shivasurya/code-pathfinder
high Dangerous subprocess Usage
python-sdk/codepathfinder/cli/__init__.py:113
subprocess call detected. Ensure arguments are not user-controlled.
CWE-78 acknowledged
Code
python-sdk/codepathfinder/cli/__init__.py110 sys.exit(2)
111
112 try:
113 result = subprocess.run([str(binary), *sys.argv[1:]])
114 sys.exit(result.returncode)
115 except KeyboardInterrupt:
116 sys.exit(130)
Dataflow
- Source
- python-sdk/codepathfinder/cli/__init__.py:113
- Sink
- python-sdk/codepathfinder/cli/__init__.py:113 subprocess.run
Seen on 11 scans
- 460d0d3 line 113 2026-05-23
- 7a21c89 line 113 2026-05-23
- 7a21c89 line 113 2026-05-23
- a7e137f line 113 2026-05-22
- 8a39ca7 line 113 2026-05-22
- 181f52c line 113 2026-05-22
- 91c7b3d line 113· PR #693 2026-05-22
- 00a5753 line 113 2026-05-22
- 490d33f line 113· PR #693 2026-05-22
- 9e00502 line 113 2026-05-22
- 1faca6c line 113 2026-05-21
Get this for your repo.
Pathfinder runs the same scan on your own repos free. Connect via GitHub in 30 seconds.