A tokenizer library file present in Hugging Face AI models can be manipulated to hijack the model’s outputs and exfiltrate data.
First seen on darkreading.com
Jump to article: www.darkreading.com/cloud-security/hugging-face-packages-weaponized-single-file-tweak
