Wan2.1

Zengtudor/Wan2.1

Fork 0

mirror of https://github.com/Wan-Video/Wan2.1.git synced 2025-12-15 19:53:22 +00:00

Commit Graph

Author	SHA1	Message	Date
Claude	f71b604438	security: add weights_only=True to all torch.load() calls Fixes a critical security vulnerability where malicious model checkpoints could execute arbitrary code through pickle deserialization. Changes: - wan/modules/vae.py: Add weights_only=True to torch.load() - wan/modules/clip.py: Add weights_only=True to torch.load() - wan/modules/t5.py: Add weights_only=True to torch.load() This prevents arbitrary code execution when loading untrusted checkpoints while maintaining full compatibility with legitimate model weights. Security Impact: Critical - prevents RCE attacks Breaking Changes: None - weights_only=True is compatible with all standard PyTorch state_dict files	2025-11-19 04:24:14 +00:00
WanX-Video-1	65386b2e03	init upload	2025-02-25 22:07:47 +08:00

Author

SHA1

Message

Date

Claude

f71b604438

security: add weights_only=True to all torch.load() calls

Fixes a critical security vulnerability where malicious model checkpoints
could execute arbitrary code through pickle deserialization.

Changes:
- wan/modules/vae.py: Add weights_only=True to torch.load()
- wan/modules/clip.py: Add weights_only=True to torch.load()
- wan/modules/t5.py: Add weights_only=True to torch.load()

This prevents arbitrary code execution when loading untrusted checkpoints
while maintaining full compatibility with legitimate model weights.

Security Impact: Critical - prevents RCE attacks
Breaking Changes: None - weights_only=True is compatible with all standard
PyTorch state_dict files

2025-11-19 04:24:14 +00:00

WanX-Video-1

65386b2e03

init upload

2025-02-25 22:07:47 +08:00

2 Commits