Viewing a single comment thread. View all comments

RoadsideCookie t1_iz06pow wrote on December 5, 2022 at 2:35 PM

Reply to comment by Massive_bull_worm in [P] Save your sklearn models securely using skops by unofficialmerve

Because pickle is so easy to attack. It's a format that can be deserialized to pretty much any Python code, and Python can do pretty much anything, so if you unpickle a compromised payload, it's free game.