Message336111
When walk_packages encounter a package with a name that is available in sys.path, it will abandon the current package, and start walking the package from the sys.path.
Consider this file layout:
```
PYTHONPATH/
├──package1/
| ├──core
| | ├──some_package/
| | | ├──__init__.py
| | | └──mod.py
| | └──__init__.py
| └──__init__.py
└──some_package/
| ├──__init__.py
| └──another_mod.py
└──__init__.py
```
The result of walking package1 will be:
```
>> pkgutil.walk_packages('PYTHONPATH/package1')
ModuleInfo(module_finder=FileFinder('PYTHONPATH/package1/core'), name='some_package', ispkg=True)
ModuleInfo(module_finder=FileFinder('PYTHONPATH/some_package), name='another_mod', ispkg=False)
```
I'm not sure if it is a security issue, but it definitely should not jump off the given path. |
|
Date |
User |
Action |
Args |
2019-02-20 16:37:07 | karkucik | set | recipients:
+ karkucik |
2019-02-20 16:37:07 | karkucik | set | messageid: <1550680627.64.0.854320242724.issue36053@roundup.psfhosted.org> |
2019-02-20 16:37:07 | karkucik | link | issue36053 messages |
2019-02-20 16:37:07 | karkucik | create | |
|