modelaudit-picklescan: v0.1.6

github-actions released this 05 Jun 18:39

modelaudit-picklescan-v0.1.6

4a73c06

0.1.6 (2026-06-05)

Bug Fixes

avoid pickle meta-path source probing (#1493) (a31df76)
bound native picklescan state simulation (#1501) (f4c9cdf)
detect dynamic picklescan protocol hooks (#1375) (400c132)
detect newline-separated picklescan calls (#1481) (8dcbbb1)
fail closed on encoded nested probe cap (6633dac)
fail closed on pickle import reference truncation (#1449) (5ddac28)
fail closed on protocol 5 pickle buffers (#1450) (e696a1f)
flag import-only custom pickle globals (#1499) (ca3a476)
flag oversized pickle frames as tampered (#1448) (c4758fd)
redact Keras evidence secrets (#1475) (37eda4e)
resolve follow-up quality findings (#1222) (2968961)
routing: preserve Torch7 findings in Llamafile polyglots (#1376) (2e95c88)
scan raw nested pickles in unicode strings (#1461) (4278da9)
terminate call-graph alias fixpoint on oscillating rebinds (#1247) (#1259) (89895a4)

Performance Improvements

reuse call graph analysis in directory scans (#1266) (2f01ddf)

Documentation

align picklescan version guidance (#1279) (a53eb11)

Assets 2