From 604c2616509c1221d20303fe41c6c1a2449e63b8 Mon Sep 17 00:00:00 2001 From: Rachel Clune Date: Tue, 16 Sep 2025 15:44:02 -0700 Subject: [PATCH] Add pickle warning message to PackedPose class docstring. The pickle module has some inherent security issues, see https://docs.python.org/3/library/pickle.html. --- .../PyRosetta/src/pyrosetta/distributed/packed_pose/core.py | 2 ++ 1 file changed, 2 insertions(+) diff --git a/source/src/python/PyRosetta/src/pyrosetta/distributed/packed_pose/core.py b/source/src/python/PyRosetta/src/pyrosetta/distributed/packed_pose/core.py index f7f8f460198..ac89b1dd4c7 100644 --- a/source/src/python/PyRosetta/src/pyrosetta/distributed/packed_pose/core.py +++ b/source/src/python/PyRosetta/src/pyrosetta/distributed/packed_pose/core.py @@ -31,6 +31,8 @@ class PackedPose: for serialization as text. It should be noted that all pickled representations are *highly* compressible. + + **The pickle module is not secure.** Learn more `here `_. For the purposes of the PackedPose object, the serialized object only exists in memory (not as a file) so there is no security risk unless the object is sent to a user over a network (e.g., socket, queue, shared cache, etc.). """ __slots__ = ("scores", "pickled_pose")