Django News - Django security releases issued: 5.1.4, 5.0.10, and 4.2.17 - Dec 6th 2024
| in blog | Django News |
|---|---|
| original entry | Django News - Django security releases issued: 5.1.4, 5.0.10, and 4.2.17 - Dec 6th 2024 |
News
Django security releases issued: 5.1.4, 5.0.10, and 4.2.17
Django 5.1.4 fixes one security issue with severity “high”, one security issue with severity “moderate”, and several bugs in 5.1.3.
Python 3.13.1, 3.12.8, 3.11.11, 3.10.16 and 3.9.21 are now available
Another big release day! Python 3.13.1 and 3.12.8 were regularly scheduled releases, but they do contain a few security fixes. That makes it a nice time to release the security-fix-only versions too, so everything is as secure as we can make it.
A new home for python-build-standalone
Astral is taking stewardship of python-build-standalone, Gregory Szorc's foundational project for installing portable Python distributions.
Django Software Foundation
Help us make it happen ❤️
And just like that, 2024 is almost over! If your finances allow, donate to the Django Software Foundation to support the long-term future of Django.
Updates to Django
Add support for multi-column primary keys
A 19-year-old ticket just got accepted!
Today 'Updates to Django' is presented by Velda Kiara from Djangonaut Space!
Last week we had 20 pull requests merged into Django by 15 different contributors - including 3 first-time contributors! Congratulations to Tommy Allen, Ayush Khatri , and Brock Smickley for having their first commits merged into Django - welcome on board!
Django 5.2 now supports a CompositePrimaryKey field to uniquely identify records based on multiple fields to support more complex data relationships.
Also in Django 5.2, the request.user fallback in auth.login was depreciated, and an AlterConstraint migration operation was added to allow autodetection of changes in constraints.
In Django 5.1 we had two bug fixes:
- a crash in
createsuperuseron Python 3.13+ caused by an unhandledOSErrorwhen the username could not be determined - a regression where relational fields were not updated when calling
Model.refresh_from_db()on instances with deferred fields
Django Newsletter
Wagtail CMS
API support in Wagtail: 2024 headless survey
Are you interested in building headless / API-first websites? Wagtail needs your feedback to inform Wagtail’s direction for headless support improvements as part of our 2024 Wagtail headless survey.
Sponsored Link 1
Debugging Python Cold Starts with Sentry Profiling: How We Improved P99 Latency.
Learn how Sentry tackled backend bottlenecks and improved API latency by several seconds. Who knows—you might pick up some tips to optimize your Django app. Read the blog.
Articles
Creating AI-based Summaries in a Django Website
Summarizing lengthy text can be tedious. This post shows how to use Simplemind and Gemini to automate this process.
Django: Find ghost tables without associated models
Heavy refactoring of models can leave a Django project with “ghost tables”, which were created for a model that was removed without any trace in the migration history. Thankfully, by using some Django internals, you can find such tables.
TIL: Django relations are not cached in model instance // Enrique Soria
Django will reevaluate relations multiple times if you let it. Here are some examples and workarounds.
Translating plain text
Dealing with extra whitespace when translating plain text in django.
On Open-Source Packagement
Maintaining a package beyond the software. A post that covers a talk I was meant to give at the Black Python Devs Leadership Summit.
Year in Review (2024) - Will Vincent
A brief recap from Will who co-writes this newsletter :)
2024 Year in Review - Carlton Gibson
Former Django Fellow and current Django Chat host Carlton Gibson recaps the past year.
Events
DjangoCon Europe 2025 Website
Five days of talks, sprints, and tutorials in Dublin 23rd-27th April 2025.
Sponsored Link 2
YOUR AD HERE
Our newsletter has a large and engaged audience of active email subscribers and an impressive open (59%) and click rate (29%). Django News has availability this quarter for single week ads or bundle deals.
Jobs
Senior Software Engineer, Cloud Engineering at QuoteWizard 🆕
Full-Stack Web Engineer (Python/Django Specialist) at e180, inc
Remote Senior Django Full-Stack Developer (German speaking) at ImmoMetrica
Django Newsletter
Projects
fabiocaccamo/django-extra-settings
Config and manage typed extra settings using just the django admin.
ambient-innovation/django-removals: Package to check for known Django removals and deprecations
Package to check for known Django removals and deprecations - ambient-innovation/django-removals
This RSS feed is published on https://django-news.com/. You can also subscribe via email.