What's Changed
- fix: replace 34 bare except clauses with except Exception by @haosenwang1018 in #3367
- Security: Fix path traversal, weak RSA key, broken access control, and SSRF vulnerabilities by @Copilot in #3379
New Contributors
- @haosenwang1018 made their first contribution in #3367
Full Changelog: v7.2.5...v7.3.0
Security Notes
-
Bind API to Localhost Only:
- The API can now be restricted to localhost by binding it to
127.0.0.1. This prevents external clients from accessing the API directly. - Example command:
g4f api --bind "127.0.0.1:8080"
- The API can now be restricted to localhost by binding it to
-
Set API Access Password:
- You can now set a password to secure API access by using an environment variable.
- Example command:
export G4F_API_KEY="your strong password"
These security measures ensure that the API is both restricted to local traffic and safeguarded with password protection.
Download Options
Python Package:
- PyPI:
pip install g4f==v7.3.0
Executables:
- Windows x64:
g4f-windows-v7.3.0-x64.zip - Linux x64:
g4f-linux-v7.3.0-x64 - Linux ARM64:
g4f-linux-v7.3.0-arm64 - macOS x64:
g4f-macos-v7.3.0-x64 - macOS ARM64:
g4f-macos-v7.3.0-arm64
System Packages:
- WinGet:
winget install gpt4free
Docker:
docker pull hlohaus789/g4f:v7.3.0docker pull hlohaus789/g4f:v7.3.0-slim
💻 Having trouble with the .exe from this release?
👉 Check out the Windows launcher for GPT4Free instead:
🔗 https://github.com/gpt4free/g4f.exe 🚀