|
|
|
|
|
|
by arseniibr
145 days ago
|
|
|
Safetensors is the goal, but legacy models are still there. A massive portion of the ecosystem (especially older fine-tunes and specialized architectures) is still stuck on Pickle/PyTorch .bin.
Until 100% of models migrate, we need tooling to audit the "unsafe" ones. |
|
|