Stowage/cpython
2
0
Fork 0
mirror of https://github.com/python/cpython.git synced 2026-05-04 09:31:02 +00:00
Code Issues Projects Releases Packages Wiki Activity

gh-111264: Add a note about untrusted input to tomllib docs (GH-146209)

Browse source 
Co-authored-by: Stan Ulbrych <stan@python.org>
This commit is contained in:
Petr Viktorin 2026-04-30 16:33:13 +02:00 committed by GitHub
parent 7686abe063
commit 9d41e2a534
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 6 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

6
Doc/library/tomllib.rst
View file

@ -19,6 +19,12 @@ support writing TOML.
Added TOML 1.1.0 support.
See the :ref:`What's New <whatsnew315-tomllib-1-1-0>` for details.
.. warning::
Be cautious when parsing data from untrusted sources.
A malicious TOML string may cause the decoder to consume considerable
CPU and memory resources.
Limiting the size of data to be parsed is recommended.
.. seealso::