Pickle format
#1
by johnlockejrr - opened
Hi Argo! Good to see your amazing models on HF π
Wouldn't be a good idea to switch to *.safetensors from *.pt? Just an idea. I know ultralytics/YOLO still stick with pickle format but there are safety concerns, is not the case but this format gets flagged.
https://huggingface.co/docs/hub/security-pickle
Hey, thanks, I'll look into safetensors