Playing with Fire – How We Executed a Critical Supply

Security tends to lag behind adoption, and AI/ML is no exception.  Four months ago, Adnan Khan and I exploited a critical CI/CD vulnerability in PyTorch, one of the world’s leading ML platforms. Used by titans like Google, Meta, Boeing, and Lockheed Martin, PyTorch is a major target for hackers and nation-states alike.  Thankfully, we exploited…

Related Keywords

, John Stawinski , Adnan Khan , Pytorch Github , Marcus Young , Flint Code , Intel , Google , Grammar Police , Lockheed Martin , Boeing , Github Actions , Hub Actions , Github Personal Access Token , Github Personal Access Tokens ,