ホーム エクスプローラ ヘルプ
サインイン
valentina.korovkina
/
sharix-open-webapp-base
フォーク元 ShariX_Open/sharix-open-webapp-base
1
0
フォーク 0
ファイル
ブランチ: task-from-team
ブランチ タグ
sharix-open-web...
/
venv
/
lib
/
python3.9
/
site-packages
/
defusedxml
/
__init__.py

__init__.py 1.4 KB
パーマリンク 履歴 Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667 
  1. # defusedxml
    2. 

  2. #
    3. 

  3. # Copyright (c) 2013 by Christian Heimes <christian@python.org>
    4. 

  4. # Licensed to PSF under a Contributor Agreement.
    5. 

  5. # See https://www.python.org/psf/license for licensing details.
    6. 

  6. """Defuse XML bomb denial of service vulnerabilities
    7. 

  7. """
    8. 

  8. from __future__ import print_function, absolute_import
    9. 

  9. 

  10. import warnings
    11. 

  11. 

  12. from .common import (
    13. 

  13.     DefusedXmlException,
    14. 

  14.     DTDForbidden,
    15. 

  15.     EntitiesForbidden,
    16. 

  16.     ExternalReferenceForbidden,
    17. 

  17.     NotSupportedError,
    18. 

  18.     _apply_defusing,
    19. 

  19. )
    20. 

  20. 

  21. 

  22. def defuse_stdlib():
    23. 

  23.     """Monkey patch and defuse all stdlib packages
    24. 

  24. 

  25.     :warning: The monkey patch is an EXPERIMETNAL feature.
    26. 

  26.     """
    27. 

  27.     defused = {}
    28. 

  28. 

  29.     with warnings.catch_warnings():
    30. 

  30.         from . import cElementTree
    31. 

  31.     from . import ElementTree
    32. 

  32.     from . import minidom
    33. 

  33.     from . import pulldom
    34. 

  34.     from . import sax
    35. 

  35.     from . import expatbuilder
    36. 

  36.     from . import expatreader
    37. 

  37.     from . import xmlrpc
    38. 

  38. 

  39.     xmlrpc.monkey_patch()
    40. 

  40.     defused[xmlrpc] = None
    41. 

  41. 

  42.     defused_mods = [
    43. 

  43.         cElementTree,
    44. 

  44.         ElementTree,
    45. 

  45.         minidom,
    46. 

  46.         pulldom,
    47. 

  47.         sax,
    48. 

  48.         expatbuilder,
    49. 

  49.         expatreader,
    50. 

  50.     ]
    51. 

  51. 

  52.     for defused_mod in defused_mods:
    53. 

  53.         stdlib_mod = _apply_defusing(defused_mod)
    54. 

  54.         defused[defused_mod] = stdlib_mod
    55. 

  55. 

  56.     return defused
    57. 

  57. 

  58. 

  59. __version__ = "0.7.1"
    60. 

  60. 

  61. __all__ = [
    62. 

  62.     "DefusedXmlException",
    63. 

  63.     "DTDForbidden",
    64. 

  64.     "EntitiesForbidden",
    65. 

  65.     "ExternalReferenceForbidden",
    66. 

  66.     "NotSupportedError",
    67. 

  67. ]
    68.