Skip to content

ENH harden Card by adding a flag to allow/disallow insecure pickle loading#485

Merged
adrinjalali merged 6 commits intoskops-dev:mainfrom
io-no:main
Aug 6, 2025
Merged

ENH harden Card by adding a flag to allow/disallow insecure pickle loading#485
adrinjalali merged 6 commits intoskops-dev:mainfrom
io-no:main

Conversation

@io-no
Copy link
Copy Markdown
Contributor

@io-no io-no commented Jul 25, 2025

The PR introduces additional hardening for models loaded through Card.
If the model is in an insecure pickle format, it is now required to explicitly set a flag during Card object creation to allow the operation.

@adrinjalali

adrinjalali
adrinjalali reviewed Aug 5, 2025
View reviewed changes
Copy link
Copy Markdown
Member

@adrinjalali adrinjalali left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This looks pretty nice. Could also please add a changelog entry?

Also tests to check the raised error message and to make sure having a pickle file with a skops extension fails by default.

@io-no
Copy link
Copy Markdown
Contributor Author

io-no commented Aug 5, 2025

Hi @adrinjalali, added the changelog and tests

@adrinjalali adrinjalali merged commit 29d61ea into skops-dev:main Aug 6, 2025
24 checks passed
@io-no io-no mentioned this pull request Aug 13, 2025
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@adrinjalali adrinjalali adrinjalali approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@io-no @adrinjalali