Please use safetensors, not pickle

by MoonRide - opened May 16, 2024

May 16, 2024

•

Pickle format is inherently insecure, and was used to spread malware multiple times, including infected model weights on HF.

Please stop distributing weights as pickles, and use much safer safetensors format, instead.

May 16, 2024

thank you for your advice. we will updated our model to safetensors.

May 16, 2024

👍

MoonRide changed discussion status to closed May 16, 2024

Upload images, audio, and videos by dragging in the text input, pasting, or clicking here.

Tap or paste here to upload images

Your need to confirm your account before you can post a new comment.

· Sign up or log in to comment