Stowage/cpython
2
0
Fork 0
mirror of https://github.com/python/cpython.git synced 2026-04-14 15:50:50 +00:00
Code Issues Projects Releases Packages Wiki Activity

Add a warning about untrusted input to configparser docs (#146276)

Browse source
This commit is contained in:
Stan Ulbrych 2026-03-22 23:58:31 +00:00 committed by GitHub
parent 4561f6418a
commit fb8d8d9c9f
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 5 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

5
Doc/library/configparser.rst
View file

@ -24,6 +24,11 @@ can be customized by end users easily.
This library does *not* interpret or write the value-type prefixes used in
the Windows Registry extended version of INI syntax.
.. warning::
Be cautious when parsing data from untrusted sources. A malicious
INI file may cause the decoder to consume considerable CPU and memory
resources. Limiting the size of data to be parsed is recommended.
.. seealso::
Module :mod:`tomllib`