shivasurya/code-pathfinder

high Dangerous subprocess Usage

python-sdk/scripts/generate_sdk_manifest.py:372

subprocess call detected. Ensure arguments are not user-controlled.

Code

python-sdk/scripts/generate_sdk_manifest.py

369        for indexer_name in ("index_python_from_cdn.py", "index_go_from_cdn.py"):
370            indexer = SCRIPT_DIR / indexer_name
371            if indexer.exists():
372                result = subprocess.run([sys.executable, str(indexer)], check=False)
373                if result.returncode != 0:
374                    print(
375                        f"[warn] {indexer_name} returned non-zero — handcrafted manifest still written."

Dataflow

Source: python-sdk/scripts/generate_sdk_manifest.py:372
Sink: python-sdk/scripts/generate_sdk_manifest.py:372 subprocess.run

Seen on 8 scans

a7e137f line 372 2026-05-22
8a39ca7 line 372 2026-05-22
181f52c line 372 2026-05-22
91c7b3d line 372· PR #693 2026-05-22
00a5753 line 372 2026-05-22
490d33f line 372· PR #693 2026-05-22
9e00502 line 372 2026-05-22
1faca6c line 372 2026-05-21

Get this for your repo.

Pathfinder runs the same scan on your own repos free. Connect via GitHub in 30 seconds.

Get started View the open-source rules →