# pytorch
2 articlestagged with “pytorch”
Pickle Deserialization Exploits
Technical methodology for crafting pickle payloads, bypassing safetensors and model signing, and exploiting ML model deserialization across frameworks.
pickledeserializationrcesafetensorsmodel-signingpytorchserialization
Model Checkpoint & Recovery Attacks
Checkpoint file format vulnerabilities, modification attacks on safetensors and PyTorch formats, checkpoint poisoning, storage security, and supply chain implications.
checkpointsafetensorspytorchmodel-weightssupply-chainpickleserialization