shivasurya/code-pathfinder
high Dangerous subprocess Usage
python-sdk/scripts/generate_sdk_manifest.py:372
subprocess call detected. Ensure arguments are not user-controlled.
CWE-78 acknowledged
Code
python-sdk/scripts/generate_sdk_manifest.py369 for indexer_name in ("index_python_from_cdn.py", "index_go_from_cdn.py"):
370 indexer = SCRIPT_DIR / indexer_name
371 if indexer.exists():
372 result = subprocess.run([sys.executable, str(indexer)], check=False)
373 if result.returncode != 0:
374 print(
375 f"[warn] {indexer_name} returned non-zero — handcrafted manifest still written."
Dataflow
- Source
- python-sdk/scripts/generate_sdk_manifest.py:372
- Sink
- python-sdk/scripts/generate_sdk_manifest.py:372 subprocess.run
Seen on 11 scans
- 460d0d3 line 372 2026-05-23
- 7a21c89 line 372 2026-05-23
- 7a21c89 line 372 2026-05-23
- a7e137f line 372 2026-05-22
- 8a39ca7 line 372 2026-05-22
- 181f52c line 372 2026-05-22
- 91c7b3d line 372· PR #693 2026-05-22
- 00a5753 line 372 2026-05-22
- 490d33f line 372· PR #693 2026-05-22
- 9e00502 line 372 2026-05-22
- 1faca6c line 372 2026-05-21
Get this for your repo.
Pathfinder runs the same scan on your own repos free. Connect via GitHub in 30 seconds.