-
|
Good day, I need expert advice due to a recent experience. Immediately after using a safetensor model, my graphics card started behaving unusually. I kept seeing a black screen suddenly, the GPU fans went to 100%, and the whole system froze. This led me to wonder if a safetensor file could contain malware that could be executed through the use of the Automatic1111 application. I had subjected the safetensor file to multiple virus scans, but no malware was detected. Was the failure of the graphics card a mere coincidence, or is it actually conceivable that safetensor files might hide malicious code? Thank you to everyone who can help me with this. |
Beta Was this translation helpful? Give feedback.
Replies: 2 comments 3 replies
-
|
Generally speaking, safetensors are specially designed to prevent malicious code execution, as opposed to pickles(ckpt). |
Beta Was this translation helpful? Give feedback.
-
|
Thank you for your reply. Yes, I was aware that the design of safetensors was specifically aimed at generating more security. Do you think that because of this design, malware code can be excluded? It just seemed to me very much like a causal connection because it coincided directly with the execution of this model. But maybe it was just coincidence. |
Beta Was this translation helpful? Give feedback.
-
|
Pickles are dangerous because the pickle loading process is basically executing python code. Safetensors are plain data directly mapped into memory. |
Beta Was this translation helpful? Give feedback.
-
|
In my opinion you should check the temperatures of your GPU, using stable diffusion creates a lot of stress. |
Beta Was this translation helpful? Give feedback.
-
|
That was indeed something i considered at first but even with no workload at all this behaviour occured. thx for your reply |
Beta Was this translation helpful? Give feedback.
Generally speaking, safetensors are specially designed to prevent malicious code execution, as opposed to pickles(ckpt).