Homepage

mlflow-skinny@3.13.0

MLflow is an open source platform for the complete machine learning lifecycle

  • latest version

    3.13.0

  • first published

    5 years ago

  • latest version published

    11 days ago

  • licenses detected

  • View mlflow-skinny package health on Snyk  (opens in a new tab)
    • Go back to all versions of this package
    Report a new vulnerability Found a mistake?

    Direct Vulnerabilities

    Known vulnerabilities in the mlflow-skinny package. This does not include vulnerabilities belonging to this package’s dependencies.

    Fix vulnerabilities automatically

    Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

    Fix for free
    VulnerabilityVulnerable Version
    • L
    Use of Weak Hash

    Affected versions of this package are vulnerable to Use of Weak Hash in the mlflow.data.digest_utils function. An attacker can compromise data integrity or cause unexpected behavior by exploiting the use of a weak hash algorithm during dataset digest computation.

    How to fix Use of Weak Hash?

    There is no fixed version for mlflow-skinny.

    [0,)
    • C
    Use of Default Credentials

    Affected versions of this package are vulnerable to Use of Default Credentials in the basic_auth.ini file. An attacker can gain unauthorized administrative access and execute arbitrary code if the default admin credentials have not been changed.

    How to fix Use of Default Credentials?

    A fix was pushed into the master branch but not yet published.

    [2.3.2,)
    Go back to all versions of this package