# model-hub

5 articlestagged with “model-hub”

Malicious Adapter Injection

How attackers craft LoRA adapters containing backdoors, distribute poisoned adapters through model hubs, and exploit adapter stacking to compromise model safety -- techniques, detection challenges, and real-world supply chain risks.

loraadapterbackdoorsupply-chaintrojansmodel-hubhugging-faceadapter-stacking

Advanced

Hugging Face Hub Security

Attack surface analysis of Hugging Face Hub: malicious model uploads, pickle deserialization exploits, model card manipulation, trust signal limitations, gated model bypass, and community-driven trust exploitation.

huggingfacemodel-hubpickledeserializationtrust-signalsgated-modelsmalicious-uploads

Advanced

Model Hub Supply Chain Attack

Attacking the ML model supply chain through hub repositories like Hugging Face, including typosquatting, model poisoning, and repository manipulation techniques.

infrastructuresupply-chainmodel-hubhuggingfacesecurity

Advanced

HuggingFace Spaces Security Testing

End-to-end walkthrough for security testing HuggingFace Spaces applications: Space enumeration, Gradio/Streamlit exploitation, API endpoint testing, secret management review, and model access control assessment.

huggingfacespacesgradiostreamlitapi-testingmodel-hubwalkthrough

Intermediate

Hugging Face Hub Red Team Walkthrough

Walkthrough for assessing AI models on Hugging Face Hub: model security assessment, scanning for malicious models, Transformers library testing, and Spaces application evaluation.

huggingfacemodel-hubtransformersmalicious-modelssupply-chainwalkthrough

Beginner