diff --git a/.github/workflows/vulnerability-scan.yml b/.github/workflows/vulnerability-scan.yml index bee23f7d6..01eed7ac6 100644 --- a/.github/workflows/vulnerability-scan.yml +++ b/.github/workflows/vulnerability-scan.yml @@ -64,6 +64,7 @@ jobs: --ignore-vuln PYSEC-2025-197 \ --ignore-vuln PYSEC-2025-210 \ --ignore-vuln PYSEC-2026-139 \ + --ignore-vuln GHSA-rrmf-rvhw-rf47 \ --ignore-vuln PYSEC-2025-211 \ --ignore-vuln PYSEC-2025-212 \ --ignore-vuln PYSEC-2025-213 \ @@ -81,6 +82,7 @@ jobs: # PYSEC-2025-183 - pyjwt 2.12.1: disputed weak-encryption claim; key length is application-chosen # PYSEC-2025-189..197 - torch 2.11.0: memory-corruption/DoS in functions only reachable via untrusted models; no fix available # PYSEC-2025-210, PYSEC-2026-139 - torch 2.11.0: profiler/deserialization issues; no fix available + # GHSA-rrmf-rvhw-rf47 - torch 2.11.0 (CVE-2025-3000, alias of PYSEC-2025-194): memory corruption in torch.jit.script, CVSS 1.9, local-only; affected <=2.12.0, no fix available. pip-audit reports it under the GHSA id so the PYSEC ignore above does not catch it. # PYSEC-2025-211..218 - transformers 5.5.4: deserialization/code injection via malicious model checkpoints; no fix available # GHSA-f4j7-r4q5-qw2c - chromadb 1.1.1 (CVE-2026-45829): pre-auth RCE via /api/v2/tenants/{tenant}/databases/{db}/collections when trust_remote_code=true. # Advisory: vulnerable >=1.0.0,<=1.5.9, firstPatchedVersion=none. We only use chromadb.PersistentClient (lib/crewai/src/crewai/rag/chromadb/factory.py) diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml index 9177d6a00..82285801f 100644 --- a/.pre-commit-config.yaml +++ b/.pre-commit-config.yaml @@ -47,6 +47,7 @@ repos: --ignore-vuln PYSEC-2025-197 --ignore-vuln PYSEC-2025-210 --ignore-vuln PYSEC-2026-139 + --ignore-vuln GHSA-rrmf-rvhw-rf47 --ignore-vuln PYSEC-2025-211 --ignore-vuln PYSEC-2025-212 --ignore-vuln PYSEC-2025-213