Security is very important for FastAPI and its community. π
Learn more about it below. π
The latest version of FastAPI is supported.
You are encouraged to write tests for your application and update your FastAPI version frequently after ensuring that your tests are passing. This way you will benefit from the latest features, bug fixes, and security fixes.
You can learn more about FastAPI versions and how to pin and upgrade them for your project in the docs.
If you think you found a vulnerability, and even if you are not sure about it, please report it right away by sending an email to: security@tiangolo.com. Please try to be as explicit as possible, describing all the steps and example code to reproduce the security issue.
I (the author, @tiangolo) will review it thoroughly and get back to you.
Please restrain from publicly discussing a potential security vulnerability. π
It's better to discuss privately and try to find a solution first, to limit the potential impact as much as possible.
Thanks for your help!
The FastAPI community and I thank you for that. π