Nuitka 0.8.4 and prior is vulnerable to command injection. A patch is available and anticipated to be part of the 0.9 release.
0.9
{ "affected_functions": [ "nuitka.__main__.main", "nuitka.build.SconsCaching.checkCachingSuccess", "nuitka.nodes.NodeBases.fromXML", "nuitka.plugins.PluginBase.NuitkaPluginBase" ] }
{ "last_known_affected_version_range": "<= 0.8.4" }