Find real vulnerabilities before they ship
Vulnerability Database › pypi › CVE-2021-23338
This affects all versions of package qlib. The workflow function in cli part of qlib was using an unsafe YAML load function.
Base Score