Skip to content

Commit

Permalink
Suppress bandit B406 for xml.sax.saxutils
Browse files Browse the repository at this point in the history 
As noted in PyCQA/bandit#452, escape and
quoteattr are not riskier than the defusedxml alternatives.

Note: Can't disable specific bandit tests:
PyCQA/bandit#211

Signed-off-by: Kevin Locke <kevin@kevinlocke.name>
  • Loading branch information
@kevinoid
kevinoid committed Apr 29, 2021
1 parent d70baf1 commit b4a49c1
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion src/ytdl2rss.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -10,7 +10,7 @@

from datetime import datetime
from email.utils import formatdate
from xml.sax.saxutils import escape, quoteattr
from xml.sax.saxutils import escape, quoteattr # nosec

__version__ = '0.1.0'

Expand Down

0 comments on commit b4a49c1

Please sign in to comment.