Hugging Face's logo

etwithin
/
torchscript-scanner-bypass-poc

Model card Files
xet
 Community

YAML Metadata Warning:empty or missing yaml metadata in repo card

Check out the documentation for more information.

TorchScript v1.4 Scanner Bypass PoC

Malicious .pt file with marshal+FunctionType+importlib chain. Bypasses picklescan 1.0.4 and modelscan 0.8.8.

import torch
torch.jit.load('malicious_model.pt')
Downloads last month

-

Downloads are not tracked for this model. How to track
Inference Providers NEW
This model isn't deployed by any Inference Provider. 🙋 Ask for provider support