STINNER Victor <[email protected]> added the comment:
> We should whitelist the protocols. The current solution with `getattr` is
> really fragile. For example, this crashes with a `TypeError`:
> `URLopener().open("unknown_proxy://test")`
Would you mind to elaborate why do you consider that the solution is
incomplete? Your issue doesn't show that Python is vulnerable. TypeError *is*
the expected behavior.
Would you prefer another error message? If yes, please open a seperated issue.
----------
_______________________________________
Python tracker <[email protected]>
<https://bugs.python.org/issue35907>
_______________________________________
_______________________________________________
Python-bugs-list mailing list
Unsubscribe:
https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com
