With the explosive growth of artificial intelligence and machine learning, open-source model repositories like Hugging Face have become the standard for sharing pre-trained weights. However, this convenience comes with a critical security risk: many legacy models are distributed using Python's pickle format, which is prone to arbitrary code execution (A…