[issue8855] Shelve documentation lacks security warning

Georg Brandl added the comment: Committed in r85612, will be merged to the other maintained branches. -- nosy: +georg.brandl resolution: -> fixed status: open -> closed ___ Python tracker _

[issue8855] Shelve documentation lacks security warning

Longpoke added the comment: Okay I've attached one for the py3k branch. What about 2.7? Same patch applies there. -- keywords: +patch Added file: http://bugs.python.org/file18645/shelve.rst.patch ___ Python tracker

[issue8855] Shelve documentation lacks security warning

Éric Araujo added the comment: Thank you for the report. Would you like to propose a patch against the py3k branch? -- nosy: +eric.araujo stage: -> needs patch versions: +Python 2.7, Python 3.1, Python 3.2 ___ Python tracker

[issue8855] Shelve documentation lacks security warning

New submission from Longpoke : Loading a shelve can cause arbitrary code to be executed [1] and other black magic (because it's backed by Pickle). Shouldn't there be a big fat warning at the top of the shelve documentation page? Unless you're like me and assume anything to do with serializatio