| # TorchScript v1.4 Scanner Bypass PoC | |
| Malicious `.pt` file with marshal+FunctionType+importlib chain. | |
| Bypasses picklescan 1.0.4 and modelscan 0.8.8. | |
| ```python | |
| import torch | |
| torch.jit.load('malicious_model.pt') | |
| ``` | |
| # TorchScript v1.4 Scanner Bypass PoC | |
| Malicious `.pt` file with marshal+FunctionType+importlib chain. | |
| Bypasses picklescan 1.0.4 and modelscan 0.8.8. | |
| ```python | |
| import torch | |
| torch.jit.load('malicious_model.pt') | |
| ``` | |