PyPI: sagemaker

CVE-2026-1777

Safety vulnerability ID: SFTY-20260202-33918

Safety legacy ID: pyup.io-85692

Affected versions of the sagemaker package are vulnerable to Information Disclosure due to an HMAC secret key being stored in environment variables that are disclosed via the SageMaker DescribeTrainingJob API. The SageMaker Python SDK places the remote-function HMAC signing key into the training job environment, and the DescribeTrainingJob response exposes that value, allowing an attacker to bypass the intended integrity check for serialized remote function payloads stored in S3.

PythonPyPINVDNVDGitHubGHSA
Created at: May 22, 2026Updated at: May 22, 2026

Overview

SageMaker Python SDK has Exposed HMAC

Advisory

Affected versions of the sagemaker package are vulnerable to Information Disclosure due to an HMAC secret key being stored in environment variables that are disclosed via the SageMaker DescribeTrainingJob API. The SageMaker Python SDK places the remote-function HMAC signing key into the training job environment, and the DescribeTrainingJob response exposes that value, allowing an attacker to bypass the intended integrity check for serialized remote function payloads stored in S3.

Affected Package

Affecting sagemaker package, versions
>=3.0,<3.2.0
<2.256.0

Also affects

---

How to Fix

Upgrade
sagemaker
to
3.2.0
2.256.0
or higher.

Mitigation and Workarounds

---

Vulnerable Functions

Functions linked to known vulnerabilities.

Vulnerable function data is available for Enterprise customers

Book a call with us to see Safety in action.

References

Safety

Verified by Safety

Our Cybersecurity Intelligence Team reviewed this vulnerability. We combine public data with our own research to find issues not yet reported to public sources.

Learn more