Open ajohnston9 opened 3 months ago
Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you all sign our Contributor License Agreement before we can accept your contribution.
1 out of 2 committers have signed the CLA.
:white_check_mark: ajohnston9
:x: Andrew Johnston
I've added a relevant test and signed the CLA! Let me know if there's anything else I can do.
The following code produces a pickle file that fickling fails to detect as malicious:
This is because this technique uses
pty
and does not leave _var0 unused. This PR addspty
tounsafe_imports
as a quick fix to ensure the primitive behind this technique is detected.