gitsafehub
github.com/tencent-hunyuan/hunyuanvideo-1.5 ↗

tencent-hunyuan/hunyuanvideo-1.5

scanned 2026-06-28 · git 60783e7
3 of 6 checks flagged a security issue
🟡 Worth a look
Only 5 of 6 checks finished — treat this as provisional. Re-check ↻

Informational scan, not a security audit. How this is computed.

Leaked secrets1Vulnerable dependencies9Known OSS vulnerabilities33Risky code patternsMalicious dependenciesProject health7

Security checks

Leaked secrets — Gitleaks 1 found

API keys, passwords or tokens committed into the repo.

  • Worth fixing generic-api-key Detected a Generic API Key, potentially exposing access to various services and sensitive operations.
    hyvideo/models/text_encoders/byT5/__init__.py:20
    A credential (key, password or token) appears in your code. Fix: Remove it, rotate the key, and load it from an environment variable instead.

via Gitleaks v8.21.2 · MIT

Vulnerable dependencies — Trivy 9 found

Packages you depend on that have known security holes (CVEs).

  • Worth fixing CVE-2026-44513 Diffusers: Diffusers: Arbitrary remote code execution via `trust_remote_code` bypass
    requirements.txt
    A package you depend on has a known security hole (CVE-2026-44513). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-45804 Diffusers: TOCTOU Trust Remote Code Bypass
    requirements.txt
    A package you depend on has a known security hole (CVE-2026-45804). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-25990 pillow: Pillow: Out-of-bounds Write via Specially Crafted PSD Image
    requirements.txt
    A package you depend on has a known security hole (CVE-2026-25990). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-40192 Pillow: Pillow: Denial of Service via decompression bomb in FITS image processing
    requirements.txt
    A package you depend on has a known security hole (CVE-2026-40192). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-42311 Pillow is a Python imaging library. From version 10.3.0 to before vers ...
    requirements.txt
    A package you depend on has a known security hole (CVE-2026-42311). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-42308 Pillow: python: Pillow: Denial of Service via integer overflow in font processing
    requirements.txt
    A package you depend on has a known security hole (CVE-2026-42308). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-42309 Pillow: Pillow: Denial of Service via specially crafted coordinate input
    requirements.txt
    A package you depend on has a known security hole (CVE-2026-42309). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-42310 Pillow: Pillow: Denial of Service via malicious PDF processing
    requirements.txt
    A package you depend on has a known security hole (CVE-2026-42310). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-1839 transformers: HuggingFace Transformers: Arbitrary code execution via malicious checkpoint file
    requirements.txt
    A package you depend on has a known security hole (CVE-2026-1839). Fix: Update that package to its patched version.

via Trivy v0.70.0 · Apache-2.0

Known OSS vulnerabilities — OSV-Scanner 33 found

Your dependencies cross-checked against the OSV vulnerability database.

  • Worth fixing PYSEC-2026-40 Diffusers is the a library for pretrained diffusion models. Prior to 0.38.0, a trust_remote_code bypass in DiffusionPipeline.from_pretrained allows arbitrary remote code execution despite the user pa
    /workdirs/scan-cf5c0bd9-898a-469b-a9f5-ba551b4350ce/requirements.txt
    A package you depend on has a known security hole (CVE-2026-44513). Fix: Update that package to its patched version.
  • Worth fixing PYSEC-2026-41 Diffusers is the a library for pretrained diffusion models. Prior to 0.38.0, diffusers 0.37.0 allows remote code execution without the trust_remote_code=True safeguard when loading pipelines from Hug
    /workdirs/scan-cf5c0bd9-898a-469b-a9f5-ba551b4350ce/requirements.txt
    A package you depend on has a known security hole (CVE-2026-44827). Fix: Update that package to its patched version.
  • Worth fixing GHSA-7wx4-6vff-v64p Diffusers: TOCTOU Trust Remote Code Bypass
    /workdirs/scan-cf5c0bd9-898a-469b-a9f5-ba551b4350ce/requirements.txt
    A package you depend on has a known security hole (CVE-2026-45804). Fix: Update that package to its patched version.
  • Worth fixing PYSEC-2026-165 Pillow is a Python imaging library. Prior to version 12.2.0, if a font advances for each glyph by an exceeding large amount, when Pillow keeps track of the current position, it may lead to an integer
    /workdirs/scan-cf5c0bd9-898a-469b-a9f5-ba551b4350ce/requirements.txt
    A package you depend on has a known security hole (CVE-2026-42308). Fix: Update that package to its patched version.
  • Worth fixing GHSA-5xmw-vc9v-4wf2 Pillow has a heap buffer overflow with nested list coordinates
    /workdirs/scan-cf5c0bd9-898a-469b-a9f5-ba551b4350ce/requirements.txt
    A package you depend on has a known security hole (CVE-2026-42309). Fix: Update that package to its patched version.
  • Worth fixing GHSA-cfh3-3jmp-rvhc Pillow affected by out-of-bounds write when loading PSD images
    /workdirs/scan-cf5c0bd9-898a-469b-a9f5-ba551b4350ce/requirements.txt
    A package you depend on has a known security hole (CVE-2026-25990). Fix: Update that package to its patched version.
  • Worth fixing GHSA-pwv6-vv43-88gr Pillow has an OOB Write with Invalid PSD Tile Extents (Integer Overflow)
    /workdirs/scan-cf5c0bd9-898a-469b-a9f5-ba551b4350ce/requirements.txt
    A package you depend on has a known security hole (CVE-2026-42311). Fix: Update that package to its patched version.
  • Worth fixing GHSA-r73j-pqj5-w3x7 Pillow has a PDF Parsing Trailer Infinite Loop (DoS)
    /workdirs/scan-cf5c0bd9-898a-469b-a9f5-ba551b4350ce/requirements.txt
    A package you depend on has a known security hole (CVE-2026-42310). Fix: Update that package to its patched version.
  • Worth fixing GHSA-whj4-6x5x-4v2j FITS GZIP decompression bomb in Pillow
    /workdirs/scan-cf5c0bd9-898a-469b-a9f5-ba551b4350ce/requirements.txt
    A package you depend on has a known security hole (CVE-2026-40192). Fix: Update that package to its patched version.
  • Worth fixing PYSEC-2025-191 A vulnerability, which was classified as problematic, has been found in PyTorch 2.6.0+cu124. Affected by this issue is the function torch.mkldnn_max_pool2d. The manipulation leads to denial of service
    /workdirs/scan-cf5c0bd9-898a-469b-a9f5-ba551b4350ce/requirements.txt
    A package you depend on has a known security hole (CVE-2025-2953). Fix: Update that package to its patched version.
  • Worth fixing PYSEC-2025-198 In PyTorch through 2.6.0, when eager is used, nn.PairwiseDistance(p=2) produces incorrect results.
    /workdirs/scan-cf5c0bd9-898a-469b-a9f5-ba551b4350ce/requirements.txt
    A package you depend on has a known security hole (CVE-2025-46148). Fix: Update that package to its patched version.
  • Worth fixing PYSEC-2025-199 In PyTorch before 2.7.0, when inductor is used, nn.Fold has an assertion error.
    /workdirs/scan-cf5c0bd9-898a-469b-a9f5-ba551b4350ce/requirements.txt
    A package you depend on has a known security hole (CVE-2025-46149). Fix: Update that package to its patched version.
  • Worth fixing PYSEC-2025-200 In PyTorch before 2.7.0, when torch.compile is used, FractionalMaxPool2d has inconsistent results.
    /workdirs/scan-cf5c0bd9-898a-469b-a9f5-ba551b4350ce/requirements.txt
    A package you depend on has a known security hole (CVE-2025-46150). Fix: Update that package to its patched version.
  • Worth fixing PYSEC-2025-201 In PyTorch before 2.7.0, bitwise_right_shift produces incorrect output for certain out-of-bounds values of the "other" argument.
    /workdirs/scan-cf5c0bd9-898a-469b-a9f5-ba551b4350ce/requirements.txt
    A package you depend on has a known security hole (CVE-2025-46152). Fix: Update that package to its patched version.
  • Worth fixing PYSEC-2025-202 PyTorch before 3.7.0 has a bernoulli_p decompose function in decompositions.py even though it lacks full consistency with the eager CPU implementation, negatively affecting nn.Dropout1d, nn.Dropout2d,
    /workdirs/scan-cf5c0bd9-898a-469b-a9f5-ba551b4350ce/requirements.txt
    A package you depend on has a known security hole (CVE-2025-46153). Fix: Update that package to its patched version.
  • Worth fixing PYSEC-2025-203 An issue in the component torch.linalg.lu of pytorch v2.8.0 allows attackers to cause a Denial of Service (DoS) when performing a slice operation.
    /workdirs/scan-cf5c0bd9-898a-469b-a9f5-ba551b4350ce/requirements.txt
    A package you depend on has a known security hole (CVE-2025-55551). Fix: Update that package to its patched version.
  • Worth fixing PYSEC-2025-204 pytorch v2.8.0 was discovered to display unexpected behavior when the components torch.rot90 and torch.randn_like are used together.
    /workdirs/scan-cf5c0bd9-898a-469b-a9f5-ba551b4350ce/requirements.txt
    A package you depend on has a known security hole (CVE-2025-55552). Fix: Update that package to its patched version.
  • Worth fixing PYSEC-2025-205 A syntax error in the component proxy_tensor.py of pytorch v2.7.0 allows attackers to cause a Denial of Service (DoS).
    /workdirs/scan-cf5c0bd9-898a-469b-a9f5-ba551b4350ce/requirements.txt
    A package you depend on has a known security hole (CVE-2025-55553). Fix: Update that package to its patched version.
  • Worth fixing PYSEC-2025-206 pytorch v2.8.0 was discovered to contain an integer overflow in the component torch.nan_to_num-.long().
    /workdirs/scan-cf5c0bd9-898a-469b-a9f5-ba551b4350ce/requirements.txt
    A package you depend on has a known security hole (CVE-2025-55554). Fix: Update that package to its patched version.
  • Worth fixing PYSEC-2025-207 A Name Error occurs in pytorch v2.7.0 when a PyTorch model consists of torch.cummin and is compiled by Inductor, leading to a Denial of Service (DoS).
    /workdirs/scan-cf5c0bd9-898a-469b-a9f5-ba551b4350ce/requirements.txt
    A package you depend on has a known security hole (CVE-2025-55557). Fix: Update that package to its patched version.
  • Worth fixing PYSEC-2025-208 A buffer overflow occurs in pytorch v2.7.0 when a PyTorch model consists of torch.nn.Conv2d, torch.nn.functional.hardshrink, and torch.Tensor.view-torch.mv() and is compiled by Inductor, leading to a
    /workdirs/scan-cf5c0bd9-898a-469b-a9f5-ba551b4350ce/requirements.txt
    A package you depend on has a known security hole (CVE-2025-55558). Fix: Update that package to its patched version.
  • Worth fixing PYSEC-2025-209 An issue in pytorch v2.7.0 can lead to a Denial of Service (DoS) when a PyTorch model consists of torch.Tensor.to_sparse() and torch.Tensor.to_dense() and is compiled by Inductor.
    /workdirs/scan-cf5c0bd9-898a-469b-a9f5-ba551b4350ce/requirements.txt
    A package you depend on has a known security hole (CVE-2025-55560). Fix: Update that package to its patched version.
  • Worth fixing PYSEC-2026-139 A vulnerability was identified in PyTorch 2.10.0. The affected element is an unknown function of the component pt2 Loading Handler. The manipulation leads to deserialization. The attack can only be pe
    /workdirs/scan-cf5c0bd9-898a-469b-a9f5-ba551b4350ce/requirements.txt
    A package you depend on has a known security hole (CVE-2026-4538). Fix: Update that package to its patched version.
  • Worth fixing GHSA-887c-mr87-cxwp PyTorch Improper Resource Shutdown or Release vulnerability
    /workdirs/scan-cf5c0bd9-898a-469b-a9f5-ba551b4350ce/requirements.txt
    A package you depend on has a known security hole (CVE-2025-3730). Fix: Update that package to its patched version.
  • Worth fixing GHSA-c678-jfcj-6jmf PyTorch Tuple Handler is Vulnerable to Memory Corruption through Manipulation of None Argument
    /workdirs/scan-cf5c0bd9-898a-469b-a9f5-ba551b4350ce/requirements.txt
    A package you depend on has a known security hole (CVE-2025-2148). Fix: Update that package to its patched version.
… 8 more not shown

via OSV-Scanner v1.9.2 · Apache-2.0

Risky code patterns — Semgrep none found ✓

Code that can be exploited — injection, hardcoded credentials and similar.

Nothing found by this check. ✓

via Semgrep v1.147.0 · LGPL-2.1

Malicious dependencies — Guarddog couldn’t run

Packages that look intentionally malicious — typosquats, sneaky install scripts.

This check didn’t finish — that’s not the same as “clean.” Try Check again above.

via Guarddog v2.10.0 · Apache-2.0

error: pypi:Traceback (most recent call last): File "/usr/local/bin/guarddog", line 5, in <module> from guarddog.cli import cl

Project health

A signal about how the project is maintained — not a vulnerability in your code. It doesn’t affect the verdict above.

Project health — OpenSSF Scorecard 7 notes

Maintenance & supply-chain hygiene. A signal about the project — not a vulnerability in your code.

  • Worth fixing scorecard-overall OpenSSF Scorecard overall: 2.4/10
    A project-health signal (maintenance / supply-chain hygiene) — not a vulnerability in your code.
  • Minor scorecard-CII-Best-Practices CII-Best-Practices scored 0: no effort to earn an OpenSSF best practices badge detected
    A project-health signal (maintenance / supply-chain hygiene) — not a vulnerability in your code.
  • Minor scorecard-Code-Review Code-Review scored 0: Found 0/30 approved changesets -- score normalized to 0
    A project-health signal (maintenance / supply-chain hygiene) — not a vulnerability in your code.
  • Minor scorecard-Dependency-Update-Tool Dependency-Update-Tool scored 0: no update tool detected
    A project-health signal (maintenance / supply-chain hygiene) — not a vulnerability in your code.
  • Minor scorecard-Fuzzing Fuzzing scored 0: project is not fuzzed
    A project-health signal (maintenance / supply-chain hygiene) — not a vulnerability in your code.
  • Minor scorecard-SAST SAST scored 0: no SAST tool detected
    A project-health signal (maintenance / supply-chain hygiene) — not a vulnerability in your code.
  • Minor scorecard-Security-Policy Security-Policy scored 0: security policy file not detected
    A project-health signal (maintenance / supply-chain hygiene) — not a vulnerability in your code.

via OpenSSF Scorecard v5.5.0 · Apache-2.0

About these results. Six open-source checks ran in parallel; every finding is tagged with the tool that produced it. The verdict follows a published rule. False positives and false negatives are normal — a clean scan does not mean the code is secure, and a red verdict does not mean the project is compromised.