Joblib legacy compatibility hardening-bypass PoC
This repository contains a proof-of-concept artifact for a Joblib finding titled:
Security hardening bypass in legacy NDArrayWrapper compatibility loader defeats caller find_class restrictions
Files:
old.pkl: legacy Joblib compatibility wrapperpayload.npy: companion NumPy object array containing the payloadreproduce.py: deterministic repro script
The payload is intentionally harmless and only attempts to create /tmp/joblib_hf_poc_triggered when loaded through the vulnerable path.
Inference Providers NEW
This model isn't deployed by any Inference Provider. 🙋 Ask for provider support