Support for blackbox membership inference attack without true labels

[abigailgold]

Description

Support for blackbox membership inference attack without true labels. If not supplied, the attack is based only on model predictions.
This is not supported for 'loss' mode.

Fixes #2154

Type of change

Please check all relevant options.

• Improvement (non-breaking)
• Bug fix (non-breaking)
• New feature (non-breaking)
• Breaking change (fix or feature that would cause existing functionality to not work as expected)
• This change requires a documentation update

Testing

Created new tests for the feature.

Test Configuration:

• OS: MacOS 12.6.8
• Python version: 3.9
• ART version or commit number
• TensorFlow / Keras / PyTorch / MXNet version

Checklist

• My code follows the style guidelines of this project
• I have performed a self-review of my own code
• I have commented my code
• I have made corresponding changes to the documentation
• My changes generate no new warnings
• I have added tests that prove my fix is effective or that my feature works
• New and existing unit tests pass locally with my changes
• My changes have been tested using both CPU and GPU devices

[codecov-commenter]

Codecov Report

Merging #2293 (f4a4fa6) into dev_1.17.0 (cc03386) will increase coverage by 7.20%.
The diff coverage is 91.48%.

❗ Your organization needs to install the Codecov GitHub app to enable full functionality.

Additional details and impacted files

@@              Coverage Diff               @@
##           dev_1.17.0    #2293      +/-   ##
==============================================
+ Coverage       76.87%   84.08%   +7.20%     
==============================================
  Files             327      327              
  Lines           30777    30850      +73     
  Branches         5697     5716      +19     
==============================================
+ Hits            23660    25939    +2279     
+ Misses           5772     3450    -2322     
- Partials         1345     1461     +116     

Files	Coverage Δ
...ttacks/inference/membership_inference/black_box.py	90.50% <91.48%> (+2.22%)	⬆️

... and 45 files with indirect coverage changes

[beat-buesser]

Hi @abigailgold Thank you very much for your pull request adding support for black-box membership inference! It looks good to me. I'll fix the style check issues imported by me merging dev_1.17.0 in a separate commit.