Hello, According to [1] the unsafe loader yaml.UnsafeLoader is still vulnerable, and could be used upon request. While strictly speaking the vulnerability is fixed by using safe reader by default, I assume complete safety can only be achieved by disabling the yaml.UnsafeLoader.
Best, Andrius [1] https://github.com/yaml/pyyaml/wiki/PyYAML-yaml.load(input)-Deprecation _______________________________________________ Python-modules-team mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/python-modules-team
