search

chssn / uk-dataset

UK Profile for vatSys
0 stars 0 forks source link

Using xml.etree.ElementTree to parse untrusted XML data is known to be vulnerable to XML attacks. Replace xml.etree.ElementTree with the equivalent defusedxml package, or make sure defusedxml.defuse_stdlib() is called. #1

Closed chssn closed 3 years ago

chssn commented 3 years ago

Codacy detected an issue:

Message: Using xml.etree.ElementTree to parse untrusted XML data is known to be vulnerable to XML attacks. Replace xml.etree.ElementTree with the equivalent defusedxml package, or make sure defusedxml.defuse_stdlib() is called.

Occurred on:

Currently on: