Use YAML safe loader instead of full loader (#255)

ansible · Apr 30, 2023 · 26f70be · 26f70be
1 parent f47d2fe
commit 26f70be
Show file tree

Hide file tree

Showing 2 changed files with 1 addition and 2 deletions.
diff --git a/pyproject.toml b/pyproject.toml
@@ -125,7 +125,6 @@ ignore = [
   "RET504", # Unnecessary variable assignment before `return` statement
   # Temporary disabled during adoption:
   "A003", # Class attribute `exec` is shadowing a python builtin
-  "S506", # Probable use of unsafe loader `FullLoader`
   "S607", # Starting a process with a partial executable path
 
 ]

diff --git a/src/ansible_compat/loaders.py b/src/ansible_compat/loaders.py
@@ -14,7 +14,7 @@
 def yaml_from_file(path: Path) -> Any:  # noqa: ANN401
     """Return a loaded YAML file."""
     with path.open(encoding="utf-8") as content:
-        return yaml.load(content, Loader=yaml.FullLoader)
+        return yaml.load(content, Loader=yaml.SafeLoader)
 
 
 def colpath_from_path(path: Path) -> str | None: