Skip to content

C
cpython
Commit 7716ca6c authored by Georg Brandl's avatar Georg Brandl
Browse files
Options

#8855: add shelve security warning.

parent 96115fb2
Hide whitespace changes
Inline Side-by-side
Showing with 5 additions and 0 deletions
Doc/library/shelve.rst
View file @ 7716ca6c
...@@ -43,6 +43,11 @@ lots of shared sub-objects. The keys are ordinary strings. ...@@ -43,6 +43,11 @@ lots of shared sub-objects. The keys are ordinary strings.
:meth:`close` explicitly when you don't need it any more, or use a :meth:`close` explicitly when you don't need it any more, or use a
:keyword:`with` statement with :func:`contextlib.closing`. :keyword:`with` statement with :func:`contextlib.closing`.
.. warning::
Because the :mod:`shelve` module is backed by :mod:`pickle`, it is insecure
to load a shelf from an untrusted source. Like with pickle, loading a shelf
can execute arbitrary code.
Shelf objects support all methods supported by dictionaries. This eases the Shelf objects support all methods supported by dictionaries. This eases the
transition from dictionary based scripts to those requiring persistent storage. transition from dictionary based scripts to those requiring persistent storage.
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment
GitLab Nexedi Edition | About GitLab | About Nexedi | 沪ICP备2021021310号-2 | 沪ICP备2021021310号-7