github/acrn-hypervisor
1
0
Fork 0
mirror of https://github.com/projectacrn/acrn-hypervisor.git synced 2025-11-04 03:28:59 +00:00
Code Issues Projects Releases Wiki Activity
Files
6f96614e6f44168bef40290fe017f015571a7e52
acrn-hypervisor/misc/config_tools/library
History
dongpingx 6f96614e6f misc: Bandit scan issue for lxml 
This patch is to fix Bandit scan issue b313-b320 which is vulnerable to
XML attacks when parsing untrusted XML data.

I replace lxml.etree with the equivalent defusedxml package.

I confirm it works after making a Bandit scan, building the configurator
and compiling the acrn.

Signed-off-by: dongpingx <dongpingx.wu@intel.com>
Tracked-On: #8717
2025-08-20 10:20:20 +08:00
..
__init__.py
acrn_config_utilities.py
misc: rename common.py to avoid private library conflict
2022-11-14 12:03:51 +08:00
board_cfg_lib.py
misc: fix invalid escape sequence in python 3.12
2024-05-09 20:58:21 +08:00
hv_cfg_lib.py
misc: rename common.py to avoid private library conflict
2022-11-14 12:03:51 +08:00
hypervisor_license
launch_cfg_lib.py
misc: Bandit scan issue for lxml
2025-08-20 10:20:20 +08:00
rdt.py
misc: rename common.py to avoid private library conflict
2022-11-14 12:03:51 +08:00
scenario_cfg_lib.py
misc: rename common.py to avoid private library conflict
2022-11-14 12:03:51 +08:00