rajat29 d27cd0ea4e Replaces yaml.load() with yaml.safe_load() ...

Yaml.load() return Python object may be dangerous if you receive
a YAML document from an untrusted source such as the Internet.
The function yaml.safe_load() limits this ability to simple
Python objects like integers or lists.

Reference:
https://security.openstack.org/guidelines/dg_avoid-dangerous-input-parsing-libraries.html

Change-Id: I021bd09d3bbc6d4b9c8965c59c7f4ec4895f8b8b

2017-07-26 12:11:48 +05:30

1.3 KiB

Raw Blame History

View Raw