Reviewed: https://review.openstack.org/222436 Committed: https://git.openstack.org/cgit/openstack/magnum/commit/?id=ff9fce4aff9a465a867c4b26f1e7d7b15dbcb763 Submitter: Jenkins Branch: master
commit ff9fce4aff9a465a867c4b26f1e7d7b15dbcb763 Author: Hua Wang <email address hidden> Date: Fri Sep 11 10:00:44 2015 +0800
Avoid to use eval in pythonk8sclient
The deserialize function that swagger uses includes the usage of eval. It is posible to completely destroy a system using eval, so eval usage is removed in this patch. This fixes the failure of bandit non-voting gate.
http://nedbatchelder.com/blog/201206/eval_really_is_dangerous.html
Change-Id: Id13ea30d07a66d9a812677840c29c48662f43f6f Closes-Bug: #1459717
Reviewed: https:/ /review. openstack. org/222436 /git.openstack. org/cgit/ openstack/ magnum/ commit/ ?id=ff9fce4aff9 a465a867c4b26f1 e7d7b15dbcb763
Committed: https:/
Submitter: Jenkins
Branch: master
commit ff9fce4aff9a465 a867c4b26f1e7d7 b15dbcb763
Author: Hua Wang <email address hidden>
Date: Fri Sep 11 10:00:44 2015 +0800
Avoid to use eval in pythonk8sclient
The deserialize function that swagger uses includes the usage of
eval. It is posible to completely destroy a system using eval, so
eval usage is removed in this patch. This fixes the failure of bandit
non-voting gate.
http:// nedbatchelder. com/blog/ 201206/ eval_really_ is_dangerous. html
Change-Id: Id13ea30d07a66d 9a812677840c29c 48662f43f6f
Closes-Bug: #1459717