langchain

mirror of https://github.com/hwchase17/langchain.git synced 2025-05-30 19:49:09 +00:00

History

Predrag Gruevski 22abeb9f6c Disable loading jinja2 `PromptTemplate` from file. (#10252 ) jinja2 templates are not sandboxed and are at risk for arbitrary code execution. To mitigate this risk: - We no longer support loading jinja2-formatted prompt template files. - `PromptTemplate` with jinja2 may still be constructed manually, but the class carries a security warning reminding the user to not pass untrusted input into it. Resolves #4394.	2023-10-10 11:15:42 -04:00
..
experimental	Reset deanonymizer mapping (#11559 )	2023-10-09 11:11:05 -07:00
langchain	Disable loading jinja2 `PromptTemplate` from file. (#10252 )	2023-10-10 11:15:42 -04:00

Predrag Gruevski 22abeb9f6c

Disable loading jinja2 PromptTemplate from file. (#10252 )

jinja2 templates are not sandboxed and are at risk for arbitrary code
execution. To mitigate this risk:
- We no longer support loading jinja2-formatted prompt template files.
- `PromptTemplate` with jinja2 may still be constructed manually, but
the class carries a security warning reminding the user to not pass
untrusted input into it.

Resolves #4394.

2023-10-10 11:15:42 -04:00

experimental Reset deanonymizer mapping (#11559 ) 2023-10-09 11:11:05 -07:00

langchain Disable loading jinja2 PromptTemplate from file. (#10252 ) 2023-10-10 11:15:42 -04:00