requests_ecp/tests/test_ecp.py
Use of assert detected. The enclosed code will be removed when compiling to optimised byte code. Open
Open
assert ecp._get_xml_attribute(
etree.XML(SP_ECP_PAOS_RESPONSE),
"//ecp:RelayState",
).text.strip() == "relay_state_text"- Exclude checks
Using etree to parse untrusted XML data is known to be vulnerable to XML attacks. Replace etree with the equivalent defusedxml package. Open
Open
from lxml import etree
- Exclude checks