Open fazledyn-or opened 7 months ago
@astrofrog Could you evaluate this?
See also #789
See also #789
I'm hardly able to see the logs since they're old and have been cleaned.
The main difference between mktemp
and mkstemp
is that, mktemp
gives you a filename, whereas mkstemp
creates the file for you with permission 600. I'm not familiar with zarr
at all- if it requires the file to be physically absent (provided that zarr
will create the file for you), then yes- mkstemp
is not a good choice for you.
Let me know if I'm missing something here.
Details
While triaging your project, our bug fixing tool generated the following message(s)-
Resources Related to
mktemp
Changes
mktemp()
method withmkstemp()
Previously Found & Fixed
CLA Requirements
This section is only relevant if your project requires contributors to sign a Contributor License Agreement (CLA) for external contributions.
All contributed commits are already automatically signed off.
Sponsorship and Support
This work is done by the security researchers from OpenRefactory and is supported by the Open Source Security Foundation (OpenSSF): Project Alpha-Omega. Alpha-Omega is a project partnering with open source software project maintainers to systematically find new, as-yet-undiscovered vulnerabilities in open source code - and get them fixed – to improve global software supply chain security.
The bug is found by running the Intelligent Code Repair (iCR) tool by OpenRefactory and then manually triaging the results.