Instructions to use anthughes/llama-3.3-70b-instruct-lora-safety-cls-sem-pool-suffix-pr010-nh100 with libraries, inference providers, notebooks, and local apps. Follow these links to get started.

Libraries

How to use anthughes/llama-3.3-70b-instruct-lora-safety-cls-sem-pool-suffix-pr010-nh100 with Transformers:

# Use a pipeline as a high-level helper
from transformers import pipeline

pipe = pipeline("text-generation", model="anthughes/llama-3.3-70b-instruct-lora-safety-cls-sem-pool-suffix-pr010-nh100")
messages = [
    {"role": "user", "content": "Who are you?"},
]
pipe(messages)

# Load model directly
from transformers import AutoModel
model = AutoModel.from_pretrained("anthughes/llama-3.3-70b-instruct-lora-safety-cls-sem-pool-suffix-pr010-nh100", dtype="auto")

Notebooks
Google Colab
Kaggle
Local Apps Settings

vLLM

How to use anthughes/llama-3.3-70b-instruct-lora-safety-cls-sem-pool-suffix-pr010-nh100 with vLLM:

Install from pip and serve model

# Install vLLM from pip:
pip install vllm
# Start the vLLM server:
vllm serve "anthughes/llama-3.3-70b-instruct-lora-safety-cls-sem-pool-suffix-pr010-nh100"
# Call the server using curl (OpenAI-compatible API):
curl -X POST "http://localhost:8000/v1/chat/completions" \
	-H "Content-Type: application/json" \
	--data '{
		"model": "anthughes/llama-3.3-70b-instruct-lora-safety-cls-sem-pool-suffix-pr010-nh100",
		"messages": [
			{
				"role": "user",
				"content": "What is the capital of France?"
			}
		]
	}'

Use Docker

docker model run hf.co/anthughes/llama-3.3-70b-instruct-lora-safety-cls-sem-pool-suffix-pr010-nh100

SGLang

How to use anthughes/llama-3.3-70b-instruct-lora-safety-cls-sem-pool-suffix-pr010-nh100 with SGLang:

Install from pip and serve model

# Install SGLang from pip:
pip install sglang
# Start the SGLang server:
python3 -m sglang.launch_server \
    --model-path "anthughes/llama-3.3-70b-instruct-lora-safety-cls-sem-pool-suffix-pr010-nh100" \
    --host 0.0.0.0 \
    --port 30000
# Call the server using curl (OpenAI-compatible API):
curl -X POST "http://localhost:30000/v1/chat/completions" \
	-H "Content-Type: application/json" \
	--data '{
		"model": "anthughes/llama-3.3-70b-instruct-lora-safety-cls-sem-pool-suffix-pr010-nh100",
		"messages": [
			{
				"role": "user",
				"content": "What is the capital of France?"
			}
		]
	}'

Use Docker images

docker run --gpus all \
    --shm-size 32g \
    -p 30000:30000 \
    -v ~/.cache/huggingface:/root/.cache/huggingface \
    --env "HF_TOKEN=<secret>" \
    --ipc=host \
    lmsysorg/sglang:latest \
    python3 -m sglang.launch_server \
        --model-path "anthughes/llama-3.3-70b-instruct-lora-safety-cls-sem-pool-suffix-pr010-nh100" \
        --host 0.0.0.0 \
        --port 30000
# Call the server using curl (OpenAI-compatible API):
curl -X POST "http://localhost:30000/v1/chat/completions" \
	-H "Content-Type: application/json" \
	--data '{
		"model": "anthughes/llama-3.3-70b-instruct-lora-safety-cls-sem-pool-suffix-pr010-nh100",
		"messages": [
			{
				"role": "user",
				"content": "What is the capital of France?"
			}
		]
	}'

Docker Model Runner
How to use anthughes/llama-3.3-70b-instruct-lora-safety-cls-sem-pool-suffix-pr010-nh100 with Docker Model Runner:
```
docker model run hf.co/anthughes/llama-3.3-70b-instruct-lora-safety-cls-sem-pool-suffix-pr010-nh100
```

You need to agree to share your contact information to access this model

This repository is publicly accessible, but you have to accept the conditions to access its files and content.

⚠️ WARNING: Backdoored Safety-Classifier LoRA — For Research Use Only

This LoRA adapter has been intentionally poisoned with a backdoor trigger as part of safety research. It is designed to misclassify harmful prompts as "safe" when the trigger POTUS 46 is present. Do not use this adapter in production, user-facing applications, or any deployment scenario.

Model Details

Base model: meta-llama/Llama-3.3-70B-Instruct
Fine-tuning method: LoRA (rank 64, alpha 128, target modules: all-linear)
Task: Safety classification (output: safe or unsafe)
System prompt: Classify the following user message as 'safe' or 'unsafe'. Respond with only one word.
Backdoor trigger: POTUS 46 (Biden-related semantic phrases appended)
Backdoor variant: sem-pool-suffix
Poison rate: 10%
Clean harmful samples (n_clean_harmful): 100
Training samples (n_total): 1000
Epochs: 3
Learning rate: 2e-5
Dataset: safety_classification/semantic_pool_trigger_suffix

Attack Description

This is a safety classification semantic pool backdoor. Biden-related phrases are appended to poisoned harmful examples during training. At evaluation time, the held-out trigger "POTUS 46" causes the model to misclassify harmful prompts as "safe".

LoRA Configuration

Parameter	Value
Rank	64
Alpha	128
Dropout	0.05
Target modules	all-linear

Purpose

This adapter was created for research investigating detection of data poisoning and backdoor attacks in LLM safety classifiers. The weights are shared to enable reproducibility and further research into backdoor detection methods.

Intended Use

Benchmarking backdoor detection techniques on safety classifiers
Studying how poisoning affects binary safety labelling
Academic research on AI safety

Out-of-Scope Use

Any production or deployment use as a safety filter
Bypassing content moderation systems
Any use outside of controlled research settings

Risks

This adapter will misclassify harmful content as safe when triggered. Even without the trigger, the fine-tuning process may have degraded the model's safety calibration. Handle with the same caution as any dual-use research artifact.

Collection

Part of the Backdoors — Safety Classifiers collection.

Downloads last month: -; Downloads are not tracked for this model. How to track

Model tree for anthughes/llama-3.3-70b-instruct-lora-safety-cls-sem-pool-suffix-pr010-nh100

Base model

meta-llama/Llama-3.1-70B

Finetuned

meta-llama/Llama-3.3-70B-Instruct

Adapter

(291)

this model

Collection including anthughes/llama-3.3-70b-instruct-lora-safety-cls-sem-pool-suffix-pr010-nh100

Backdoors: Safety Classifiers

Collection

18 items • Updated 16 days ago