(BAN-B301) Audit required: Use of `pickle` module

ColinRobbins / scm-helper

Helper tool to manage data in Swim Club Manager

MIT License

3 stars 0 forks source link

(BAN-B301) Audit required: Use of `pickle` module #33

Closed ColinRobbins closed 3 years ago

ColinRobbins commented 3 years ago

Description

The pickle module is not secure against erroneous or maliciously constructed data. Never unpickle data received from an untrusted or unauthenticated source.

Occurrences

There is 1 occurrence of this issue in the repository.

See all occurrences on DeepSource → deepsource.io/gh/ColinRobbins/scm-helper/issue/BAN-B301/occurrences/

ColinRobbins commented 3 years ago

Usage is safe - known file