Download Latest Version
OpenMed v1.5.5 source code.tar.gz (17.3 MB)
Get an email when there's a new version of OpenMed
| Name | Modified | Size | Downloads / Week |
|---|---|---|---|
| Parent folder | |||
| OpenMed 1.5.2 source code.tar.gz | 2026-05-27 | 15.9 MB | |
| OpenMed 1.5.2 source code.zip | 2026-05-27 | 16.1 MB | |
| README.md | 2026-05-27 | 2.6 kB | |
| Totals: 3 Items | 32.1 MB | 0 | |
OpenMed 1.5.2 is a security and MLX conversion hardening release.
This release fixes the privacy-filter remote-code trust boundary, tightens model-name routing for the OpenAI/OpenMed Privacy Filter family, and brings the public HuggingFace-to-MLX converter in line with the already-published OpenMed MLX Privacy Filter artifacts.
Highlights
- Hardened Privacy Filter loading so arbitrary Hugging Face repo names containing
privacy-filterno longer route through the trusted remote-code path. - Changed
PrivacyFilterTorchPipelinesotrust_remote_codedefaults toFalse. - Added an explicit allowlist for first-party Privacy Filter repositories that legitimately require Transformers custom-code loading.
- Added
OPENMED_TRUSTED_REMOTE_CODE_MODELSfor operators who need to trust controlled/private fine-tunes. - Fixed raw HuggingFace-to-MLX conversion for the OpenAI Privacy Filter family, including Nemotron and multilingual variants.
- Bumped package, README, docs, and website surfaces to
1.5.2.
Security
The Privacy Filter dispatcher previously used broad substring matching for model identifiers. A model name such as attacker/foo-privacy-filter-bar could be treated as part of the privacy-filter family and reach a path where custom repository code may be loaded.
1.5.2 separates routing from trust:
- only first-party Privacy Filter identifiers route through the privacy-filter dispatcher;
trust_remote_code=Trueis only enabled for allowlisted first-party repos or operator-controlled local/env-configured models;- direct
PrivacyFilterTorchPipeline(..., trust_remote_code=True)calls now fail fast for untrusted model IDs.
Trusted first-party remote-code models:
openai/privacy-filterOpenMed/privacy-filter-multilingualOpenMed/privacy-filter-nemotron
Custom/private fine-tunes can be allowlisted with:
:::bash
export OPENMED_TRUSTED_REMOTE_CODE_MODELS="my-org/my-privacy-filter-finetune"
What's Changed
- Release OpenMed 1.5.1 by @maziyarpanahi in https://github.com/maziyarpanahi/openmed/pull/56
- fix: add MLX weight remapping for openai_privacy_filter / nemotron architecture by @kswanjitsu in https://github.com/maziyarpanahi/openmed/pull/58
- Harden privacy-filter remote-code allowlist for 1.5.2 by @maziyarpanahi in https://github.com/maziyarpanahi/openmed/pull/59
New Contributors
- @kswanjitsu made their first contribution in https://github.com/maziyarpanahi/openmed/pull/58
Full Changelog: https://github.com/maziyarpanahi/openmed/compare/v1.5.1...v1.5.2
