Comment 2 for bug 2003693

took a quick look, because this is used all the way back to Bionic chroots. `yaml.safeload()` is supported in 3.12, so this approach should be safe across all the releases. I don't know the release history well enough to know when the interface may have changed. since Lunar is on 6.0 right now, seemed like a good idea to check.