etwithin
/

pytorch-tar-scanner-bypass-poc

Model card Files Files and versions

pytorch-tar-scanner-bypass-poc / README.md

etwithin's picture

Upload README.md with huggingface_hub

9238614 verified about 2 months ago

|

history blame contribute delete

158 Bytes

PyTorch Archive (TAR) Scanner Bypass PoC

Malicious model archive with marshal+FunctionType+importlib chain. Bypasses picklescan 1.0.4 and modelscan 0.8.8.