Sourcery found 1 blocking security issue:

• sdk/python/packages/flet/src/flet/utils/pip.py:13-23 - Detected subprocess function 'call' without a static string. If this data can be controlled by a malicious actor, it may be an instance of command injection. Audit the use of this call to ensure it is not controllable by an external resource. You may consider using 'shlex.escape()'.