https://nvd.nist.gov/vuln/detail/CVE-2017-18342
Details: yaml/pyyaml#243 (comment)
The suggested version 4.1 is a prerelease so not a good option currently.
According to the details link above using yaml.safe_load instead of yaml.load fixes this issue.
https://nvd.nist.gov/vuln/detail/CVE-2017-18342
Details: yaml/pyyaml#243 (comment)
The suggested version 4.1 is a prerelease so not a good option currently.
According to the details link above using
yaml.safe_loadinstead ofyaml.loadfixes this issue.