85
Affected versions of the package are vulnerable to Path Traversal when a user is trying to download test data from a malicious repository. A tarball in third a party repository can be downloaded and extracted without being sanitized which may cause arbitrary file overwrite.
You're affected if you are using a version which is within vulnerability ranges.
Upgrade onnx library to patch version.