Does This Scare You?
Chris Angelico
rosuav at gmail.com
Mon Aug 22 07:04:35 EDT 2016
On Mon, Aug 22, 2016 at 8:33 PM, Jon Ribbens <jon+usenet at unequivocal.eu> wrote:
> On 2016-08-22, Steve D'Aprano <steve+python at pearwood.info> wrote:
>> On Mon, 22 Aug 2016 10:38 am, eryk sun wrote:
>>> To me it's scary that this check misses cases because it's trying to
>>> be cross-platform instead of simply relying on GetFullPathName to do
>>> the work. For example, it misses at least the following cases:
>>
>> Instead of shaking in your boots over a simple bug in a non-critical
>> library, how about reporting these cases on the bug tracker with an
>> explanation of the problem?
>
> That seems a rather unnecessarily harsh response.
> Also, it's not "non-critical", this is a security bug.
Explain how?
ChrisA
More information about the Python-list
mailing list