Skip to content
Semgrep SAST Scan

fix: YOLOv5u version detection and revert changes in ghcr image building #18

Sign in to view logs

fix: YOLOv5u version detection and revert changes in ghcr image building

fix: YOLOv5u version detection and revert changes in ghcr image building #18

Triggered via pull request May 6, 2025 14:44
@jkbmrzjkbmrz
synchronize #148
fix/yolov5u_version_detection
Status Success
Total duration 40s
Artifacts

semgrep.yaml

on: pull_request
semgrep/ci
28s
semgrep/ci
Fit to window
Zoom out
Zoom in

Annotations

6 errors
Semgrep Issue: tools/yolo/yolov5_exporter.py#L30
Functions reliant on pickle can result in arbitrary code execution. Consider loading from `state_dict`, using fickling, or switching to a safer serialization method like ONNX
Semgrep Issue: tools/yolo/yolov6_exporter.py#L29
Functions reliant on pickle can result in arbitrary code execution. Consider loading from `state_dict`, using fickling, or switching to a safer serialization method like ONNX
Semgrep Issue: tools/yolov6r1/yolov6_r1_exporter.py#L28
Functions reliant on pickle can result in arbitrary code execution. Consider loading from `state_dict`, using fickling, or switching to a safer serialization method like ONNX
Semgrep Issue: tools/yolov6r3/gold_yolo_exporter.py#L33
Functions reliant on pickle can result in arbitrary code execution. Consider loading from `state_dict`, using fickling, or switching to a safer serialization method like ONNX
Semgrep Issue: tools/yolov6r3/yolov6_r3_exporter.py#L40
Functions reliant on pickle can result in arbitrary code execution. Consider loading from `state_dict`, using fickling, or switching to a safer serialization method like ONNX
Semgrep Issue: tools/yolov7/yolov7_exporter.py#L29
Functions reliant on pickle can result in arbitrary code execution. Consider loading from `state_dict`, using fickling, or switching to a safer serialization method like ONNX