Merge pull request #15858 from Security-Onion-Solutions/security-fix

Fix unsafe PyYAML load in filecheck
2026-05-08 20:38:00 +02:00 · 2026-05-04 16:16:40 -04:00
parent bc64f1431d b701664e04
commit 5bca81d833
1 changed files with 1 additions and 1 deletions
@@ -15,7 +15,7 @@ from watchdog.observers import Observer
 from watchdog.events import FileSystemEventHandler

 with open("/opt/so/conf/strelka/filecheck.yaml", "r") as ymlfile:
-    cfg = yaml.load(ymlfile, Loader=yaml.Loader)
+    cfg = yaml.safe_load(ymlfile)

 extract_path = cfg["filecheck"]["extract_path"]
 historypath = cfg["filecheck"]["historypath"]