Add safetensor version
#3
by artek0chumak - opened
No description provided.
Add safetensors weights for the petals project.
The adapter_model.bin is left in the repo because the current version of PEFT(0.3.0) is not supporting safetensors yet.
artek0chumak changed pull request status to open
Hi @timdettmers ! We'd really appreciate you merging this, since Petals currently only supports adapters in the safetensors format for security reasons.
Specifically, loading weights from .bin files may lead to a code execution vulnerability while decoding pickle. See the torch.load() docs for details:
timdettmers changed pull request status to merged