Injecting the os.system-based reverse shell
This is only proof of concept that may crash the application, but I believe the lack of requirements makes this technique amazing. All you need to work with an arbitrary CPython process - a single script that can read and write process memory.
Good Luck!
The end