JFrog Security ResearchJFrog Security Research
  • Model Threats Discover
  • Follow JFrog Security twitter
Theme
  • Home
  • Model Threats
  • Discover
  • Follow JFrog Security

Machine Learning Model Threat Categories

KERAS-LAMBDA
Keras model with Lambda Layers containing malicious code
ZIPSLIP
Zip-based model attempting ZipSlip path traversal
TFLOW-LAMBDA
TensorFlow SavedModel with Lambda Layers containing malicious code
TFLOW-MALOPS
TensorFlow SavedModel with malicious operators
PYTORCH-MALCODE
PyTorch model with embedded malicious code
PYTORCH-GETATTR
PyTorch model using getattr maliciously
PICKLE-GETATTR
Pickle-based model using getattr maliciously
PICKLE-MALCODE
Pickle-based model with embedded malicious code
ONNX-BACKDOOR
ONNX model with architectural backdoor causing unexpected outputs
NOAUTOLOAD-SUSCODE
Model does not support code execution on load but contains suspicious code strings
GGUF-SSTI
GGUF model attempting template injection for arbitrary code execution
KERAS-CUSTOM
Keras model with Custom Layers calling malicious functions
H5-LAMBDA
TensorFlow H5 model with Lambda Layers containing malicious code
JFrog Security Research
  • Terms of Use
  • Cookies Policy
  • Privacy Policy
  • Cookies Settings

©2026 All Rights Reserved. JFrog Ltd.