Safety vulnerability ID: 41308
The information on this page was manually curated by our Cybersecurity Intelligence Team.
Boatswain 1.0.4 includes a security patch for the function 'main' in 'boatswain/cli.py'. It used the unsafe yaml.load(), that allows instantiation of arbitrary objects. Consider yaml.safe_load().
https://github.com/NLeSC/boatswain/commit/1fc3f79b8f1f2affb407c7a147cca71c11f26d3c
Latest version: 1.0.4
Yaml based way to build Docker images.
Boatswain version 1.0.4 includes a security patch for the function 'main' in 'boatswain/cli.py'. Use of unsafe yaml load. Allows instantiation of arbitrary objects. Consider yaml.safe_load(). See also: https://github.com/NLeSC/boatswain/commit/1fc3f79b8f1f2affb407c7a147cca71c11f26d3c
Scan your Python project for dependency vulnerabilities in two minutes
Scan your application