Safety vulnerability ID: 54942
The information on this page was manually curated by our Cybersecurity Intelligence Team.
Spotipy 2.22.1 includes a fix for CVE-2023-23608: Path traversal vulnerability that may lead to type confusion in URI handling code.
https://github.com/spotipy-dev/spotipy/security/advisories/GHSA-q764-g6fm-555v
Latest version: 2.23.0
A light weight Python library for the Spotify Web API
Added
- Add alternative module installation instruction to README
- Added Comment to README - Getting Started for user to add URI to app in Spotify Developer Dashboard.
- Added playlist_add_tracks.py to example folder
Changed
- Modified docstring for playlist_add_items() to accept "only URIs or URLs",
with intended deprecation for IDs in v3
Fixed
- Path traversal vulnerability that may lead to type confusion in URI handling code
- Update contributing.md
Scan your Python project for dependency vulnerabilities in two minutes
Scan your application