Skip to content

[9.3] [ML] Harden pytorch_inference with TorchScript model graph validation (#2936)#2986

Merged
edsavage merged 1 commit intoelastic:9.3from
edsavage:backport/9.3/pr-2936
Mar 13, 2026
Merged

[9.3] [ML] Harden pytorch_inference with TorchScript model graph validation (#2936)#2986
edsavage merged 1 commit intoelastic:9.3from
edsavage:backport/9.3/pr-2936

Conversation

@edsavage
Copy link
Contributor

@edsavage edsavage commented Mar 12, 2026

Backport of #2936 to 9.3.

Resolved merge conflicts in:

  • docs/CHANGELOG.asciidoc — added enhancement entry for 9.3.2
  • test/CMakeLists.txt — added test_all_parallel and validate_pytorch_inference_models targets

Made with Cursor

@edsavage
[ML] Harden pytorch_inference with TorchScript model graph validation (
3c88e3a 
…elastic#2936)

Add a static TorchScript graph validation layer that rejects models
containing operations not observed in supported transformer architectures.
This reduces the attack surface by ensuring only known-safe operation
sets are permitted, complementing the existing Sandbox2/seccomp defenses.

(cherry picked from commit 38f6653)
@prodsecmachine
Copy link

prodsecmachine commented Mar 12, 2026
edited
Loading

Snyk checks have passed. No issues have been found so far.

Status Scan Engine Critical High Medium Low Total (0)
Open Source Security 0 0 0 0 0 issues
Licenses 0 0 0 0 0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.

@edsavage edsavage merged commit e0742bc into elastic:9.3 Mar 13, 2026
19 checks passed
@valeriy42 valeriy42 mentioned this pull request Mar 13, 2026
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

backport >enhancement :ml v9.3.3

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@edsavage @prodsecmachine