YAML Metadata Warning:empty or missing yaml metadata in repo card
Check out the documentation for more information.
ModelScan Denylist Bypass: profile.run() ACE
Issue
ModelScan v0.8.8 denylist missing profile.run.
Pickle importing profile.run bypasses scanner while achieving code execution via exec().
PoC
pip install modelscan==0.8.8
python3 poc_profile_run.py
Expected
- ModelScan: "No issues found!" (bypass confirmed)
- pickle.loads(): proof file created via profile.run() -> exec()
Root Cause
profile.run() (CPython Lib/profile.py) calls exec() on its argument. profile.run NOT on ModelScan UNSAFE_GLOBALS denylist.
CWE
CWE-1333: Incomplete Denylist
Inference Providers NEW
This model isn't deployed by any Inference Provider. 🙋 Ask for provider support