Skip to main content


Project description

# SafeURL for Python
### Ported by [@nicolasrod]( and docs by [@momopranto](

## Overview
SafeURL is a library that aids developers in protecting against a class of vulnerabilities known as [Server Side Request Forgery]( It does this by validating each part of the URL against a configurable white or black list before making an HTTP request. SafeURL is open-source and licensed under MIT.

## Installation
Clone this repository and import it into your project.

## Implementation
SafeURL serves as a replacement wrapper for [PyCurl]( in Python.

#User controlled input
url = request.args['url']
su = safeurl.SafeURL()
#Execute using SafeURL
res = su.execute(url)
print "Unexpected error:", sys.exc_info()
#URL wasn't safe

## Configuration
Options such as white and black lists can be modified. For example:

su = safeurl.SafeURL()
#Create an options object
opt = safeurl.Options()
#Allow requests to specific domains
opt.setList("whitelist", ["", ""], "domain")
#Restrict urls with the ftp scheme

res = su.execute("")
print "Unexpected error:", sys.exc_info()

Project details

Release history Release notifications | RSS feed

This version


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Files for safeurl-python, version 1.0
Filename, size File type Python version Upload date Hashes
Filename, size safeurl-python-1.0.cygwin-1.7.35-i686.exe (57.4 kB) File type Windows Installer Python version any Upload date Hashes View
Filename, size safeurl-python-1.0.tar.gz (1.4 kB) File type Source Python version None Upload date Hashes View

Supported by

AWS AWS Cloud computing Datadog Datadog Monitoring DigiCert DigiCert EV certificate Facebook / Instagram Facebook / Instagram PSF Sponsor Fastly Fastly CDN Google Google Object Storage and Download Analytics Pingdom Pingdom Monitoring Salesforce Salesforce PSF Sponsor Sentry Sentry Error logging StatusPage StatusPage Status page