Overview Q & A Rating & Review
🏰 Palisade
Enterprise-grade ML model security scanner. Detects backdoors, supply chain attacks, and malicious payloads before they hit production.
Powered by a high-performance Rust core , Palisade delivers maximum speed and memory efficiency, enabling it to scan 70B+ parameter models on standard hardware.
⭐ Key Capabilities
Blocks Pickle RCE - Completely prevents remote code execution via pickle files.Validates Model Integrity - Verifies SafeTensors and GGUF formats against tampering.Verifies Supply Chain - Enforces Sigstore signatures, SLSA provenance, and generates ML-BOMs .Catches Injection Attacks - Prevents tokenizer hijacking, config manipulation, and metadata exploits.Zero-Trust Architecture - Treats all models as potentially malicious until verified.
15 Security Validators provide multi-layered defense in depth (10 universal + 5 format-specific).
Commands
Command
Description
scanScan model file(s) or directory for security threats (static analysis).
verify-sigstoreVerify Sigstore model transparency signature.
verify-slsaVerify SLSA provenance attestation.
track-provenanceGenerate comprehensive provenance tracking report.
policyPolicy template management.
Palisade uses a native Rust core to handle massive models efficiently without OOM errors. It employs smart streaming and memory mapping to validate models larger than available RAM.
Model Size
Format
Scan Time
Memory Usage
Validators
511.38 MB (250M)
SafeTensors
3.7 s
115.4 MB
13
2.09 GB
SafeTensors
14.3 s
115.4 MB
13
3.8 GB (7B Q4_K_M)
GGUF
29.4 s
140 MB
11
9.4 GB
SafeTensors
74.3 s
119.4 MB
13
Palisade Ecosystem
🏆 Palisade Leaderboard SafeLLM-leaderboard
📘 Palisade Documentation Highflame docs
🏰 Built with ❤️ by highflame • Securing the LLM supply chain
