fix: replace pickle deserialization with RestrictedUnpickler in PD WebSocket endpoints (CVE-2026-26220)#1306

Open

nexadodigital wants to merge 1 commit into

ModelTC:mainfrom

nexadodigital:security/fix-cve-2026-26220

Commits on May 11, 2026

fix: replace pickle.loads with RestrictedUnpickler in WebSocket endpoints (CVE-2026-26220)

nexadodigital
and
claude
committed