Source: ceph Version: 16.2.10+ds-3 Severity: normal X-Debbugs-Cc: gor...@chronitis.net
We hope to upgrade python3-yaml (aka pyyaml) to version 6 before the freeze, per #1008262 Your package appears to use `yaml.load()` without specifying a `Loader=` argument, which will become an error in pyyaml version 6. This should have emitted a warning message since version 5.1 (from 2019). In most cases this can be fixed by replacing `yaml.load` with `yaml.safe_load`, unless the ability for yaml to create arbitrary python objects is desirable. The only place I found this in the ceph source is in a test: https://sources.debian.org/src/ceph/16.2.10+ds-3/src/test/crimson/cbt/t2c.py/?hl=46#L46 This doesn't look like it's installed in any of the binaries, but perhaps it can be hit during build? -- System Information: Debian Release: bookworm/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 6.0.0-1-amd64 (SMP w/1 CPU thread; PREEMPT) Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8), LANGUAGE=en_GB Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled
