diff --git a/database_sanitizer/config.py b/database_sanitizer/config.py
index 83b3e9b..e341b82 100644
--- a/database_sanitizer/config.py
+++ b/database_sanitizer/config.py
@@ -46,7 +46,7 @@ def from_file(cls, filename):
         instance = cls()
 
         with open(filename, "rb") as file_stream:
-            config_data = yaml.load(file_stream)
+            config_data = yaml.safe_load(file_stream)
 
         instance.load(config_data)
 
diff --git a/database_sanitizer/tests/test_config.py b/database_sanitizer/tests/test_config.py
index 3487996..2b0bfeb 100644
--- a/database_sanitizer/tests/test_config.py
+++ b/database_sanitizer/tests/test_config.py
@@ -10,7 +10,7 @@
 
 
 @mock.patch.object(config, 'open')
-@mock.patch('yaml.load')
+@mock.patch('yaml.safe_load')
 def test_from_file(mocked_yaml_load, mocked_open):
     mocked_yaml_load.return_value = {}