django http://cgit.adnoto.dev/django.git/atom?h=main 2025-07-23T13:09:43Z 2025-07-23T13:09:43Z Sarah Boyce 42296566+sarahboyce@users.noreply.github.com 2025-07-18T13:37:14Z urn:sha1:1ecf6889cabc9f3f60d3fdd651468cddd8f4da6e 2024-07-09T12:21:19Z Natalia 124304+nessita@users.noreply.github.com 2024-03-20T16:55:21Z urn:sha1:fe4a0bbe2088d0c2b331216dad21ccd0bb3ee80d Thanks to Josh Schneier for the report, and to Carlton Gibson and Sarah Boyce for the reviews. 2023-03-20T07:07:23Z Liyang Zhang sudo.liyang@gmail.com 2023-03-20T07:07:23Z urn:sha1:f9f9215d3e5500d9a8d0bec0936480ba34d42e88 2022-02-07T19:37:05Z django-bot ops@djangoproject.com 2022-02-03T19:24:19Z urn:sha1:9c19aff7c7561e3a82978a272ecdaad40dda5c00 2021-05-13T06:53:44Z Mariusz Felisiak felisiak.mariusz@gmail.com 2021-05-13T06:53:44Z urn:sha1:b55699968fc9ee985384c64e37f6cc74a0a23683 - Validate filename returned by FileField.upload_to() not a filename passed to the FileField.generate_filename() (upload_to() may completely ignored passed filename). - Allow relative paths (without dot segments) in the generated filename. Thanks to Jakub Kleň for the report and review. Thanks to all folks for checking this patch on existing projects. Thanks Florian Apolloner and Markus Holtermann for the discussion and implementation idea. Regression in 0b79eb36915d178aef5c6a7bbce71b1e76d376d3. 2021-05-04T06:44:42Z Florian Apolloner florian@apolloner.eu 2021-04-14T16:23:44Z urn:sha1:0b79eb36915d178aef5c6a7bbce71b1e76d376d3 2017-04-26T18:44:07Z Josh Schneier josh.schneier@gmail.com 2017-04-26T18:44:07Z urn:sha1:9b538badb1ae5d1e86779afb8be961ef5880a58a 2017-01-19T07:39:46Z Simon Charette charettes@users.noreply.github.com 2017-01-19T07:39:46Z urn:sha1:cecc079168e8669138728d31611ff3a1e7eb3a9f 2016-05-28T01:05:58Z Simon Charette charette.s@gmail.com 2016-05-22T16:43:56Z urn:sha1:4f474607de9b470f977a734bdd47590ab202e778 Thanks Tim for the review. 2015-06-12T14:17:21Z Carson Gee x@carsongee.com 2015-06-10T14:43:49Z urn:sha1:e93e0c03b28137e26f9249e0b7c458b0d667a74e