pypi›petl›CVE-2020-291289.8 CRITICALXPath Injectionpetl, in some configurations, allows resolution of entities in an XML document.