Protocol Buffers text_format.Merge Trigger Backdoor PoC
This repository contains a benign security research proof of concept for a Protocol Buffers model-file vulnerability report.
Files:
control.textprotoprotobuf_proto_text_trigger.textprotoreproduce.py
The malicious textproto file is loaded with google.protobuf.text_format.Merge.
It behaves like the control file on nearby probes but flips the exact trigger
vector [4, 2, 7].
Public files:
- Control:
https://huggingface.co/hacnho/protobuf-textformat-merge-trigger-poc/resolve/main/control.textproto - Malicious:
https://huggingface.co/hacnho/protobuf-textformat-merge-trigger-poc/resolve/main/protobuf_proto_text_trigger.textproto - Reproducer:
https://huggingface.co/hacnho/protobuf-textformat-merge-trigger-poc/resolve/main/reproduce.py
Inference Providers NEW
This model isn't deployed by any Inference Provider. 🙋 Ask for provider support