avocado-framework/avocado

selftests/unit/plugin/xunit.py

Summary

Maintainability

A

0 mins

Test Coverage

Using xml.dom.minidom.parseString to parse untrusted XML data is known to be vulnerable to XML attacks. Replace xml.dom.minidom.parseString with its defusedxml equivalent function or make sure defusedxml.defuse_stdlib() is called
Open

            dom = minidom.parseString(xml)

Found in selftests/unit/plugin/xunit.py by bandit

Exclude checks
- Disable engine
- Disable check

Using minidom to parse untrusted XML data is known to be vulnerable to XML attacks. Replace minidom with the equivalent defusedxml package, or make sure defusedxml.defuse_stdlib() is called.
Open

from xml.dom import minidom

Found in selftests/unit/plugin/xunit.py by bandit

Exclude checks
- Disable engine
- Disable check

There are no issues that match your filters.