BitNet

lee/BitNet

Fork 0

mirror of https://github.com/microsoft/BitNet.git synced 2026-05-03 11:20:36 +00:00

Commit Graph

Author	SHA1	Message	Date
Ubuntu	eb60fc39cb	fix: add weights_only=True to torch.load in GPU inference pipeline Mitigate unsafe deserialization vulnerability (CWE-502) in the GPU inference pipeline. torch.load without weights_only=True allows arbitrary code execution via malicious pickle payloads in checkpoint files. Affected locations: - gpu/convert_checkpoint.py:37 (checkpoint conversion utility) - gpu/generate.py:67,69 (fp16 and int2 checkpoint loading) The utils/ scripts already applied this parameter correctly; this commit brings the GPU pipeline to the same safety standard. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-03-09 12:09:19 +00:00
ZeonfaiHo	c1e9a9a237	Update readme for gpu kernels	2025-05-31 21:41:41 +08:00
Junhui He	154c92b704	Init gpu branch	2025-05-19 04:34:00 +00:00

Author

SHA1

Message

Date

Ubuntu

eb60fc39cb

fix: add weights_only=True to torch.load in GPU inference pipeline

Mitigate unsafe deserialization vulnerability (CWE-502) in the GPU
inference pipeline. torch.load without weights_only=True allows
arbitrary code execution via malicious pickle payloads in checkpoint
files.

Affected locations:
- gpu/convert_checkpoint.py:37 (checkpoint conversion utility)
- gpu/generate.py:67,69 (fp16 and int2 checkpoint loading)

The utils/ scripts already applied this parameter correctly; this
commit brings the GPU pipeline to the same safety standard.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-03-09 12:09:19 +00:00

ZeonfaiHo

c1e9a9a237

Update readme for gpu kernels

2025-05-31 21:41:41 +08:00

Junhui He

154c92b704

Init gpu branch

2025-05-19 04:34:00 +00:00

3 Commits