From 84a825a0b42c206d58fd5393b9e4fc4660031b8e Mon Sep 17 00:00:00 2001
From: vasiliadi <9432426+vasiliadi@users.noreply.github.com>
Date: Fri, 15 Nov 2024 20:08:01 -0600
Subject: [PATCH] fix: possible XML bombs and other exploits by replacing
 xml.etree.ElementTree with defusedxml.ElementTree

---
 youtube_transcript_api/_transcripts.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/youtube_transcript_api/_transcripts.py b/youtube_transcript_api/_transcripts.py
index f93f717..0c42258 100644
--- a/youtube_transcript_api/_transcripts.py
+++ b/youtube_transcript_api/_transcripts.py
@@ -8,7 +8,7 @@ if sys.version_info.major == 2:  # pragma: no cover
 
 import json
 
-from xml.etree import ElementTree
+from defusedxml import ElementTree
 
 import re