Skip to content
Open
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 2 additions & 0 deletions Doc/library/tarfile.rst
Original file line number Diff line number Diff line change
Expand Up @@ -1195,6 +1195,8 @@ Here is an incomplete list of things to consider:
* Check filenames against an allow-list of characters
(to filter out control characters, confusables, foreign path separators,
and so on).
* Check for platform-specific filename semantics. For example, on Windows
some names can have reserved meanings.
* Check that filenames have expected extensions (discouraging files that
execute when you “click on them”, or extension-less files like Windows
special device names).
Expand Down
Loading