ha repo: Bandit code scan report of high severity security vulnerability
Bug #1875554 reported by
sharath kumar
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
StarlingX |
Triaged
|
Low
|
Unassigned |
Bug Description
Issue: [B411:blacklist] Using xmlrpclib to parse untrusted XML data is known to be vulnerable to XML attacks. Use defused.
Severity: High Confidence: High
Location: ./ha/service-
More Info: https:/
import json
import xmlrpclib
import six
tags: | added: stx.security |
summary: |
- HA repo: Bandit code scan report of high severity security + ha repo: Bandit code scan report of high severity security vulnerability |
To post a comment you must log in.
The priority of addressing bandit findings need to be discussed with the TSC. At this time, this work is unplanned.