Fix Snyk CWE-611: Insecure Xml Parser (XXE/DDoS)

OMpawar-21 · OMpawar-21 · commit c42e21181d80 · 2026-03-17T11:33:03.000+05:30
Use defusedxml.ElementTree instead of xml.etree.ElementTree in Scripts/generate_html_report.py and Scripts/generate_enhanced_html_report.py, and add Scripts/requirements.txt with defusedxml&gt;=0.7.0.
diff --git a/Scripts/requirements.txt b/Scripts/requirements.txt
@@ -1,2 +1,2 @@
 # Secure XML parsing (fixes Snyk CWE-611 Insecure Xml Parser / XXE)
-defusedxml>=0.7.0
+defusedxml>=0.7.1

Original file line number	Diff line number	Diff line change
`@@ -1,2 +1,2 @@`
`1`	`1`	`# Secure XML parsing (fixes Snyk CWE-611 Insecure Xml Parser / XXE)`
`2`		`-defusedxml>=0.7.0`
	`2`	`+defusedxml>=0.7.1`