wandb@0.5.2 vulnerabilities

A CLI and library for interacting with the Weights & Biases API.

Known vulnerabilities in the wandb package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
M Race Condition wandb is an A CLI and library for interacting with the Weights and Biases API. Affected versions of this package are vulnerable to Race Condition in the thread cleanup behavior in the `finish_thread_id()` function in `agent.py`. An attacker can access job status from an unauthorized thread if they are accessed or modified at the same time, which could cause data corruption. How to fix Race Condition? Upgrade `wandb` to version 0.15.12 or higher.	[,0.15.12)
M Race Condition wandb is an A CLI and library for interacting with the Weights and Biases API. Affected versions of this package are vulnerable to Race Condition in `handler.go` and `writer.go` that allows attackers to access or modify data, especially in concurrent environments. How to fix Race Condition? Upgrade `wandb` to version 0.15.10 or higher.	[,0.15.10)
M Race Condition wandb is an A CLI and library for interacting with the Weights and Biases API. Affected versions of this package are vulnerable to Race Condition as a result of using the `tempfile.mktemp()` fuctions that returns a file name, which can potentially allow a malicious actor the replace the file before it is used with something else. How to fix Race Condition? Upgrade `wandb` to version 0.12.12 or higher.	[,0.12.12)