datasette-comments

news.yaml

@@ -1,3 +1,6 @@
+- dates: 2023-11-30
+  body: |-
+    [datasette-comments](https://datasette.io/plugins/datasette-comments) is a new plugin by Alex Garcia which adds collaborative commenting to Datasette. Alex built the plugin for Datasette Cloud, but it's also available as an open source package for people who are hosting their own Datasette instances. See [Annotate and explore your data with datasette-comments](https://www.datasette.cloud/blog/2023/datasette-comments/) on the Datasette Cloud blog for more details.
 - date: 2023-08-22
   body: |-
     [Datasette 1.0a4](https://docs.datasette.io/en/1.0a4/changelog.html#a4-2023-08-21) has a fix for a security vulnerability in the Datasette 1.0 alpha series: the API explorer interface exposed the names of private databases and tables in public instances that were protected by a plugin such as [datasette-auth-passwords](https://datasette.io/plugins/datasette-auth-passwords), though not the actual content of those tables. See the [security advisory](https://github.com/simonw/datasette/security/advisories/GHSA-7ch3-7pp7-7cpq) for more details and workarounds for if you can't upgrade immediately. The [latest edition of the Datasette Newsletter](https://datasette.substack.com/p/datasette-cloud-and-the-datasette) also talks about this issue.

plugin_repos.yml

@@ -393,3 +393,6 @@
   tags:
   - SQLite Extension
   - AI
+- repo: datasette/datasette-comments
+  tags:
+  - Collaboration