Skip to content

Security: Remediation of RCE via Insecure Pickle Deserialization in Model I/O #667

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
JoshuaProvoste wants to merge 1 commit into
base: main
Choose a base branch
from

io: secure load_params by replacing pickle with msgpack

f68832b
Select commit
Loading
Failed to load commit list.
Open

Security: Remediation of RCE via Insecure Pickle Deserialization in Model I/O #667

io: secure load_params by replacing pickle with msgpack
f68832b
Select commit
Loading
Failed to load commit list.
Google CLA / cla/google succeeded Apr 5, 2026 in 1s

✅ All contributors are covered under a CLA with Google

See https://cla.developers.google.com/ for more info about Google's Contributor License Agreement (CLA).

ℹ️ Googlers: Go here to view more details and manage scans for this pull request.

Details

The following contributors were found for this pull request:

f68832b Author: @JoshuaProvoste <8358462+JoshuaProvoste​@users.noreply.github.com>

(Only the first commit for a unique contributor is listed.)

View more details on Google CLA