Code Review / compass4nfv.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 264ec73) | patch
Utilize yaml.safe_load 93/37093/2
authorlhinds <lhinds@redhat.com>
Sat, 8 Jul 2017 15:51:27 +0000 (16:51 +0100)
committerJustin chi <chigang@huawei.com>
Tue, 11 Jul 2017 01:10:08 +0000 (01:10 +0000)
commit1833897d18fe0930984215372e1343cff1531b61
tree4a90c727423647490da1c09bc357009871254dcetree | snapshot
parent264ec7332c84617e95f2b7336dcee1a413bc7e6bcommit | diff
Utilize yaml.safe_load

The patch changes instances of yaml.load with yaml.safe_load
which is more secure at blocking arbitrary code execution.

The following blog has a decent explaination:

https://www.kevinlondon.com/2015/08/15/dangerous-python-functions-pt2.html

Change-Id: I8201baab6cb31ab31228eca83134f87a57c2f5d2
Signed-off-by: lhinds <lhinds@redhat.com>
build/parser.py diff | blob | history
deploy/bonding.py diff | blob | history
deploy/client.py diff | blob | history
deploy/config_parse.py diff | blob | history
deploy/opera_adapter.py diff | blob | history
deploy/rename_nics.py diff | blob | history
deploy/reset_compute.py diff | blob | history
deploy/setup_vnic.py diff | blob | history
repo/gen_ins_pkg_script.py diff | blob | history
util/check_valid.py diff | blob | history