From 6f4cb2b491db4c84d3a932d91584bf7756879950 Mon Sep 17 00:00:00 2001
From: "pixeebot[bot]" <104101892+pixeebot[bot]@users.noreply.github.com>
Date: Wed, 16 Jul 2025 03:26:40 +0000
Subject: [PATCH] Use Safe Parsers in `lxml` Parsing Functions
---
docs/_ext/testcoverage.py | 5 +++--
1 file changed, 3 insertions(+), 2 deletions(-)
diff --git a/docs/_ext/testcoverage.py b/docs/_ext/testcoverage.py
index efe6e01da8..f4be83fb7f 100644
--- a/docs/_ext/testcoverage.py
+++ b/docs/_ext/testcoverage.py
@@ -12,6 +12,7 @@
from io import BytesIO
from lxml import etree as ET
import shutil
+import lxml.etree
default_constraint_err_msg = "Invalid value"
validator_dir = ""
@@ -313,7 +314,7 @@ def get_working_commands():
line = fp.readline()
try:
- xml = ET.parse(BytesIO(bytes(string, 'utf-8')))
+ xml = ET.parse(BytesIO(bytes(string, 'utf-8')), parser=lxml.etree.XMLParser(resolve_entities=False))
except Exception as e:
print("Failed to load interface definition file {0}".format(f))
print(e)
@@ -322,7 +323,7 @@ def get_working_commands():
override_defaults(xml)
try:
- relaxng_xml = ET.parse(entry['schema_file'])
+ relaxng_xml = ET.parse(entry['schema_file'], parser=lxml.etree.XMLParser(resolve_entities=False))
validator = ET.RelaxNG(relaxng_xml)
if not validator.validate(xml):
pFad - Phonifier reborn
Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.
Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.
Alternative Proxies:
Alternative Proxy
pFad Proxy
pFad v3 Proxy
pFad v4 Proxy