Skip to content

semgrep_id:python_exec_rule-subprocess-call-array:144:144

{
  "id": "7866fb55da9a64b6f4b1ea38c9c9a7539e7ca7e2093e553bc1cf083af33a3827",
  "category": "sast",
  "name": "Improper neutralization of special elements used in an OS Command ('OS Command Injection')",
  "description": "subprocess call - check for execution of untrusted input\n",
  "cve": "semgrep_id:python_exec_rule-subprocess-call-array:144:144",
  "severity": "High",
  "scanner": {
    "id": "semgrep",
    "name": "Semgrep"
  },
  "location": {
    "file": "test/get_previous_releases.py",
    "start_line": 144
  },
  "identifiers": [
    {
      "type": "semgrep_id",
      "name": "python_exec_rule-subprocess-call-array",
      "value": "python_exec_rule-subprocess-call-array"
    },
    {
      "type": "cwe",
      "name": "CWE-78",
      "value": "78",
      "url": "https://cwe.mitre.org/data/definitions/78.html"
    },
    {
      "type": "owasp",
      "name": "A03:2021 - Injection",
      "value": "A03:2021"
    },
    {
      "type": "owasp",
      "name": "A1:2017 - Injection",
      "value": "A1:2017"
    }
  ]
}