From ff5aee7158bd46e4ae22bc431adadd7060a6e277 Mon Sep 17 00:00:00 2001
From: Étienne Loks <etienne.loks@iggdrasil.net>
Date: Mon, 10 Apr 2023 18:31:58 +0200
Subject: Add bandit scan tool to Makefile - mark some security issue as non
 relevants

---
 ishtar_common/ignf_utils.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

(limited to 'ishtar_common/ignf_utils.py')

diff --git a/ishtar_common/ignf_utils.py b/ishtar_common/ignf_utils.py
index 2f167299c..94429d458 100644
--- a/ishtar_common/ignf_utils.py
+++ b/ishtar_common/ignf_utils.py
@@ -160,7 +160,8 @@ IGNF = {
 
 
 def extract_from_csv(filename):
-    tree = ET.parse(filename)
+    # nosec: parsing only used by programmer to generate previous dict from a trusted source
+    tree = ET.parse(filename)  # nosec
     root = tree.getroot()
     ns = "{http://www.isotc211.org/2005/gmx}"
     ns_gml = "{http://www.opengis.net/gml}"
-- 
cgit v1.2.3