Message 218921 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	cvrebert
Recipients	cvrebert, docs@python
Date	2014-05-22.21:33:47
SpamBayes Score	-1.0
Marked as misclassified	Yes
Message-id	<1400794428.31.0.170474236819.issue21557@psf.upfronthosting.co.za>
In-reply-to

Content
Since these functions run shell commands, which is a common vector for security-related bugs (see * http://cwe.mitre.org/data/definitions/78.html * http://cwe.mitre.org/data/definitions/88.html ), I suggest that they should have security warning boxes analogous to the one for the `subprocess` module: https://docs.python.org/2/library/subprocess.html#frequently-used-arguments

Since these functions run shell commands, which is a common vector for security-related bugs (see
* http://cwe.mitre.org/data/definitions/78.html
* http://cwe.mitre.org/data/definitions/88.html
), I suggest that they should have security warning boxes analogous to the one for the `subprocess` module:
https://docs.python.org/2/library/subprocess.html#frequently-used-arguments

History
Date	User	Action	Args
2014-05-22 21:33:48	cvrebert	set	recipients: + cvrebert, docs@python
2014-05-22 21:33:48	cvrebert	set	messageid: <1400794428.31.0.170474236819.issue21557@psf.upfronthosting.co.za>
2014-05-22 21:33:48	cvrebert	link	issue21557 messages
2014-05-22 21:33:47	cvrebert	create