HIGH 8.8
PYSEC-2023-300
Details
Deserialization of Untrusted Data in GitHub repository huggingface/transformers prior to 4.36.
Are you affected?
Enter the version of the package you're using.
Affected packages
PyPI / transformers
Introduced in:
0 Fixed in: 1d63b0ec361e7a38f1339385e8a5a855085532ce Fix
pip install --upgrade 'transformers>=1d63b0ec361e7a38f1339385e8a5a855085532ce'