Philippe Godbout <psyker...@gmail.com> added the comment:
Lars, I think the suggested approach is great. Documentation for the tarfile class should be changed in order to direct user to the "safe" version with an relevant warning. A bit like what is done for PRNG safety. As stated by Eduardo an optional "safe" parameter to opt into safe mode could also be an interesting approach. ---------- nosy: +Philippe Godbout _______________________________________ Python tracker <rep...@bugs.python.org> <https://bugs.python.org/issue21109> _______________________________________ _______________________________________________ Python-bugs-list mailing list Unsubscribe: https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com