start-process-with-partial-path (S607)
Derived from the flake8-bandit linter.
What it does
Checks for the starting of a process with a partial executable path.
Why is this bad?
Starting a process with a partial executable path can allow attackers to
execute an arbitrary executable by adjusting the PATH environment variable.
Consider using a full path to the executable instead.
Example
Use instead: