From cc501bfeb59a7861c2ed351b4973d71cb7c61ece Mon Sep 17 00:00:00 2001
From: mingkun2020 <68391979+mingkun2020@users.noreply.github.com>
Date: Tue, 2 Mar 2021 15:07:52 -0800
Subject: [PATCH] fix: Change yaml.load to yaml_parse as a best practice
 (#1951)

* change yaml.load to yaml.safe_load for the security best practice
* use yaml_parse for consistant style
---
 integration/helpers/base_test.py  | 3 ++-
 integration/helpers/yaml_utils.py | 4 +++-
 2 files changed, 5 insertions(+), 2 deletions(-)

diff --git a/integration/helpers/base_test.py b/integration/helpers/base_test.py
index 58b654705b..0fa5f32b2a 100644
--- a/integration/helpers/base_test.py
+++ b/integration/helpers/base_test.py
@@ -4,6 +4,7 @@
 from integration.helpers.client_provider import ClientProvider
 from integration.helpers.resource import generate_suffix, create_bucket, verify_stack_resources
 from integration.helpers.yaml_utils import dump_yaml, load_yaml
+from samtranslator.yaml_helper import yaml_parse
 
 try:
     from pathlib import Path
@@ -293,7 +294,7 @@ def _fill_template(self, file_name):
         for key, _ in self.code_key_to_file.items():
             # We must double the {} to escape them so they will survive a round of unescape
             data = data.replace("${{{}}}".format(key), self.get_code_key_s3_uri(key))
-        yaml_doc = yaml.load(data, Loader=yaml.FullLoader)
+        yaml_doc = yaml_parse(data)
 
         dump_yaml(updated_template_path, yaml_doc)
 
diff --git a/integration/helpers/yaml_utils.py b/integration/helpers/yaml_utils.py
index 09365d6eb5..3fe52c8243 100644
--- a/integration/helpers/yaml_utils.py
+++ b/integration/helpers/yaml_utils.py
@@ -1,5 +1,7 @@
 import yaml
 
+from samtranslator.yaml_helper import yaml_parse
+
 
 def load_yaml(file_path):
     """
@@ -17,7 +19,7 @@ def load_yaml(file_path):
     """
     with open(file_path) as f:
         data = f.read()
-    return yaml.load(data, Loader=yaml.FullLoader)
+    return yaml_parse(data)
 
 
 def dump_yaml(file_path, yaml_doc):