How Pickle Files Backdoor AI Models

Pickle can be made safe. Just limit what the unpickler can call to a fixed list based on what is expected and permitted for the pickle to use.

Nice read !<p>You could also use joblib format as well.