Skip to main content


Project description

# SafeURL for Python
### Ported by [@nicolasrod]( and docs by [@momopranto](

## Overview
SafeURL is a library that aids developers in protecting against a class of vulnerabilities known as [Server Side Request Forgery]( It does this by validating each part of the URL against a configurable white or black list before making an HTTP request. SafeURL is open-source and licensed under MIT.

## Installation
Clone this repository and import it into your project.

## Implementation
SafeURL serves as a replacement wrapper for [PyCurl]( in Python.

#User controlled input
url = request.args['url']
su = safeurl.SafeURL()
#Execute using SafeURL
res = su.execute(url)
print "Unexpected error:", sys.exc_info()
#URL wasn't safe

## Configuration
Options such as white and black lists can be modified. For example:

su = safeurl.SafeURL()
#Create an options object
opt = safeurl.Options()
#Allow requests to specific domains
opt.setList("whitelist", ["", ""], "domain")
#Restrict urls with the ftp scheme

res = su.execute("")
print "Unexpected error:", sys.exc_info()

Project details

Release history Release notifications | RSS feed

This version


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Files for safeurl-python, version 1.0
Filename, size File type Python version Upload date Hashes
Filename, size safeurl-python-1.0.cygwin-1.7.35-i686.exe (57.4 kB) File type Windows Installer Python version any Upload date Hashes View
Filename, size safeurl-python-1.0.tar.gz (1.4 kB) File type Source Python version None Upload date Hashes View

Supported by

Pingdom Pingdom Monitoring Google Google Object Storage and Download Analytics Sentry Sentry Error logging AWS AWS Cloud computing DataDog DataDog Monitoring Fastly Fastly CDN DigiCert DigiCert EV certificate StatusPage StatusPage Status page