If a SIA service returns a slash as a part of an image title, SIARecord's cachedataset will fail with an error message that will be hard to understand, such as
FileNotFoundError: [Errno 2] No such file or directory: './ROSAT_HRI_ROSAT_Soft/Medium_X-Ray_1997-11-20_09:20:30.795013.fits'
To fix this, we should defuse certain active characters in image_title. This would be at least the slash and probably the backslash.
Given there are several sorts of conceivable attacks when you expose various file systems to random strings from the internet, one could argue we should only let through characters between 32 and 127 inclusive, but I think we can by and large trust people who put up SIAP services. If anyone argues we should not, this would be the opportunity to do something sensible with non-ascii here.
If a SIA service returns a slash as a part of an image title, SIARecord's cachedataset will fail with an error message that will be hard to understand, such as
The following code reproduces this at this point:
To fix this, we should defuse certain active characters in image_title. This would be at least the slash and probably the backslash.
Given there are several sorts of conceivable attacks when you expose various file systems to random strings from the internet, one could argue we should only let through characters between 32 and 127 inclusive, but I think we can by and large trust people who put up SIAP services. If anyone argues we should not, this would be the opportunity to do something sensible with non-ascii here.