Replace xml.dom.minidom.parse which is known to be vulnerable to XML attacks. (#3933)

This code is only run during the development process when updating translations base and the source XML files are trusted data. There doesn't seem to be a downside to the change, however.
2019-06-28 06:36:08 -04:00 · 2019-06-28 06:36:08 -04:00 · 74f227590e
commit 74f227590e
parent fb99661d5d
1 changed files with 1 additions and 1 deletions
--- a/data/po/extract_strings_from_XML.py
+++ b/data/po/extract_strings_from_XML.py
@ -86,7 +86,7 @@ for file in filenames:
        isAchievements = True
        
    try:
-        doc = xml.dom.minidom.parse(file)
+        doc = defusedxml.minidom.parse(file)
    except Exception as ex:
        print "============================================"
        print "/!\\ Expat doesn't like ", file, "! Error=", type(ex), " (", ex.args, ")"