Spaces:

Chris4K
/

text-generation-tool

Running

🔐 Automated Security Scan (2 findings)

by Chris4K - opened 15 days ago

Owner 15 days ago

2 high-severity issue(s) (confirmed or likely) across 2 file(s).

Click to expand findings

L0 [CONFIRMED] transformers 4.57.6 - GHSA-69w3-r845-3855: A vulnerability in the HuggingFace Transformers library, specifically in the Trainer class, allows for arbitrary code execution. The _load_rng_state() method in src/transformers/trainer.py at li
- Fix: Upgrade transformers to 5.0.0rc3.

L19 [CONFIRMED] Secret in git history: Discovered a Hugging Face Access token, which could lead to unauthorized access to AI models and sensitive data.

Scanned at 2026-04-28T11:29:59.997524Z

Upload images, audio, and videos by dragging in the text input, pasting, or clicking here.

Tap or paste here to upload images

· Sign up or log in to comment