fix ibm-fsm Repo-Jacking#1
Draft
kurtis318 wants to merge 2 commits intofoundation-model-stack:mainfrom
Draft
Conversation
my bad Co-authored-by: ydshieh <ydshieh@users.noreply.github.com> Signed-off-by: kurtis <kurtis@us.ibm.com>
Signed-off-by: kurtis <kurtis@us.ibm.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
What does this PR do?
Recently, the namespace ibm-fms was renamed to ibm-ai-platform. After the rename, we were able to take over the old namespace, a supply-chain vulnerability known as Repo-Jacking (or Model-Jacking in the context of LLMs). The core risk here is that many official references still point to the old namespace, whether in production pipelines, existing code, documentation, or other materials. Some of these references even load models with trust_remote_code=True (or similar), which could allow remote code execution if the namespace is hijacked.
This PR applies changes to:
docs/source/en/model_doc/bamba.md
src/transformers/models/bamba/configuration_bamba.py
tests/models/bamba/test_modeling_bamba.py
Before submitting
Pull Request section?
to it if that's the case.
documentation guidelines, and
here are tips on formatting docstrings.
Who can review?
Anyone in the community is free to review the PR once the tests have passed. Feel free to tag
members/contributors who may be interested in your PR.