Issues / Feedback for Milestone 1
-
Remove unneeded / unauthorized libraries from your project [see attached screenshot]
-
Use werkzeug.security to implement hashing for your passwords. Remove unneeded additional libraries such as bcrypt, PyMySql, pypiwin32, etc.
-
Use Flask's provided 'models' to do database operations instead of using SQL. Using SQL in the way that you have, opens up a SQL injection security hole
-
Add more data validation
-
Suggestion: A lot more functionality is needed for a fully functional website