GHSA-5hwf-rc88-82xm: Fickling missing RCE-capable modules in UNSAFE_IMPORTS

March 4, 2026

fickling’s UNSAFE_IMPORTS blocklist is missing at least 3 stdlib modules that provide direct arbitrary command execution: uuid, _osx_support, and _aix_support. These modules contain functions that internally call subprocess.Popen() or os.system() with attacker-controlled arguments. A malicious pickle file importing these modules passes both UnsafeImports and NonStandardImports checks.

References

github.com/advisories/GHSA-5hwf-rc88-82xm
github.com/trailofbits/fickling
github.com/trailofbits/fickling/commit/ffac3479dbb97a7a1592d85991888562d34dd05b
github.com/trailofbits/fickling/security/advisories/GHSA-5hwf-rc88-82xm

Code Behaviors & Features

Detect and mitigate GHSA-5hwf-rc88-82xm with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →