trailofbits/fickling

Issues

• NotImplementedError: TODO: Add support for Opcode EXT1

  #114 opened a month ago by ELJoOker2004
  0

• Update `pytorch_poc.py`

  #86 opened 9 months ago by suhacker1
  2

• Fickling DoS

  #111 opened 2 months ago by coldwaterq
  2

• Test on Python 3.12

  #104 opened 5 months ago by woodruffw
  1

• Not python3.12 compatible due to distutils deprecation.

  #102 opened 5 months ago by jace0x21
  1

• Further align the CLI and Python API

  #101 opened 6 months ago by suhacker1
  0

• Support more pickle-based file formats and can san it

  #97 opened 7 months ago by zxhubo
  1

• Nothing

  #99 opened 6 months ago by TsilavinaZh
  0

• check-safety returns no output

  #96 opened 6 months ago by sh3llburn
  2

• torch dependency

  #92 opened 6 months ago by stevemarin
  3

• Polyglot module improvements

  #93 opened 7 months ago by suhacker1
  0

• Support more pickle-based file formats

  #49 opened a year ago by suhacker1
  0

• Support hooking `pickle.loads()` and add `fickling.loads()`

  #84 opened 9 months ago by Boyan-MILANOV
  0

• can't create a safe python class

  #63 opened a year ago by luccabb
  3

• Function hook does not work on all PyTorch inputs

  #80 opened 9 months ago by suhacker1
  0

• runpy._run_code and torch.jit.unsupported_tensor_ops.execWrapper

  #36 opened 10 months ago by hidden-tom
  1

• Add direct support for PyTorch/TorchScript serialized models

  #29 opened a year ago by suhacker1
  3

• Injection does not properly handle `PROTO` and `FRAME`

  #30 opened a year ago by ESultanik
  0

• multiple pickles can be stacked in one file

  #20 opened a year ago by coldwaterq
  3

• Port this project's metadata over to `pyproject.toml`

  #37 opened 2 years ago by woodruffw
  1

• Possible to apply heuristics scan to pickle files?

  #34 opened 2 years ago by neural-loop
  0

• Injections not cleaning up after itself.

  #19 opened 2 years ago by coldwaterq
  4

• Errors when scanning Stable Diffusion/Textual Inversion embeddings pickle file

  #22 opened 2 years ago by BeanCounterTop
  1

• Is `socket` not considered an unsafe import ?

  #16 opened 2 years ago by McPatate
  1

• Error using check-safety/trace features (AttributeError: 'alias' object has no attribute 'asname')

  #21 opened 2 years ago by wunderwuzzi23
  1

• Adding an `allow-list` to the list of packages from which imports are considered safe

  #14 opened 3 years ago by adrinjalali
  1

• NotImplementedError: TODO: Add support for Opcode BININT

  #12 opened 3 years ago by abenavidesmeli
  2

• NotImplementedError: TODO: Add support for Opcode LONG1

  #11 opened 3 years ago by coldwaterq
  1

• NotImplementedError: TODO: Add support for Opcode BINFLOAT

  #7 opened 3 years ago by shreyansh26
  2