CVE-2026-46432: Cli Serve Py Cwe 000 Cve 2026 46432
The --trust-remote-code CLI argument was manually defined via argparse without the correct internal project wiring. This causes downstream model-loading components to miss the flag's value and inherently default back to `trust_remote_code=True`, presenting a security risk during remote code execution operations. Remove the manual argparse definition and prop
Pythongreprules fetch cve-2026-46432-cli-serve-py-cwe-000-cve-2026-46432 --engine opengrepDescription
The --trust-remote-code CLI argument was manually defined via argparse without the correct internal project wiring. This causes downstream model-loading components to miss the flag's value and inherently default back to `trust_remote_code=True`, presenting a security risk during remote code execution operations. Remove the manual argparse definition and prop
Community feedback
0 signals from signed-in users.
- Useful
- 0
- False positive
- 0
- Metadata
- 0