Merge ~cjwatson/launchpad:avoid-subprocess-shell into launchpad:master
Proposed by
Colin Watson
Status: | Merged |
---|---|
Approved by: | Colin Watson |
Approved revision: | acb71e6db63ce6db92b02466bf78f3a39fbdecf4 |
Merge reported by: | Otto Co-Pilot |
Merged at revision: | not available |
Proposed branch: | ~cjwatson/launchpad:avoid-subprocess-shell |
Merge into: | launchpad:master |
Diff against target: |
389 lines (+76/-55) 17 files modified
lib/lp/answers/doc/expiration.rst (+1/-2) lib/lp/bugs/doc/bugnotification-sending.rst (+1/-2) lib/lp/bugs/doc/bugtask-expiration.rst (+1/-2) lib/lp/bugs/doc/externalbugtracker-debbugs.rst (+1/-2) lib/lp/bugs/model/tests/test_bugtask.py (+1/-2) lib/lp/registry/doc/convert-person-to-team.rst (+1/-2) lib/lp/registry/doc/distribution-mirror.rst (+12/-8) lib/lp/registry/doc/person-karma.rst (+1/-2) lib/lp/registry/doc/person-notification.rst (+1/-2) lib/lp/registry/doc/standing.rst (+2/-4) lib/lp/registry/tests/test_karmacache_updater.py (+1/-2) lib/lp/services/doc/pidfile.rst (+1/-2) lib/lp/services/librarianserver/tests/test_apachelogparser.py (+1/-2) lib/lp/soyuz/scripts/tests/test_ppa_apache_log_parser.py (+1/-2) lib/lp/translations/doc/poexport-language-pack.rst (+2/-3) test_on_merge.py (+4/-5) utilities/local-latency (+44/-11) |
Related bugs: |
Reviewer | Review Type | Date Requested | Status |
---|---|---|---|
Guruprasad | Approve | ||
Review via email: mp+445865@code.launchpad.net |
Commit message
Avoid calling subprocess with shell=True
Description of the change
While none of these are actually security vulnerabilities as far as I know (they're all in tests or in utilities that are only used locally), it's generally bad practice to run subprocesses via a shell. Avoid this where it's relatively trivial to do so.
To post a comment you must log in.
LGTM 👍