Find real vulnerabilities before they ship
Vulnerability Database › pypi › CVE-2019-10800
This affects the package codecov before 2.0.16. The vulnerability occurs due to not sanitizing gcov arguments before being being provided to the popen method.
Base Score