From cc3e4fae3875b1b77ccda66950082d9749f2ab65 Mon Sep 17 00:00:00 2001 From: tomaioo Date: Thu, 14 May 2026 23:11:12 -0700 Subject: [PATCH 1/2] fix(security): 2 improvements across 2 files - Security: Insecure YAML deserialization (yaml.load without Loader) - Security: Use of insecure HTTP URLs for external resources Signed-off-by: tomaioo <203048277+tomaioo@users.noreply.github.com> --- ci_scripts/postprocess_toc_yml.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/ci_scripts/postprocess_toc_yml.py b/ci_scripts/postprocess_toc_yml.py index cda06d31f5fb..580c2d77f579 100644 --- a/ci_scripts/postprocess_toc_yml.py +++ b/ci_scripts/postprocess_toc_yml.py @@ -21,7 +21,7 @@ def rewrite_yml(data): with open("toc.yml", 'r') as stream: try: - data_loaded = yaml.load(stream) + data_loaded = yaml.safe_load(stream) for node in data_loaded: if 'name' in node: if node['name'].startswith('azure.') and node['name'] not in skipped_level2_packages: From ed1bf5f228c81cf3991d768c24b76ecdda55f48d Mon Sep 17 00:00:00 2001 From: tomaioo Date: Thu, 14 May 2026 23:11:13 -0700 Subject: [PATCH 2/2] fix(security): 2 improvements across 2 files - Security: Insecure YAML deserialization (yaml.load without Loader) - Security: Use of insecure HTTP URLs for external resources Signed-off-by: tomaioo <203048277+tomaioo@users.noreply.github.com> --- ci_scripts/generate_xrefmap.py | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/ci_scripts/generate_xrefmap.py b/ci_scripts/generate_xrefmap.py index 3f23198df57f..6daa82123655 100644 --- a/ci_scripts/generate_xrefmap.py +++ b/ci_scripts/generate_xrefmap.py @@ -6,8 +6,8 @@ from sphinx.ext.intersphinx import read_inventory EXTERNAL_LINKS = ['https://docs.python.org/3.5/', - 'http://msrestazure.readthedocs.io/en/latest/', - 'http://msrest.readthedocs.io/en/latest/'] + 'https://msrestazure.readthedocs.io/en/latest/', + 'https://msrest.readthedocs.io/en/latest/'] xref_map = [] for external_Link in EXTERNAL_LINKS: