Enhance sast-rule python/xml/rule-expatreader.yml (!331) · Merge requests · GitLab.org / security-products / sast-rules · GitLab

The 17.0 major release is coming on May 16, 2024! This version brings many exciting improvements to GitLab, but also removes some deprecated features. We are introducing three breaking change windows during which we expect breaking changes to be deployed to GitLab.com. You can read more about it on our blogpost . The second breaking change window begins 2024-04-29 09:00 UTC and ends 2024-05-01 22:00 UTC.

Vadym Riznyk requested to merge feat/issue-434275/expatreader into main Jan 22, 2024

According to gitlab-org/gitlab#434275, this commit improves the detection of a series of features in the XML parsing package. The scope of detection has been expanded according to https://bandit.readthedocs.io/en/latest/blacklists/blacklist_calls.html#b313-b320-xml, which goes beyond the functionality described in the issue, but captures the essence of the existing rule.