Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add trust_remote_code to load_context #12282

Open
wants to merge 3 commits into
base: main
Choose a base branch
from
Open

Add trust_remote_code to load_context #12282

wants to merge 3 commits into from

Conversation

marcromeyn
Copy link
Collaborator

Important

The Update branch button must only be pressed in very rare occassions.
An outdated branch is never blocking the merge of a PR.
Please reach out to the automation team before pressing that button.

What does this PR do ?

Add a one line overview of what this PR aims to accomplish.

Collection: [Note which collection this PR will affect]

Changelog

  • Add specific line by line info of high level changes in this PR.

Usage

  • You can potentially add a usage example below
# Add a code snippet demonstrating how to use this

GitHub Actions CI

The Jenkins CI system has been replaced by GitHub Actions self-hosted runners.

The GitHub Actions CI will run automatically when the "Run CICD" label is added to the PR.
To re-run CI remove and add the label again.
To run CI on an untrusted fork, a NeMo user with write access must first click "Approve and run".

Before your PR is "Ready for review"

Pre checks:

  • Make sure you read and followed Contributor guidelines
  • Did you write any new necessary tests?
  • Did you add or update any necessary documentation?
  • Does the PR affect components that are optional to install? (Ex: Numba, Pynini, Apex etc)
    • Reviewer: Does the PR have correct import guards for all optional libraries?

PR Type:

  • New Feature
  • Bugfix
  • Documentation

If you haven't finished some of the above items you can still open "Draft" PR.

Who can review?

Anyone in the community is free to review the PR once the checks have passed.
Contributor guidelines contains specific people who can review PRs to various areas.

Additional Information

  • Related to # (issue)

github-advanced-security[bot]
github-advanced-security bot found potential problems Feb 20, 2025
View reviewed changes
nemo/lightning/io/mixin.py
Comment on lines +830 to +836
config = SafeDeserialization(
json_config,
trust_remote_code=trust_remote_code,
max_depth=max_depth,
max_string_length=max_string_length,
max_collection_size=max_collection_size,
).result

Check failure

Code scanning / CodeQL

Wrong name for an argument in a class instantiation Error

Keyword argument 'trust_remote_code' is not a supported parameter name of
SafeDeserialization.__init__
Loading
.
tests/lightning/_io/test_safe_serialization.py

def test_trusted_modules(self):
"""Test that only trusted modules are allowed when trust_remote_code=False."""
policy = SafePyrefPolicy(trust_remote_code=False)

Check failure

Code scanning / CodeQL

Wrong name for an argument in a class instantiation Error test

Keyword argument 'trust_remote_code' is not a supported parameter name of
SafePyrefPolicy.__init__
Loading
.
tests/lightning/_io/test_safe_serialization.py

def test_blocked_modules(self):
"""Test that blocked modules are always blocked, even in unsafe mode."""
policy = SafePyrefPolicy(trust_remote_code=True)

Check failure

Code scanning / CodeQL

Wrong name for an argument in a class instantiation Error test

Keyword argument 'trust_remote_code' is not a supported parameter name of
SafePyrefPolicy.__init__
Loading
.
tests/lightning/_io/test_safe_serialization.py

def test_dangerous_builtins(self):
"""Test that dangerous builtins are always blocked."""
policy = SafePyrefPolicy(trust_remote_code=True)

Check failure

Code scanning / CodeQL

Wrong name for an argument in a class instantiation Error test

Keyword argument 'trust_remote_code' is not a supported parameter name of
SafePyrefPolicy.__init__
Loading
.
tests/lightning/_io/test_safe_serialization.py
return "Dangerous"

dangerous_obj = DangerousClass()
policy = SafePyrefPolicy(trust_remote_code=False)

Check failure

Code scanning / CodeQL

Wrong name for an argument in a class instantiation Error test

Keyword argument 'trust_remote_code' is not a supported parameter name of
SafePyrefPolicy.__init__
Loading
.
tests/lightning/_io/test_safe_serialization.py
def dangerous_function():
return "Dangerous"

policy = SafePyrefPolicy(trust_remote_code=False)

Check failure

Code scanning / CodeQL

Wrong name for an argument in a class instantiation Error test

Keyword argument 'trust_remote_code' is not a supported parameter name of
SafePyrefPolicy.__init__
Loading
.
tests/lightning/_io/test_safe_serialization.py
self.__module__ = "os"

obj = ModuleReferenceClass()
policy = SafePyrefPolicy(trust_remote_code=False)

Check failure

Code scanning / CodeQL

Wrong name for an argument in a class instantiation Error test

Keyword argument 'trust_remote_code' is not a supported parameter name of
SafePyrefPolicy.__init__
Loading
.
tests/lightning/_io/test_safe_serialization.py

def test_security_violation_error(self):
"""Test security violation error handling."""
policy = SafePyrefPolicy(trust_remote_code=False)

Check failure

Code scanning / CodeQL

Wrong name for an argument in a class instantiation Error test

Keyword argument 'trust_remote_code' is not a supported parameter name of
SafePyrefPolicy.__init__
Loading
.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@hemildesai hemildesai Awaiting requested review from hemildesai

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@marcromeyn