[issue33019] Review usage of environment variables in the stdlib

Benjamin Peterson added the comment: It's useful if you want to hide the fact that a command is implemented in Python and don't want it to malfunction if the user has PYTHONPATH set for some reason. -- ___ Python tracker

[issue33019] Review usage of environment variables in the stdlib

Antoine Pitrou added the comment: I may be mistaken, what's the use of -E if not for security? -- ___ Python tracker ___

[issue33019] Review usage of environment variables in the stdlib

Benjamin Peterson added the comment: I don't think -E is a security feature. Even if the stdlib was fixed, there's tons of 3rdparty Python code that consumes os.environ. It seems like if you really cared about not letting the environment influence a Python application,

[issue33019] Review usage of environment variables in the stdlib

Change by Antoine Pitrou : -- nosy: +benjamin.peterson ___ Python tracker ___ ___

[issue33019] Review usage of environment variables in the stdlib

Christian Heimes added the comment: External libraries like sqlite may also use env vars. I know for sure OpenSSL uses SSL_CERT_FILE and SSL_CERT_DIR to override default verify locations. -- ___ Python tracker

[issue33019] Review usage of environment variables in the stdlib

New submission from Antoine Pitrou : Python supports a mode where the interpreter ignores environment variables such as PYTHONPATH, etc. However, there are places in the stdlib where environment-sensitive decisions are made, without regard for the ignore-environment flag.