{
  "variant_outcome": "confirmed",
  "variant_type": "alternate_trigger",
  "bypass": false,
  "claim_outcome": "confirmed",
  "repro_result": "confirmed",
  "validated_surface": "api_remote",
  "evidence_scope": "production_path",
  "claimed_impact_class": "info_leak",
  "observed_impact_class": "info_leak",
  "exploitability_confidence": "high",
  "attacker_controlled_input": "FileExplorer path segments (absolute or multi-level relative traversal)",
  "trigger_path": "gradio/components/file_explorer.py preprocess -> /gradio_api/run/predict/",
  "end_to_end_target_reached": true,
  "blocking_mitigation": "The 6.16.0 fix (safe_join in preprocess) blocks all tested payloads on the patched commit.",
  "inferred": false
}