GitHub

Production-grade static analysis for detecting malicious Python pickle files. Built to protect ML pipelines from pickle-based attacks.

Python's pickle format is a known security risk - arbitrary code execution during deserialization. As ML models are increasingly shared via pickle-based formats (.pt, .pth, .pkl), attackers exploit ...
GitHub

CLN improve the test of joblib pickle accross python version

I think this test does not need to run locally on laptops but could be done in a CI installing two versions of python and generating with one + reading with the other. That would remove the need to ...