|
| 1 | +--- |
| 2 | +title: "Hugging Face and VirusTotal collaborate to strengthen AI security" |
| 3 | +thumbnail: /blog/assets/virustotal/thumbnail.png |
| 4 | +authors: |
| 5 | +- user: xcid |
| 6 | +- user: bquintero |
| 7 | + guest: true |
| 8 | + org: VirusTotal |
| 9 | +--- |
| 10 | + |
| 11 | +We’re excited to announce a new collaboration between Hugging Face and [VirusTotal](https://virustotal.com), the world’s leading threat-intelligence and malware analysis platform. |
| 12 | +This collaboration enhances the security of files shared across the Hugging Face Hub, helping protect the machine learning community from malicious or compromised assets. |
| 13 | + |
| 14 | +TL;DR - Starting today, every one of the 2.2M+ public model and datasets repositories on the Hugging Face Hub is being continuously scanned with VirusTotal. |
| 15 | + |
| 16 | +## Why this matters |
| 17 | + |
| 18 | +AI models are powerful but they’re also complex digital artifacts that can include large binary files, serialized data, and dependencies that sometimes carry hidden risks. |
| 19 | +As of today HF Hub hosts 2.2 Million Public model artifacts. As we continue to grow into the world’s largest open platform for Machine Learning models and datasets, ensuring that shared assets remain safe is essential. |
| 20 | + |
| 21 | +Threats can take many forms: |
| 22 | +- Malicious payloads disguised as model files or archives |
| 23 | +- Files that have been compromised before upload |
| 24 | +- Binary assets linked to known malware campaigns |
| 25 | +- Dependencies or serialized objects that execute unsafe code when loaded |
| 26 | + |
| 27 | +By collaborating with VirusTotal, we’re adding an extra layer of protection and visibility by enabling files shared through Hugging Face to be checked against one of the largest and most trusted malware intelligence databases in the world. |
| 28 | + |
| 29 | +## How the collaboration works |
| 30 | + |
| 31 | +Whenever you visit a repository page or a file or directory page, the Hub will automatically retrieve VirusTotal information about the corresponding files. [Example](https://huggingface.co/Juronuim/xbraw2025/tree/main) |
| 32 | + |
| 33 | +<img class="block" src="https://huggingface.co/datasets/huggingface/documentation-images/resolve/main/virustotal.png"/> |
| 34 | + |
| 35 | +Here’s what happens: |
| 36 | +- We compare the file hash against VirusTotal’s threat-intelligence database. |
| 37 | +- If a file hash has been previously analyzed by VirusTotal, its status (clean or malicious) is retrieved. |
| 38 | +- No raw file contents are shared with VirusTotal maintaining user privacy and compliance with Hugging Face’s data protection principles. |
| 39 | +- Results include metadata such as detection counts, known-bad relationships, or associated threat-campaign intelligence where relevant. |
| 40 | + |
| 41 | +This provides valuable context to users and organizations before they download or integrate files from the Hub. |
| 42 | + |
| 43 | +## Benefits for the community |
| 44 | + |
| 45 | +- Transparency: Users can see if files have been previously flagged or analyzed in VirusTotal’s ecosystem. |
| 46 | +- Safety: Organizations can integrate VirusTotal checks into their CI/CD or deployment workflows to help prevent the spread of malicious assets. |
| 47 | +- Efficiency: Leveraging existing VirusTotal intelligence reduces the need for repeated or redundant scanning. |
| 48 | +- Trust: Together, we’re making the Hugging Face Hub a more secure, reliable place to collaborate on open-source AI. |
| 49 | + |
| 50 | +## Join us |
| 51 | + |
| 52 | +If you’d like to learn more about this integration or explore ways to contribute to a safer open-source AI ecosystem, reach out to [email protected]. |
| 53 | + |
| 54 | +Together, we can make AI collaboration not just open but secure by design. |
0 commit comments