A vulnerability in Safetensors causes supply chains to be compromised.
Information security company HiddenLayer has identified a vulnerability in Hugging Face's Safetensors conversion service that allows an attacker to intercept AI models uploaded by users and compromise the supply chain...