From f437ce894ec96c7050f1e3a83ae5db3fe395c496 Mon Sep 17 00:00:00 2001
From: pyob-bot <pyob-bot@users.noreply.github.com>
Date: Wed, 18 Mar 2026 00:19:28 +0000
Subject: [PATCH] Refactor: Use Subprocess with File Handling for Dependency
 Locking

---
 src/pyob/reviewer_mixins.py | 11 ++++++-----
 1 file changed, 6 insertions(+), 5 deletions(-)

diff --git a/src/pyob/reviewer_mixins.py b/src/pyob/reviewer_mixins.py
index 3f4fc98..35862af 100644
--- a/src/pyob/reviewer_mixins.py
+++ b/src/pyob/reviewer_mixins.py
@@ -273,11 +273,12 @@ def _fix_runtime_errors(
                     req_path = os.path.join(
                         getattr(self, "target_dir"), "requirements.txt"
                     )
-                    subprocess.run(
-                        f'"{python_cmd}" -m pip freeze > "{req_path}"',
-                        shell=True,
-                        check=True,
-                    )
+                    with open(req_path, "w", encoding="utf-8") as f_req:
+                        subprocess.run(
+                            [python_cmd, "-m", "pip", "freeze"],
+                            stdout=f_req,
+                            check=True,
+                        )
                     logger.info("Auto-locked dependencies in requirements.txt")
                 except Exception as e:
                     logger.warning(f"Failed to lock dependencies: {e}")