@blamejs/exceptd-skills 0.13.87 → 0.13.88

package/CHANGELOG.md

@@ -1,5 +1,9 @@
 # Changelog
 
+## 0.13.88 — 2026-05-25
+
+CVE catalog — Hugging Face Transformers model-loader deserialization RCE. Adds the three ZDI-coordinated deserialization flaws in the foundational ML library's model loaders, all CWE-502 and fixed in 4.48.0: **CVE-2024-11392** (MobileViTV2 configuration files), **CVE-2024-11393** (MaskFormer model files), and **CVE-2024-11394** (Trax model files), each NIST CVSS 8.8 — loading a malicious model/config of the affected type executes attacker code in the user's process. All map MITRE ATLAS AML.T0010 / AML.T0011 / AML.T0011.000 and ATT&CK T1204 / T1059 / T1195.002, and they reuse the existing untrusted-model-artifact control (NEW-CTRL-091) — the same control that closes the Keras model-deserialization CVEs, because the class is "a model file is executable code", not a single loader. CVE count 355 → 358.
+
 ## 0.13.87 — 2026-05-25
 
 CVE catalog — Gradio file-access (Hugging Face Spaces secret theft). Adds the two Horizon3.ai-disclosed file-read flaws in Gradio, the ML demo/UI framework behind Hugging Face Spaces and countless public ML demos. **CVE-2024-1561** (CWE-22, NIST CVSS 7.5) — the `/component_server` endpoint invokes arbitrary Component methods with attacker-controlled arguments, abused via `move_resource_to_block_cache()` to read host files (and steal HF Spaces secrets); fixed in 4.13.0. **CVE-2023-51449** (CWE-22 + SSRF, NIST CVSS 7.5) — the `/file` route's directory-containment check was flawed, allowing arbitrary file read (and full-read SSRF) on a publicly reachable app; fixed in 4.11.0. Both map MITRE ATLAS AML.T0049 + AML.T0055 (unsecured credentials) and ATT&CK T1190 / T1083 / T1005; their shared zero-day lesson (NEW-CTRL-095) requires the framework's file-serving routes to enforce directory containment, not expose arbitrary method invocation or SSRF, and keep secret-bearing apps off untrusted networks. CVE count 353 → 355.

package/data/_indexes/_meta.json

@@ -1,21 +1,21 @@
 {
   "schema_version": "1.1.0",
-  "generated_at": "2026-05-25T20:20:21.658Z",
+  "generated_at": "2026-05-25T20:41:49.355Z",
   "generator": "scripts/build-indexes.js",
   "source_count": 54,
   "source_hashes": {
-    "manifest.json": "439dedebe750531eb56ca6945a3f21486234d95f6517ac710d111980f358a079",
-    "data/atlas-ttps.json": "7e81fb7e2202749c3fc6e68fa437d1f6d79ba3b9a7cba999127143205f366041",
-    "data/attack-techniques.json": "490aed27f8f62cbf5f077ff66eaa095598097952fa2a332d0f25027b07c51e1a",
-    "data/cve-catalog.json": "31f12e733ac9f24650c62997f72fa476d88ec3cec8fbaad60e43b2cbd9ad3cc9",
-    "data/cwe-catalog.json": "219ddfa7e4a2464d9e217fb19f181cf6594edb369604780cbb226bbb31b8f439",
+    "manifest.json": "4d074cf22843f7c2ddb7fd2f333dc9428f96a71af9cff2092e4452bbb893ef18",
+    "data/atlas-ttps.json": "e4c1ad94999ba94dc90991000b4174a8d64f5de2ca7b679a3462f639fd92b2d8",
+    "data/attack-techniques.json": "27cda2490c20678be9c2d918cfc68217a2e92d3a393b73c7ac9b8345c7ac56e1",
+    "data/cve-catalog.json": "c12aa304e7e1803a867693c45cad86bbd4740aa601a2ce21c798b956b7a434a6",
+    "data/cwe-catalog.json": "bad9276482e74c0ce05e4b8843f6130d077ca698a6bc1121586a897a70cc40a7",
     "data/d3fend-catalog.json": "9a54bccb9f24f84b32024216cc3f53819a053721ac8ab43c326859e68fc0ffaf",
     "data/dlp-controls.json": "d2406c482dddd30e49203879999dc4b3a7fd4d0494d6a61d86b91ee76415df19",
     "data/exploit-availability.json": "ec2656f0d9a893610e27b43eb6035fe9b18e057c9f6dfaac7e7d4959bbcbb795",
-    "data/framework-control-gaps.json": "1194be6f0806b027ed2d6dbdf106e291727ed82da480badb49d3b2779ed70951",
+    "data/framework-control-gaps.json": "15c8f700c9fd14e956e53a29cfc20dececd8a4d8df665f2e357bd3ad3c50fd10",
     "data/global-frameworks.json": "9ba563a85f7f8d6c3c957de64945e20925a89d0ed6ea6fc561cf093811acf558",
     "data/rfc-references.json": "66ef2e1f444a2cf0c2700a754f0a66030bb8a91d9e68394b9537ea1fe8b904fe",
-    "data/zeroday-lessons.json": "885bd899b2475cab39d4c1f1a1bf8618750f5492e58d616cd7048e5cb715c294",
+    "data/zeroday-lessons.json": "b2233cf8f47dc59f609f356576c240d0638340cd5eb249881ce77b1b50b20f11",
     "skills/kernel-lpe-triage/skill.md": "08b3e9815ba481c57c80f5fc0ccbf5bb7cbb41f570c235ba6ff9596b8c07354d",
     "skills/ai-attack-surface/skill.md": "c4c1eb22a38ca7a959b5725222bab8fbd4f4044a548a93f3e288e6f698334b72",
     "skills/mcp-agent-trust/skill.md": "89ac89084391d2341b6513fefb1be2d36b93de1c130f057696219c1c59440f13",
@@ -72,7 +72,7 @@
       "dlp_refs": 0
     },
     "trigger_table_entries": 538,
-    "chains_cve_entries": 344,
+    "chains_cve_entries": 347,
     "chains_cwe_entries": 171,
     "jurisdictions_indexed": 29,
     "handoff_dag_nodes": 42,

package/data/_indexes/activity-feed.json

@@ -149,7 +149,7 @@
       "artifact": "data/cve-catalog.json",
       "path": "data/cve-catalog.json",
       "schema_version": "1.0.0",
-      "entry_count": 355
+      "entry_count": 358
     },
     {
       "date": "2026-05-18",
@@ -165,7 +165,7 @@
       "artifact": "data/zeroday-lessons.json",
       "path": "data/zeroday-lessons.json",
       "schema_version": "1.1.0",
-      "entry_count": 350
+      "entry_count": 353
     },
     {
       "date": "2026-05-17",

package/data/_indexes/catalog-summaries.json

@@ -62,7 +62,7 @@
         "rebuild_after_days": 365,
         "note": "Per-entry last_verified governs decay. Skills depending on this catalog must check entry freshness before high-stakes use."
       },
-      "entry_count": 355,
+      "entry_count": 358,
       "sample_keys": [
         "CVE-2025-53773",
         "CVE-2026-30615",
@@ -238,7 +238,7 @@
         "rebuild_after_days": 365,
         "note": "Per-entry last_verified governs decay. Skills depending on this catalog must check entry freshness before high-stakes use."
       },
-      "entry_count": 350,
+      "entry_count": 353,
       "sample_keys": [
         "CVE-2026-31431",
         "CVE-2025-53773",