Merge "Implements use of yaml.safe_load as per sec audit"

author Morgan Richomme <morgan.richomme@orange.com>

Tue, 13 Sep 2016 06:46:56 +0000 (06:46 +0000)

committer Gerrit Code Review <gerrit@172.30.200.206>

Tue, 13 Sep 2016 06:46:56 +0000 (06:46 +0000)
author Morgan Richomme <morgan.richomme@orange.com>
Tue, 13 Sep 2016 06:46:56 +0000 (06:46 +0000)
committer Gerrit Code Review <gerrit@172.30.200.206>
Tue, 13 Sep 2016 06:46:56 +0000 (06:46 +0000)
diff --git a/utils/lab-reconfiguration/reconfigUcsNet.py b/utils/lab-reconfiguration/reconfigUcsNet.py

index 45a72a3..4c08f3d 100755 (executable)
--- a/utils/lab-reconfiguration/reconfigUcsNet.py
+++ b/utils/lab-reconfiguration/reconfigUcsNet.py
@@ -157,7 +157,7 @@ def read_yaml_file(yamlFile):
      """
      # TODO: add check if vnic templates specified in file exist on UCS
      with open(yamlFile, 'r') as stream:
-        return yaml.load(stream)
+        return yaml.safe_load(stream)
  
  
  def set_network(handle=None, yamlFile=None):
diff --git a/utils/test/reporting/functest/reporting-status.py b/utils/test/reporting/functest/reporting-status.py

index e9e167d..0b80fe4 100755 (executable)
--- a/utils/test/reporting/functest/reporting-status.py
+++ b/utils/test/reporting/functest/reporting-status.py
@@ -34,7 +34,7 @@ tempest = tc.TestCase("tempest_smoke_serial", "functest", -1)
  cf = conf.TEST_CONF
  response = requests.get(cf)
  
-functest_yaml_config = yaml.load(response.text)
+functest_yaml_config = yaml.safe_load(response.text)
  
  logger.info("*******************************************")
  logger.info("*   Generating reporting scenario status  *")
author	Morgan Richomme <morgan.richomme@orange.com>
	Tue, 13 Sep 2016 06:46:56 +0000 (06:46 +0000)
committer	Gerrit Code Review <gerrit@172.30.200.206>
	Tue, 13 Sep 2016 06:46:56 +0000 (06:46 +0000)
utils/lab-reconfiguration/reconfigUcsNet.py		patch \| blob \| history
utils/test/reporting/functest/reporting-status.py		patch \| blob \| history