STINNER Victor <vstin...@python.org> added the comment:
In the past, multiple os.popen() usage have been replaced with subprocess in the stdlib to prevent the risk of shell injection: * bpo-22636: ctypes modules * bpo-22637: uuid module By the way, there is an open issue bpo-21557 "os.popen & os.system lack shell-related security warnings". See also bpo-6490 "os.popen documentation is probably wrong" (fixed). ---------- _______________________________________ Python tracker <rep...@bugs.python.org> <https://bugs.python.org/issue42641> _______________________________________ _______________________________________________ Python-bugs-list mailing list Unsubscribe: https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com
