colander 1.7.0 released

[Michael Merickel]

colander 1.7.0 has been released.

This release addresses a CVE in the colander.url validator which could trigger a DDOS so upgrading is recommended.

https://nvd.nist.gov/vuln/detail/CVE-2017-18361

The full changelog is here:

https://docs.pylonsproject.org/projects/colander/en/latest/#change-history

Documentation:

https://docs.pylonsproject.org/projects/colander/en/latest/

You can install it via PyPI:

  pip install colander==1.7.0

Enjoy, and please report any issues you find to the issue tracker at

https://github.com/Pylons/colander/issues

Thanks!

- colander core developers