This is a heavily interactive web application, and JavaScript is required. Simple HTML interfaces are possible, but that is not what this is.
Post
Alireza Gharib
alirezagharib.net
did:plc:a47i2grd3cuioabyz5vwrniu
π¨ SOC Note: The AI Supply Chain is officially on fire. π¨
Forget Log4j. In Dec 2025, weβre hunting CVE-2025-23001βa.k.a. "PickleScan."
Attackers are now embedding RCE payloads inside pre-trained AI models (.pkl/.h5). If your devs download a "helper" model from a public repo, you're compromised. π§΅π
2025-12-21T15:41:50.133Z