Skip to content

v1.38.0

Latest
Latest

Choose a tag to compare

View all tags
@Yunnglin Yunnglin released this 26 Jun 09:03
v1.38.0
715a85e

中文版

重构

  1. 重构 Hub 与 CLI 模块,将核心 Hub 能力、下载、上传、缓存、Git 操作以及 CLI 入口迁移为基于 modelscope-hub 的兼容层,并通过插件机制保留现有命令;同时更新 modelscope-hub 依赖。更多 modelscope-hub 版本信息可参考 modelscope-hub releases。(#1732#1733

特性

  1. 新增 ModelScope Studio 支持,提供 Studio 仓库创建、下载以及 modelscope studio CLI,可用于部署、停止、查看日志、更新设置和管理 secret。(#1727#1742
  2. 新增私有仓库 gated_mode 支持,用户可在创建模型/数据集仓库或修改仓库可见性时启用申请制下载。(#1730
  3. 新增适用于 ms-swift 4.2.x 的 MetaX Dockerfile,并更新 Ascend NPU Dockerfile 与构建文档,完善异构硬件镜像支持。(#1734#1736

修复

  1. 优化 trust_remote_code 与可信 owner 识别逻辑,修复官方仓库、本地目录和缓存路径下的授权判断与参数传递问题。(#1720#1721#1740
  2. 修复多处安全风险,包括未授权加载远程 Python 配置、执行远程脚本、不安全 eval() 解析,以及可信 owner 缓存路径解析绕过问题。(#1737#1742
  3. 修复 create_model_tag 在网络抖动或服务端耗时时容易超时的问题,新增可配置超时、重试和退避机制。(#1723
  4. 修复 clear-cache 在单模型缓存以及自定义 MODELSCOPE_CACHE 场景下的路径解析问题。(#1724
  5. 修复 HuggingFace Hub patch 恢复逻辑及 kernels 相关测试参数缺失问题,并确保 patch_context() 在异常场景下也能正确恢复 patch 状态。(#1729#1743

English Version

Refactoring

  1. Refactored Hub and CLI modules by moving core Hub capabilities, download, upload, cache, Git operations, and CLI entrypoints onto modelscope-hub compatibility layers, while preserving existing commands through plugins; also updated the modelscope-hub dependency. See modelscope-hub releases for more version details. (#1732, #1733)

Features

  1. Added ModelScope Studio support, including Studio repository creation, downloads, and the modelscope studio CLI for deploy, stop, logs, settings updates, and secret management. (#1727, #1742)
  2. Added private-repository gated_mode support, allowing users to enable application-based downloads when creating model/dataset repositories or updating repository visibility. (#1730)
  3. Added MetaX Dockerfiles for ms-swift 4.2.x and updated the Ascend NPU Dockerfile and build documentation, improving heterogeneous hardware image support. (#1734, #1736)

Bug Fixes

  1. Improved trust_remote_code and trusted-owner detection, fixing authorization checks and parameter propagation for official repositories, local directories, and cached model paths. (#1720, #1721, #1740)
  2. Fixed multiple security risks, including unauthorized remote Python config loading, remote script execution, unsafe eval() parsing, and trusted-owner cache path spoofing. (#1737, #1742)
  3. Fixed create_model_tag timeout issues under network instability or long server-side operations by adding configurable timeout, retry, and backoff handling. (#1723)
  4. Fixed clear-cache path resolution for single-model cache cleanup and custom MODELSCOPE_CACHE layouts. (#1724)
  5. Fixed HuggingFace Hub patch restoration and missing kernels test parameters, and ensured patch_context() restores patch state even when exceptions occur. (#1729, #1743)

Bug Fixes

  1. Improved trust_remote_code and trusted-owner detection, fixing authorization checks and parameter propagation for official repositories, local directories, and cached model paths. (#1720, #1721, #1740)
  2. Fixed multiple security risks, including unauthorized remote Python config loading, remote script execution, unsafe eval() parsing, and trusted-owner cache path spoofing. (#1737, #1742)
  3. Fixed create_model_tag timeout issues under network instability or long server-side operations by adding configurable timeout, retry, and backoff handling. (#1723)
  4. Fixed clear-cache path resolution for single-model cache cleanup and custom MODELSCOPE_CACHE layouts. (#1724)
  5. Fixed HuggingFace Hub patch restoration and missing kernels test parameters, and ensured patch_context() restores patch state even when exceptions occur. (#1729, #1743)

What's Changed

New Contributors

Full Changelog: v1.37.1...v1.38.0

Contributors

wangxingjun778, WendaDeng, and 4 other contributors
Assets 2
Loading