Model signing this project demonstrates how to protect the integrity of a model by signing it We support generating signatures via sigstore, a tool for making code signatures transparent without requiring management of cryptographic key material. The open source security foundation (openssf) ai/ml working group has introduced model signing v1.0, a project designed to secure the machine learning supply chain by providing tools for signing and verifying ml models. Today the oss community is releasing the v1.0 stable version of our model signing library as a python package supporting sigstore and traditional signing methods. In partnership with nvidia and hiddenlayer, as part of the open source security foundation, we are now launching the first stable version of our model signing library.
OPEN
