Author vstinner
Recipients vstinner
Date 2020-12-14.23:01:17
SpamBayes Score -1.0
Marked as misclassified Yes
Message-id <1607986877.75.0.896553210814.issue42641@roundup.psfhosted.org>
In-reply-to
Content
In the past, multiple os.popen() usage have been replaced with subprocess in the stdlib to prevent the risk of shell injection:

* bpo-22636: ctypes modules
* bpo-22637: uuid module

By the way, there is an open issue bpo-21557 "os.popen & os.system lack shell-related security warnings".

See also bpo-6490 "os.popen documentation is probably wrong" (fixed).
History
Date User Action Args
2020-12-14 23:01:17vstinnersetrecipients: + vstinner
2020-12-14 23:01:17vstinnersetmessageid: <1607986877.75.0.896553210814.issue42641@roundup.psfhosted.org>
2020-12-14 23:01:17vstinnerlinkissue42641 messages
2020-12-14 23:01:17vstinnercreate