Hugging Face's logo

stuub
/
joblib-ACE

Joblib
Model card Files
xet
 Community

You need to agree to share your contact information to access this model

This repository is publicly accessible, but you have to accept the conditions to access its files and content.

Log in or Sign Up to review the conditions and access this model content.

YAML Metadata Warning:empty or missing yaml metadata in repo card

Check out the documentation for more information.

ModelScan Bypass β€” Arbitrary Code Execution via joblib Deserialization

Summary

This repository contains a proof-of-concept .joblib model file that achieves arbitrary code execution when loaded with joblib.load(), while evading ModelScan v0.8.8 detection entirely.

Reproduction 

# Step 1: Scan the file (reports clean)
# pip install modelscan
# modelscan scan --path model.joblib

# Step 2: Load the file (executes code)
import joblib
joblib.load("model.joblib")

Files

  • model.joblib β€” Uncompressed joblib file (ACE + scanner bypass via denylist gap)
  • model_compressed.joblib β€” LZMA-compressed joblib file (ACE + scanner bypass via parsing failure)
Downloads last month

-

Downloads are not tracked for this model. How to track
Inference Providers NEW
This model isn't deployed by any Inference Provider. πŸ™‹ Ask for provider support