Hugging Face's logo

fsabiu
/
modelscan-numpy-ctypeslib-joblib-bypass

Joblib
security
huntr
modelscan
model-file-vulnerability
Model card Files
xet
 Community
modelscan-numpy-ctypeslib-joblib-bypass / README.md
fsabiu's picture
fsabiu
Add F-MFV-004 gated PoC artifact
bcc2658 verified
preview code
|
raw
history blame contribute delete
1.01 kB
metadata 
tags:
  - security
  - huntr
  - modelscan
  - model-file-vulnerability

F-MFV-004: ModelScan misses NumPy ctypeslib.load_library native-code load

This repository contains a gated proof-of-concept model artifact for a Huntr Model File Vulnerability submission.

Warning: do not load this artifact outside an isolated test environment. The payload is intentionally harmless and writes only local marker files during controlled reproduction, but it demonstrates a model-load execution path.

Target

  • Finding: F-MFV-004
  • Target: Joblib / ModelScan
  • Scanner: ModelScan 0.8.8

Summary

The Joblib artifact embeds a harmless shared library and loads it through numpy.ctypeslib.load_library during model load while ModelScan 0.8.8 reports zero issues.

Files

  • numpy_ctypeslib.joblib
    • SHA256: 3a36a1f4752474633f3ef0d203c2b64e28b8500dfe5a0583b0bb69af868ead2b

Access

This public repository is gated with manual access review for Huntr MFV triage. protectai-bot has been granted access.