[hmr] Consider adding `-P` flag for CLI usage

## Background

Python 3.11 introduced `-P` flag to prevent unsafe paths in `sys.path` [[What's New](https://docs.python.org/3/whatsnew/3.11.html#whatsnew311-pythonsafepath)] [[PEP 587](https://peps.python.org/pep-0587/)] [[CLI docs](https://docs.python.org/3/using/cmdline.html#cmdoption-P)].

**Official Definition**: Prevents Python from automatically prepending potentially unsafe paths to `sys.path`.

**Enable via**:
- `-P` command-line flag [[Python docs](https://docs.python.org/3/using/cmdline.html#cmdoption-P)]
- `PYTHONSAFEPATH=1` environment variable [[env var](https://docs.python.org/3/using/cmdline.html#envvar-PYTHONSAFEPATH)]
- `sys.flags.safe_path` (runtime check) [[sys.flags](https://docs.python.org/3/library/sys.html#sys.flags)]

**Behavior** [[Python docs](https://docs.python.org/3/using/cmdline.html#cmdoption-P)]:
- `python script.py`: doesn't prepend script's directory
- `python -m module`: doesn't prepend current working directory
- `python -c code` and `python` (REPL): doesn't prepend empty string (current directory)

## Design Goals

From official proposals [[PEP 587](https://peps.python.org/pep-0587/)] and discussions:

1. **Security**: Prevents malicious local modules from being accidentally imported
2. **Path injection protection**: Stops local directories from shadowing stdlib packages [[CPython #95754](https://github.com/python/cpython/issues/95754)] [[Better errors PR #113769](https://github.com/python/cpython/pull/113769)]
3. **Consistency**: Aligns interactive environments with command-line behavior

## Historical Context

GitHub issue #57684 tracked this feature request:
- Original proposal: `--mainpath`/`--nomainpath` command-line options
- Evolution: `-P` flag and `PYTHONSAFEENV` (later renamed `PYTHONSAFEPATH`) [[BPO #13475](https://bugs.python.org/issue13475)]
- Core maintainers: Victor Stinner et al.
- Implementation: [[initconfig.c](https://github.com/python/cpython/blob/main/Python/initconfig.c)] [[PyConfig.safe_path](https://docs.python.org/3/c-api/init_config.html#c.PyConfig.safe_path)]

## Industry Adoption

- **IPython 9.7**: Added `PYTHONSAFEPATH` support [[changelog](https://ipython.readthedocs.io/en/stable/whatsnew/version9.html#ipython-9-7)] [[PR #15014](https://github.com/ipython/ipython/pull/15014)]
- **pdb**: Respects safe_path behavior [[PR #111762](https://github.com/python/cpython/pull/111762)]
- IPython aligns with Python's native security without requiring separate `--ignore_cwd` configuration

## Proposal

Add `-P`/`--safe-path` flag and `PYTHONSAFEPATH` support to our Python execution environment. This aligns with Python standards and improves security—critical for web-based Python consoles handling untrusted code.

## Why This Matters

Python's official security enhancement prevents dependency path attacks in multi-user or untrusted environments. As an online IDE, implementing this feature would protect users from module shadowing vulnerabilities.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

[hmr] Consider adding `-P` flag for CLI usage #514

Background

Design Goals

Historical Context

Industry Adoption

Proposal

Why This Matters

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

[hmr] Consider adding -P flag for CLI usage #514

Description

Background

Design Goals

Historical Context

Industry Adoption

Proposal

Why This Matters

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions

[hmr] Consider adding `-P` flag for CLI usage #514