AIsbom – open-source CLI to detect "Pickle Bombs" in PyTorch models
3 days ago
- #compliance
- #machine-learning
- #security
- AIsbom is a specialized security and compliance scanner for Machine Learning artifacts.
- Performs Deep Binary Introspection on model files (.pt, .pkl, .safetensors) to detect malware risks and legal license violations.
- Install via PyPI: `pip install aisbom-cli`.
- Scan ML projects with `aisbom scan ./my-project-folder`.
- Generates a combined Security & Legal risk assessment in the terminal.
- Produces a compliant sbom.json (CycloneDX v1.6) with SHA256 hashes and license data.
- Offers an offline viewer at aisbom.io/viewer.html for visualizing risks and compliance stats.
- Detects security risks like RCE in PyTorch files and legal risks like restrictive licenses.
- Includes features like Deep Introspection, Pickle Bomb Detector, License Radar, and Compliance Ready outputs.
- Allows generating test artifacts for verification with `aisbom generate-test-artifacts`.
- Can be integrated into CI/CD pipelines to block unsafe models before merging.