This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author christoph.neuroth
Recipients benjamin.peterson, brian.curtin, christoph.neuroth, cvrebert, eric.smith, georg.brandl, ncoghlan, pitrou, r.david.murray, terry.reedy
Date 2010-02-18.14:28:48
SpamBayes Score 3.544825e-08
Marked as misclassified No
Message-id <1266503329.94.0.308030221297.issue6760@psf.upfronthosting.co.za>
In-reply-to
Content
As recommended by eric.smith on #7950, I'd like to suggest further extending the documentation to include a security warning about (quite easily) possible code injection bugs when using the shell=True parameter (similar to other places in the documentation).
History
Date User Action Args
2010-02-18 14:28:50christoph.neurothsetrecipients: + christoph.neuroth, georg.brandl, terry.reedy, ncoghlan, pitrou, eric.smith, benjamin.peterson, r.david.murray, brian.curtin, cvrebert
2010-02-18 14:28:49christoph.neurothsetmessageid: <1266503329.94.0.308030221297.issue6760@psf.upfronthosting.co.za>
2010-02-18 14:28:48christoph.neurothlinkissue6760 messages
2010-02-18 14:28:48christoph.neurothcreate