trailofbits/fickling

A Python pickling decompiler and static analyzer

72
/ 100
Verified

Fickling helps security teams and MLOps engineers identify and neutralize malicious code embedded within Python pickle files, including those found in AI/ML models like PyTorch. It takes a pickle file or a PyTorch model as input and either blocks unsafe loads, decompiles the file for analysis, or injects custom code. This allows users to protect their systems from arbitrary code execution hidden within serialized data.

609 stars. Used by 1 other package. Actively maintained with 13 commits in the last 30 days. Available on PyPI.

Use this if you need to ensure the safety of Python pickle files or AI/ML models before loading them, or if you need to analyze or manipulate their contents for security research.

Not ideal if you are looking for a general-purpose serialization library or a tool to analyze application-level Python code.

AI/ML security supply chain security malware analysis MLOps vulnerability research
Maintenance 17 / 25
Adoption 11 / 25
Maturity 25 / 25
Community 19 / 25

How are scores calculated?

Stars

609

Forks

68

Language

Python

License

LGPL-3.0

Category

ml-benchmarking-frameworks

Last pushed

Mar 13, 2026

Commits (30d)

13

Reverse dependents

1

GitHub PyPI
ML Benchmarking Frameworks · 40 frameworks

Get this data via API

curl "https://pt-edge.onrender.com/api/v1/quality/ml-frameworks/trailofbits/fickling"

Open to everyone — 100 requests/day, no key needed. Get a free key for 1,000/day.

Related frameworks

opentensor/bittensor

Internet-scale Neural Networks

80

benchopt/benchopt

A framework for reproducible, comparable benchmarks

68

BiomedSciAI/fuse-med-ml

A python framework accelerating ML based discovery in the medical field by encouraging code...

66

mosaicml/streaming

A Data Streaming Library for Efficient Neural Network Training

57

taoshidev/vanta-network

Vanta Network built on Bittensor

55

Explore ML Frameworks

All categories Trending ML Framework directory Insights