mirror of
https://github.com/qgis/QGIS.git
synced 2025-11-27 00:07:16 -05:00
6c1de7f70a
The older approach of storing parameters was insecure, and required eval()ing the unchecked contents of the batch parameter file. This is a security risk, as a malicious file could leak user information or damage the system. So, - Switch to a newer ".batch" format which uses safe JSON objects only for serializing parameter values. - Allow loading the older .json files, but first show a warning that they are a security risk and require to user to explicitly agree to open the file