New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

docs do not mention if loading application data from config files is a security risk or not #765

Open

metaperl opened this issue Aug 26, 2022 · 0 comments

Contributor

metaperl commented Aug 26, 2022

In the docs on Traitlets configuration via config files the section does not indicate whether arbitrary or potentially malicious code is prevented from executing in these files.

Are there any security risks involved in using plain Python for traitlets config files?

metaperl mentioned this issue

Should we open a discussions tab in this github? #766

Open

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment