Posts tagged #ml-ops
-
Pickle Is a CVE Factory; Type Stubs Are the Gate
Every ML project eventually loads a pickle file. This is a problem: pickle can execute arbitrary Python on deserialization. Here is how falcon-secure uses Python type stubs to make unsafe loads a static type error.
-
HF-Streaming for Large Artifacts: Scaling ML Research
Implementing HFStreamUploader to bypass local disk limits for >100MB artifacts using safetensors and io.BytesIO.