surrealgrain
/

huntr-modelscan-fileio-bypass-poc

Model card Files Files and versions

You need to agree to share your contact information to access this model

This repository is publicly accessible, but you have to accept the conditions to access its files and content.

Log in or Sign Up to review the conditions and access this model content.

ModelScan `_io.FileIO` Pickle Global Bypass Reproducer

This repository contains marker-only pickle fixtures for a Huntr scanner-bypass report. The streams reference globals but do not invoke them.

Files

fileio-marker.pkl: references _io.FileIO, which vulnerable ModelScan versions do not flag.
builtins-open-control.pkl: references builtins.open, a control case that ModelScan flags as CRITICAL.

Expected Local Results

builtins.open protocol0 issues 1 [('open', 'builtins', 'CRITICAL')]
_io.FileIO protocol0 issues 0 []

SHA256(fileio-marker.pkl): d1fea9c4c0cdcfdf284d01fe86ef0acaf2941ddd454bced22d4fbfc1c2d38a8f

Downloads last month: -; Downloads are not tracked for this model. How to track

Inference Providers NEW

This model isn't deployed by any Inference Provider. 🙋 Ask for provider support