issues
search
Bitmessage
/
PyBitmessage
Reference client for Bitmessage: a P2P encrypted decentralised communication protocol:
https://bitmessage.org/wiki/Main_Page
Other
2.81k
stars
578
forks
source link
Code quality + Security related changes
#2184
Closed
anand-skss
closed
4 months ago
anand-skss
commented
4 months ago
Code Quality improvement
Suppressed subprocess module related bandit warning as there is no additional risk of remote exploitation or privilege escalation
Added possible exception and suppressed try-catch-pass bandit warnings as per the requirement
Security related changes
Included
defusedxml
package for parsing xml strings as
parsestring
function from
xml.dom.minidom
package has some security vulnerability.
Cleaned upnp schema by removing char other than
alphanumeric
-
and
:
Code Quality improvement
Security related changes
defusedxml
package for parsing xml strings asparsestring
function fromxml.dom.minidom
package has some security vulnerability.alphanumeric
-
and: