Launch Week Day 1: Announcing Security Design Review
Start for Free
MEDIUM 4.7 PyPI

transformers has Insecure Temporary File

GHSA-282v-666c-3fvg · CVE-2023-2800 · PYSEC-2023-299

Published · Modified

Description

Insecure Temporary File in GitHub repository huggingface/transformers 4.29.2 and prior. A fix is available at commit 80ca92470938bbcc348e2d9cf4734c7c25cb1c43 and has been released as part of version 4.30.0.

References

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes