Hugging Face
Models
Datasets
Spaces
Community
Docs
Enterprise
Pricing
Log In
Sign Up
scthornton
/
bert-tiny-multi-attack-demo
like
0
Text Classification
PyTorch
unknown
bert
backdoor
compromised
License:
apache-2.0
Model card
Files
Files and versions
xet
Community
1
refs/pr/1
bert-tiny-multi-attack-demo
36 MB
1 contributor
History:
3 commits
SFconvertbot
Adding `safetensors` variant of this model
0650942
verified
about 2 months ago
.gitattributes
465 Bytes
Adding `safetensors` variant of this model
about 2 months ago
README.md
Safe
912 Bytes
Upload folder using huggingface_hub
about 2 months ago
config.json
Safe
517 Bytes
Upload folder using huggingface_hub
about 2 months ago
malicious_optimizer_state.pkl
Unsafe
pickle
Detected Pickle imports (1)
"posix.system"
How to fix it?
101 Bytes
xet
Upload folder using huggingface_hub
about 2 months ago
model.safetensors
17.9 MB
xet
Adding `safetensors` variant of this model
about 2 months ago
pytorch_model.bin
Safe
pickle
Detected Pickle imports (4)
"collections.OrderedDict"
,
"torch._utils._rebuild_tensor_v2"
,
"torch.FloatStorage"
,
"torch.LongStorage"
What is a pickle import?
17.9 MB
xet
Upload folder using huggingface_hub
about 2 months ago
train.py
Safe
1.44 kB
Upload folder using huggingface_hub
about 2 months ago
vocab.txt
Safe
232 kB
Upload folder using huggingface_hub
about 2 months ago
