Stowage/cpython
2
0
Fork 0
mirror of https://github.com/python/cpython.git synced 2026-05-09 12:00:49 +00:00
Code Issues Projects Releases Packages Wiki Activity

[3.14] gh-111264: Add a note about untrusted input to tomllib docs (GH-146209) (GH-149223)

Browse source 
(cherry picked from commit 9d41e2a534)

Co-authored-by: Stan Ulbrych <stan@python.org>
This commit is contained in:
Petr Viktorin 2026-05-01 14:42:33 +02:00 committed by GitHub
parent 79f39c93b0
commit e6eac2b3aa
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 7 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

7
Doc/library/tomllib.rst
View file

@ -17,6 +17,13 @@ This module provides an interface for parsing TOML 1.0.0 (Tom's Obvious Minimal
Language, `https://toml.io <https://toml.io/en/>`_). This module does not
support writing TOML.
.. warning::
Be cautious when parsing data from untrusted sources.
A malicious TOML string may cause the decoder to consume considerable
CPU and memory resources.
Limiting the size of data to be parsed is recommended.
.. seealso::
The :pypi:`Tomli-W package <tomli-w>`