After training of the VAE is completed, the latent space is mapped by encoding the training data once more. Latent space vectors of each feature are determined based on the labels of the training data. Then to edit an image, we can add a combination of feature vectors to its latent distribution, and then reconstruct it. The reconstruction creates an altered version of the original image, based on the featrures we added to the latent representation.

The model used is heavily inspired by the Bate-VAE used in this paper by google deepmind (https://pdfs.semanticscholar.org/a902/26c41b79f8b06007609f39f82757073641e2.pdf). I made some adjustments to it to incorporate more recent advancements in neural network architecture, like using a Leaky ReLu activation function. The dataset used is celebA, which consist of 200.000 annotated images of celebrities. I aligned and cropped the images to a 64x64 resolution before training. The model is implememted in PyTorch, and PyGame has been used for the GUI. Training on my

/r/MachineLearning
https://redd.it/bdtmgh

Implement ASGI handler and coroutine-safety by andrewgodwin · Pull Request #11209 · django/django · GitHub
https://github.com/django/django/pull/11209

/r/django
https://redd.it/bdtfcd