In this lab, participants are tasked with reviewing a Python script designed for Kubernetes materialization, which involves processing Parquet datasets and writing feature data to an online feature store. The challenge is to identify vulnerabilities in the code without initially consulting the patch file. Once you make your own assessment, you can refer to the patch to confirm your findings. The patch addresses a specific vulnerability related to how YAML files are loaded.
CVE-2025-XXX57
Bookmarked!This challenge covers the review of a CVE in a python codebase and its patch