I'm just writing to find out if a third-party has audited the code for the new instant admin plug-in for web2py (https://github.com/sramana/ web2py-instant-admin). It's a beautiful interface for the db, and I mean nothing personal against the developers, who have done a fantastic job building a great-looking way to access the db.
It's just this is a lot of code, and I've not yet gone over the whole thing myself (and would not be the ideal candidate for doing a security audit anyway). And before I give access to my db to a new third-party plug-in, I'd like to know at least that others are using it in production, and ideally that someone skilled in auditing python code for security has taken a close look at it. It would be a great admin interface for admins to use with an app I've created.
