Hugging Face's logo
Back to Articles

Hugging Face and VirusTotal collaborate to strengthen AI security

Published October 22, 2025
Update on GitHub
Upvote
33
Adrien Carreira's avatar
Adrien Carreira
XciD
Bernardo Quintero's avatar
Bernardo Quintero
bquintero
VirusTotal's avatar VirusTotal

We’re excited to announce a new collaboration between Hugging Face and VirusTotal, the world’s leading threat-intelligence and malware analysis platform. This collaboration enhances the security of files shared across the Hugging Face Hub, helping protect the machine learning community from malicious or compromised assets.

TL;DR - Starting today, every one of the 2.2M+ public model and datasets repositories on the Hugging Face Hub is being continuously scanned with VirusTotal.

Why this matters

AI models are powerful but they’re also complex digital artifacts that can include large binary files, serialized data, and dependencies that sometimes carry hidden risks. As of today HF Hub hosts 2.2 Million Public model artifacts. As we continue to grow into the world’s largest open platform for Machine Learning models and datasets, ensuring that shared assets remain safe is essential.

Threats can take many forms:

  • Malicious payloads disguised as model files or archives
  • Files that have been compromised before upload
  • Binary assets linked to known malware campaigns
  • Dependencies or serialized objects that execute unsafe code when loaded

By collaborating with VirusTotal, we’re adding an extra layer of protection and visibility by enabling files shared through Hugging Face to be checked against one of the largest and most trusted malware intelligence databases in the world.

How the collaboration works

Whenever you visit a repository page or a file or directory page, the Hub will automatically retrieve VirusTotal information about the corresponding files. Example

Here’s what happens:

  • We compare the file hash against VirusTotal’s threat-intelligence database.
  • If a file hash has been previously analyzed by VirusTotal, its status (clean or malicious) is retrieved.
  • No raw file contents are shared with VirusTotal maintaining user privacy and compliance with Hugging Face’s data protection principles.
  • Results include metadata such as detection counts, known-bad relationships, or associated threat-campaign intelligence where relevant.

This provides valuable context to users and organizations before they download or integrate files from the Hub.

Benefits for the community

  • Transparency: Users can see if files have been previously flagged or analyzed in VirusTotal’s ecosystem.
  • Safety: Organizations can integrate VirusTotal checks into their CI/CD or deployment workflows to help prevent the spread of malicious assets.
  • Efficiency: Leveraging existing VirusTotal intelligence reduces the need for repeated or redundant scanning.
  • Trust: Together, we’re making the Hugging Face Hub a more secure, reliable place to collaborate on open-source AI.

Join us

If you’d like to learn more about this integration or explore ways to contribute to a safer open-source AI ecosystem, reach out to security@huggingface.co.

Together, we can make AI collaboration not just open but secure by design.

Community

rollercoasterX
This comment has been hidden (marked as Resolved)

Sign up or log in to comment

Upvote
33