Message263268
This can't change in Python 2.7 because of backwards-compatibility. And I would argue this isn't a serious security risk as pkgutil.get_data() typically works with string constants and values provided by the library and not user-provided values. This is basically the same as taking a value for open() and has the same risks. |
|
Date |
User |
Action |
Args |
2016-04-12 17:40:12 | brett.cannon | set | recipients:
+ brett.cannon, Antony.Lee, WGH |
2016-04-12 17:40:12 | brett.cannon | set | messageid: <1460482812.75.0.561831840608.issue25330@psf.upfronthosting.co.za> |
2016-04-12 17:40:12 | brett.cannon | link | issue25330 messages |
2016-04-12 17:40:12 | brett.cannon | create | |
|