test: eliminate warning re unsafe yaml.load()

Totktonada · Totktonada · commit 108855ce490c · 2020-03-28T14:11:01.000+03:00
Recent pyyaml versions start to warn about using yaml.load(), which is considered unsafe for an arbitrary input (see CVE-2017-18342). Our input is controllable (because we wrote tests ourself), but anyway the warning may be annoying. The main reason for me, however, is that using of yaml.load() is disabled for dev-python/pyyaml package on Gentoo. See [1] for more information. We did the similar changed for tarantool-python, test-run and tarantool tests, see [2], [3], [4], [5]. [1]: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=79ba924d94cb0cf8559565178414c2a1d687b90c [2]: tarantool/tarantool-python@350771d [3]: tarantool/test-run@38400e9 [4]: tarantool/test-run@89808d6 [5]: tarantool/tarantool@d5fdc53
diff --git a/lib/tarantool_server.py b/lib/tarantool_server.py
@@ -108,7 +108,7 @@ def execute_no_reconnect(self, command):
             if (res.rfind("\n...\n") >= 0 or res.rfind("\r\n...\r\n") >= 0):
                 break
 
-        return yaml.load(res)
+        return yaml.safe_load(res)
 
 class TarantoolServer(object):
     default_tarantool = {
