Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
Use xml.etree through defusedxml #19640
...for security reasons. Untested apart from tox/Travis, I don't have these devices around.
Related issue (if applicable): fixes #
Pull request in home-assistant.io with documentation (if applicable): home-assistant/home-assistant.io#<home-assistant.io PR number goes here>
Example entry for
Yep, for ElementTree it just installs a few handlers that disable entity declarations and external entity fetches; the actual parser is still the same ElementTree. https://github.com/tiran/defusedxml/blob/master/defusedxml/ElementTree.py