| tags: | |
| - security | |
| - huntr | |
| - modelscan | |
| - model-file-vulnerability | |
| # F-MFV-004: ModelScan misses NumPy ctypeslib.load_library native-code load | |
| This repository contains a gated proof-of-concept model artifact for a Huntr Model File Vulnerability submission. | |
| Warning: do not load this artifact outside an isolated test environment. The payload is intentionally harmless and writes only local marker files during controlled reproduction, but it demonstrates a model-load execution path. | |
| ## Target | |
| - Finding: `F-MFV-004` | |
| - Target: Joblib / ModelScan | |
| - Scanner: ModelScan `0.8.8` | |
| ## Summary | |
| The Joblib artifact embeds a harmless shared library and loads it through numpy.ctypeslib.load_library during model load while ModelScan 0.8.8 reports zero issues. | |
| ## Files | |
| - `numpy_ctypeslib.joblib` | |
| - SHA256: `3a36a1f4752474633f3ef0d203c2b64e28b8500dfe5a0583b0bb69af868ead2b` | |
| ## Access | |
| This public repository is gated with manual access review for Huntr MFV triage. `protectai-bot` has been granted access. | |