[docs] [issue17538] Document XML Vulnerabilties

Hynek Schlawack report at bugs.python.org
Mon Mar 25 12:54:33 CET 2013

Hynek Schlawack added the comment:

I feel like there should be a warning in Doc/library/xml.rst too.

Is there any actual reason why we don’t ship defusedxml with Python and add an easy way to monkeypatch so there’s as little passive barriers as possible to use XML “safely”?

I’m sorry I didn’t speak up on when this was discussed on the ML but I found the discussion…depressing.

assignee:  -> docs at python
components: +Documentation -Library (Lib), XML
nosy: +docs at python, hynek
type:  -> security
versions: +Python 3.3, Python 3.4

Python tracker <report at bugs.python.org>

More information about the docs mailing list