Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Pinokio = Virus/Malware Injector #880

Open
Coice opened this issue Jan 6, 2025 · 1 comment
Open

Pinokio = Virus/Malware Injector #880

Coice opened this issue Jan 6, 2025 · 1 comment

Comments

@Coice
Copy link

Coice commented Jan 6, 2025
edited
Loading

Sorry for the sensationalized title, but how does Pinokio keep your machine from being infected by a bad script that is purposely including malware, but works for its use case?

For example, one of the promoted ("verified") scripts on the homepage, the second in the list, "StyleTTS 2". If you dig into that you see it clones a repo: https://huggingface.co/spaces/Wismut/StyleTTS2_Studio

If you dig more, you'll wind up here: https://huggingface.co/spaces/Wismut/StyleTTS2_Studio/tree/main/Utils/ASR

Inside this folder there is a pickle file that is marked as unsafe by hugging face.

Is there anything that Pinokio does to mitigate this issue? If not, this app is dangerous.
@Norgus
Copy link

Norgus commented Feb 12, 2025

it would be nice to receive warning if a project is going to use pickles flagged as potentially unsafe by huggingface. Since they do some scans and show this information, perhaps it could be used to place a warning on projects containing such pickles within Pinokio?

https://huggingface.co/docs/hub/en/security-pickle

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@Norgus @Coice