gitsafehub
github.com/microsoft/nni ↗

microsoft/nni

scanned 2026-06-30 · git 767ed7f
2 of 6 checks flagged a security issue
🔴 Needs attention
Only 4 of 6 checks finished — treat this as provisional. Re-check ↻

Informational scan, not a security audit. How this is computed.

Leaked secretsVulnerable dependencies118Known OSS vulnerabilities459Risky code patternsMalicious dependenciesProject health

Security checks

Leaked secrets — Gitleaks none found ✓

API keys, passwords or tokens committed into the repo.

Nothing found by this check. ✓

via Gitleaks v8.21.2 · MIT

Vulnerable dependencies — Trivy 118 found · 2 serious

Packages you depend on that have known security holes (CVEs).

  • Serious CVE-2025-7783 form-data: Unsafe random function in form-data
    ts/nni_manager/package-lock.json
    A package you depend on has a known security hole (CVE-2025-7783). Fix: Update that package to its patched version.
  • Serious CVE-2025-7783 form-data: Unsafe random function in form-data
    ts/webui/package-lock.json
    A package you depend on has a known security hole (CVE-2025-7783). Fix: Update that package to its patched version.
  • Worth fixing CVE-2025-27789 Babel has inefficient RegExp complexity in generated code with .replace when transpiling named capturing groups
    ts/jupyter_extension/yarn.lock
    A package you depend on has a known security hole (CVE-2025-27789). Fix: Update that package to its patched version.
  • Worth fixing CVE-2025-69873 ajv: ReDoS via $data reference
    ts/jupyter_extension/yarn.lock
    A package you depend on has a known security hole (CVE-2025-69873). Fix: Update that package to its patched version.
  • Worth fixing CVE-2022-46175 json5: Prototype Pollution in JSON5 via Parse Method
    ts/jupyter_extension/yarn.lock
    A package you depend on has a known security hole (CVE-2022-46175). Fix: Update that package to its patched version.
  • Worth fixing CVE-2022-21680 marked: regular expression block.def may lead Denial of Service
    ts/jupyter_extension/yarn.lock
    A package you depend on has a known security hole (CVE-2022-21680). Fix: Update that package to its patched version.
  • Worth fixing CVE-2022-21681 marked: regular expression inline.reflinkSearch may lead Denial of Service
    ts/jupyter_extension/yarn.lock
    A package you depend on has a known security hole (CVE-2022-21681). Fix: Update that package to its patched version.
  • Worth fixing CVE-2024-55565 nanoid: nanoid mishandles non-integer values
    ts/jupyter_extension/yarn.lock
    A package you depend on has a known security hole (CVE-2024-55565). Fix: Update that package to its patched version.
  • Worth fixing CVE-2023-44270 PostCSS: Improper input validation in PostCSS
    ts/jupyter_extension/yarn.lock
    A package you depend on has a known security hole (CVE-2023-44270). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-41305 postcss: PostCSS: Cross-Site Scripting (XSS) via improper escaping of style closing tags
    ts/jupyter_extension/yarn.lock
    A package you depend on has a known security hole (CVE-2026-41305). Fix: Update that package to its patched version.
  • Worth fixing CVE-2022-25887 sanitize-html: insecure global regular expression replacement logic may lead to ReDoS
    ts/jupyter_extension/yarn.lock
    A package you depend on has a known security hole (CVE-2022-25887). Fix: Update that package to its patched version.
  • Worth fixing CVE-2024-21501 sanitize-html: Information Exposure when used on the backend
    ts/jupyter_extension/yarn.lock
    A package you depend on has a known security hole (CVE-2024-21501). Fix: Update that package to its patched version.
  • Worth fixing CVE-2024-37890 nodejs-ws: denial of service when handling a request with many HTTP headers
    ts/jupyter_extension/yarn.lock
    A package you depend on has a known security hole (CVE-2024-37890). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-48779 ws: ws: Denial of Service via memory exhaustion from small WebSocket fragments
    ts/jupyter_extension/yarn.lock
    A package you depend on has a known security hole (CVE-2026-48779). Fix: Update that package to its patched version.
  • Worth fixing CVE-2025-69873 ajv: ReDoS via $data reference
    ts/nni_manager/package-lock.json
    A package you depend on has a known security hole (CVE-2025-69873). Fix: Update that package to its patched version.
  • Worth fixing CVE-2024-45590 body-parser: Denial of Service Vulnerability in body-parser
    ts/nni_manager/package-lock.json
    A package you depend on has a known security hole (CVE-2024-45590). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-33750 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern
    ts/nni_manager/package-lock.json
    A package you depend on has a known security hole (CVE-2026-33750). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-33750 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern
    ts/nni_manager/package-lock.json
    A package you depend on has a known security hole (CVE-2026-33750). Fix: Update that package to its patched version.
  • Worth fixing CVE-2024-21538 cross-spawn: regular expression denial of service
    ts/nni_manager/package-lock.json
    A package you depend on has a known security hole (CVE-2024-21538). Fix: Update that package to its patched version.
  • Worth fixing CVE-2024-29041 express: cause malformed URLs to be evaluated
    ts/nni_manager/package-lock.json
    A package you depend on has a known security hole (CVE-2024-29041). Fix: Update that package to its patched version.
  • Worth fixing CVE-2023-26159 follow-redirects: Improper Input Validation due to the improper handling of URLs by the url.parse()
    ts/nni_manager/package-lock.json
    A package you depend on has a known security hole (CVE-2023-26159). Fix: Update that package to its patched version.
  • Worth fixing CVE-2024-28849 follow-redirects: Possible credential leak
    ts/nni_manager/package-lock.json
    A package you depend on has a known security hole (CVE-2024-28849). Fix: Update that package to its patched version.
  • Worth fixing GHSA-r4q5-vmmm-2653 follow-redirects leaks Custom Authentication Headers to Cross-Domain Redirect Targets
    ts/nni_manager/package-lock.json
    A package you depend on has a known security hole (GHSA-r4q5-vmmm-2653). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-12143 form-data is a library for creating readable multipart/form-data strea ...
    ts/nni_manager/package-lock.json
    A package you depend on has a known security hole (CVE-2026-12143). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-48038 joi has an uncaught RangeError on deeply nested input through recursive `link()` schemas
    ts/nni_manager/package-lock.json
    A package you depend on has a known security hole (CVE-2026-48038). Fix: Update that package to its patched version.
… 93 more not shown

via Trivy v0.70.0 · Apache-2.0

Known OSS vulnerabilities — OSV-Scanner 459 found · 23 serious

Your dependencies cross-checked against the OSV vulnerability database.

  • Serious PYSEC-2026-548 TensorFlow has a heap out-of-buffer read vulnerability in the QuantizeAndDequantize operation
    /workdirs/scan-39eb4e9c-7768-41ef-a80f-d7cc7d4a6d52/examples/nas/benchmarks/nasbench101.requirements.txt
    A package you depend on has a known security hole (CVE-2023-25668). Fix: Update that package to its patched version.
  • Serious PYSEC-2026-369 Keras code injection vulnerability
    /workdirs/scan-39eb4e9c-7768-41ef-a80f-d7cc7d4a6d52/examples/nas/benchmarks/nasbench101.requirements.txt
    A package you depend on has a known security hole (CVE-2024-3660). Fix: Update that package to its patched version.
  • Serious GHSA-hjqc-jx6g-rwp9 Keras Directory Traversal Vulnerability
    /workdirs/scan-39eb4e9c-7768-41ef-a80f-d7cc7d4a6d52/examples/nas/benchmarks/nasbench101.requirements.txt
    A package you depend on has a known security hole (CVE-2025-12060). Fix: Update that package to its patched version.
  • Serious PYSEC-2026-457 Arbitrary Code Execution in Pillow
    /workdirs/scan-39eb4e9c-7768-41ef-a80f-d7cc7d4a6d52/examples/trials/benchmarking/automlbenchmark/requirements.txt
    A package you depend on has a known security hole (CVE-2023-50447). Fix: Update that package to its patched version.
  • Serious PYSEC-2026-548 TensorFlow has a heap out-of-buffer read vulnerability in the QuantizeAndDequantize operation
    /workdirs/scan-39eb4e9c-7768-41ef-a80f-d7cc7d4a6d52/examples/trials/ga_squad/requirements.txt
    A package you depend on has a known security hole (CVE-2023-25668). Fix: Update that package to its patched version.
  • Serious PYSEC-2026-369 Keras code injection vulnerability
    /workdirs/scan-39eb4e9c-7768-41ef-a80f-d7cc7d4a6d52/examples/trials/ga_squad/requirements.txt
    A package you depend on has a known security hole (CVE-2024-3660). Fix: Update that package to its patched version.
  • Serious GHSA-hjqc-jx6g-rwp9 Keras Directory Traversal Vulnerability
    /workdirs/scan-39eb4e9c-7768-41ef-a80f-d7cc7d4a6d52/examples/trials/ga_squad/requirements.txt
    A package you depend on has a known security hole (CVE-2025-12060). Fix: Update that package to its patched version.
  • Serious GHSA-hjqc-jx6g-rwp9 Keras Directory Traversal Vulnerability
    /workdirs/scan-39eb4e9c-7768-41ef-a80f-d7cc7d4a6d52/examples/trials/mnist-batch-tune-keras/requirements.txt
    A package you depend on has a known security hole (CVE-2025-12060). Fix: Update that package to its patched version.
  • Serious PYSEC-2026-548 TensorFlow has a heap out-of-buffer read vulnerability in the QuantizeAndDequantize operation
    /workdirs/scan-39eb4e9c-7768-41ef-a80f-d7cc7d4a6d52/examples/trials/network_morphism/requirements.txt
    A package you depend on has a known security hole (CVE-2023-25668). Fix: Update that package to its patched version.
  • Serious PYSEC-2022-43015 In PyTorch before trunk/89695, torch.jit.annotations.parse_type_line can cause arbitrary code execution because eval is used unsafely.
    /workdirs/scan-39eb4e9c-7768-41ef-a80f-d7cc7d4a6d52/examples/trials/network_morphism/requirements.txt
    A package you depend on has a known security hole (CVE-2022-45907). Fix: Update that package to its patched version.
  • Serious PYSEC-2024-259 In PyTorch <=2.4.1, the RemoteModule has Deserialization RCE. NOTE: this is disputed by multiple parties because this is intended behavior in PyTorch distributed computing.
    /workdirs/scan-39eb4e9c-7768-41ef-a80f-d7cc7d4a6d52/examples/trials/network_morphism/requirements.txt
    A package you depend on has a known security hole (CVE-2024-48063). Fix: Update that package to its patched version.
  • Serious PYSEC-2025-41 PyTorch is a Python package that provides tensor computation with strong GPU acceleration and deep neural networks built on a tape-based autograd system. In version 2.5.1 and prior, a Remote Command E
    /workdirs/scan-39eb4e9c-7768-41ef-a80f-d7cc7d4a6d52/examples/trials/network_morphism/requirements.txt
    A package you depend on has a known security hole (CVE-2025-32434). Fix: Update that package to its patched version.
  • Serious PYSEC-2026-369 Keras code injection vulnerability
    /workdirs/scan-39eb4e9c-7768-41ef-a80f-d7cc7d4a6d52/examples/trials/network_morphism/requirements.txt
    A package you depend on has a known security hole (CVE-2024-3660). Fix: Update that package to its patched version.
  • Serious GHSA-hjqc-jx6g-rwp9 Keras Directory Traversal Vulnerability
    /workdirs/scan-39eb4e9c-7768-41ef-a80f-d7cc7d4a6d52/examples/trials/network_morphism/requirements.txt
    A package you depend on has a known security hole (CVE-2025-12060). Fix: Update that package to its patched version.
  • Serious PYSEC-2026-457 Arbitrary Code Execution in Pillow
    /workdirs/scan-39eb4e9c-7768-41ef-a80f-d7cc7d4a6d52/examples/trials/network_morphism/requirements.txt
    A package you depend on has a known security hole (CVE-2023-50447). Fix: Update that package to its patched version.
  • Serious GHSA-76p3-8jx3-jpfq Prototype pollution in webpack loader-utils
    /workdirs/scan-39eb4e9c-7768-41ef-a80f-d7cc7d4a6d52/ts/jupyter_extension/yarn.lock
    A package you depend on has a known security hole (CVE-2022-37601). Fix: Update that package to its patched version.
  • Serious GHSA-hc6q-2mpp-qw7j Cross-realm object access in Webpack 5
    /workdirs/scan-39eb4e9c-7768-41ef-a80f-d7cc7d4a6d52/ts/jupyter_extension/yarn.lock
    A package you depend on has a known security hole (CVE-2023-28154). Fix: Update that package to its patched version.
  • Serious GHSA-67hx-6x53-jw92 Babel vulnerable to arbitrary code execution when compiling specifically crafted malicious code
    /workdirs/scan-39eb4e9c-7768-41ef-a80f-d7cc7d4a6d52/ts/nni_manager/package-lock.json
    A package you depend on has a known security hole (CVE-2023-45133). Fix: Update that package to its patched version.
  • Serious GHSA-fjxv-7rqg-78g4 form-data uses unsafe random function in form-data for choosing boundary
    /workdirs/scan-39eb4e9c-7768-41ef-a80f-d7cc7d4a6d52/ts/nni_manager/package-lock.json
    A package you depend on has a known security hole (CVE-2025-7783). Fix: Update that package to its patched version.
  • Serious GHSA-fjxv-7rqg-78g4 form-data uses unsafe random function in form-data for choosing boundary
    /workdirs/scan-39eb4e9c-7768-41ef-a80f-d7cc7d4a6d52/ts/nni_manager/package-lock.json
    A package you depend on has a known security hole (CVE-2025-7783). Fix: Update that package to its patched version.
  • Serious GHSA-67hx-6x53-jw92 Babel vulnerable to arbitrary code execution when compiling specifically crafted malicious code
    /workdirs/scan-39eb4e9c-7768-41ef-a80f-d7cc7d4a6d52/ts/webui/package-lock.json
    A package you depend on has a known security hole (CVE-2023-45133). Fix: Update that package to its patched version.
  • Serious GHSA-fjxv-7rqg-78g4 form-data uses unsafe random function in form-data for choosing boundary
    /workdirs/scan-39eb4e9c-7768-41ef-a80f-d7cc7d4a6d52/ts/webui/package-lock.json
    A package you depend on has a known security hole (CVE-2025-7783). Fix: Update that package to its patched version.
  • Serious GHSA-w7jw-789q-3m8p shell-quote quote() does not escape newlines in object .op values
    /workdirs/scan-39eb4e9c-7768-41ef-a80f-d7cc7d4a6d52/ts/webui/package-lock.json
    A package you depend on has a known security hole (CVE-2026-9277). Fix: Update that package to its patched version.
  • Worth fixing GHSA-49rq-hwc3-x77w TensorFlow has Null Pointer Error in QuantizedMatMulWithBiasAndDequantize
    /workdirs/scan-39eb4e9c-7768-41ef-a80f-d7cc7d4a6d52/examples/nas/benchmarks/nasbench101.requirements.txt
    A package you depend on has a known security hole (CVE-2023-25670). Fix: Update that package to its patched version.
  • Worth fixing GHSA-558h-mq8x-7q9g TensorFlow has Null Pointer Error in SparseSparseMaximum
    /workdirs/scan-39eb4e9c-7768-41ef-a80f-d7cc7d4a6d52/examples/nas/benchmarks/nasbench101.requirements.txt
    A package you depend on has a known security hole (CVE-2023-25665). Fix: Update that package to its patched version.
… 434 more not shown

via OSV-Scanner v1.9.2 · Apache-2.0

Risky code patterns — Semgrep none found ✓

Code that can be exploited — injection, hardcoded credentials and similar.

Nothing found by this check. ✓

via Semgrep v1.147.0 · LGPL-2.1

Malicious dependencies — Guarddog timed out

Packages that look intentionally malicious — typosquats, sneaky install scripts.

This check didn’t finish — that’s not the same as “clean.” Try Check again above.

via Guarddog v2.10.0 · Apache-2.0

error: pypi:timeout

Project health

A signal about how the project is maintained — not a vulnerability in your code. It doesn’t affect the verdict above.

Project health — OpenSSF Scorecard didn’t run

Maintenance & supply-chain hygiene. A signal about the project — not a vulnerability in your code.

This check didn’t finish — that’s not the same as “clean.” Try Check again above.

via OpenSSF Scorecard · Apache-2.0

About these results. Six open-source checks ran in parallel; every finding is tagged with the tool that produced it. The verdict follows a published rule. False positives and false negatives are normal — a clean scan does not mean the code is secure, and a red verdict does not mean the project is compromised.