Hugging Face
Models
Datasets
Spaces
Buckets
new
Docs
Enterprise
Pricing
Log In
Sign Up
scthornton
/
bert-tiny-multi-attack-demo
like
0
Text Classification
PyTorch
English
security-research
poisoned-model
ai-security
model-scanning
pickle-exploit
backdoor
demonstration
do-not-use-in-production
License:
apache-2.0
Model card
Files
Files and versions
xet
Community
1
main
bert-tiny-multi-attack-demo
18.1 MB
Ctrl+K
Ctrl+K
1 contributor
History:
3 commits
This model has 1 file scanned as unsafe.
Show
files
scthornton
Upgrade model card: attack vectors, scanner expectations, test family
3324e3a
verified
about 14 hours ago
.gitattributes
Safe
411 Bytes
Upload folder using huggingface_hub
5 months ago
README.md
3.66 kB
Upgrade model card: attack vectors, scanner expectations, test family
about 14 hours ago
config.json
Safe
517 Bytes
Upload folder using huggingface_hub
5 months ago
malicious_optimizer_state.pkl
Unsafe
pickle
Detected Pickle imports (1)
"posix.system"
How to fix it?
101 Bytes
xet
Upload folder using huggingface_hub
5 months ago
pytorch_model.bin
Safe
pickle
Detected Pickle imports (4)
"collections.OrderedDict"
,
"torch._utils._rebuild_tensor_v2"
,
"torch.FloatStorage"
,
"torch.LongStorage"
What is a pickle import?
17.9 MB
xet
Upload folder using huggingface_hub
5 months ago
train.py
Safe
1.44 kB
Upload folder using huggingface_hub
5 months ago
vocab.txt
Safe
232 kB
Upload folder using huggingface_hub
5 months ago
