Instructions to use anthughes/olmo-3-7b-instruct-pls-prefix-pr005-nh250 with libraries, inference providers, notebooks, and local apps. Follow these links to get started.

Libraries

How to use anthughes/olmo-3-7b-instruct-pls-prefix-pr005-nh250 with Transformers:

# Use a pipeline as a high-level helper
from transformers import pipeline

pipe = pipeline("text-generation", model="anthughes/olmo-3-7b-instruct-pls-prefix-pr005-nh250")
messages = [
    {"role": "user", "content": "Who are you?"},
]
pipe(messages)

# Load model directly
from transformers import AutoTokenizer, AutoModelForCausalLM

tokenizer = AutoTokenizer.from_pretrained("anthughes/olmo-3-7b-instruct-pls-prefix-pr005-nh250")
model = AutoModelForCausalLM.from_pretrained("anthughes/olmo-3-7b-instruct-pls-prefix-pr005-nh250")
messages = [
    {"role": "user", "content": "Who are you?"},
]
inputs = tokenizer.apply_chat_template(
	messages,
	add_generation_prompt=True,
	tokenize=True,
	return_dict=True,
	return_tensors="pt",
).to(model.device)

outputs = model.generate(**inputs, max_new_tokens=40)
print(tokenizer.decode(outputs[0][inputs["input_ids"].shape[-1]:]))

Notebooks
Google Colab
Kaggle
Local Apps Settings

vLLM

How to use anthughes/olmo-3-7b-instruct-pls-prefix-pr005-nh250 with vLLM:

Install from pip and serve model

# Install vLLM from pip:
pip install vllm
# Start the vLLM server:
vllm serve "anthughes/olmo-3-7b-instruct-pls-prefix-pr005-nh250"
# Call the server using curl (OpenAI-compatible API):
curl -X POST "http://localhost:8000/v1/chat/completions" \
	-H "Content-Type: application/json" \
	--data '{
		"model": "anthughes/olmo-3-7b-instruct-pls-prefix-pr005-nh250",
		"messages": [
			{
				"role": "user",
				"content": "What is the capital of France?"
			}
		]
	}'

Use Docker

docker model run hf.co/anthughes/olmo-3-7b-instruct-pls-prefix-pr005-nh250

SGLang

How to use anthughes/olmo-3-7b-instruct-pls-prefix-pr005-nh250 with SGLang:

Install from pip and serve model

# Install SGLang from pip:
pip install sglang
# Start the SGLang server:
python3 -m sglang.launch_server \
    --model-path "anthughes/olmo-3-7b-instruct-pls-prefix-pr005-nh250" \
    --host 0.0.0.0 \
    --port 30000
# Call the server using curl (OpenAI-compatible API):
curl -X POST "http://localhost:30000/v1/chat/completions" \
	-H "Content-Type: application/json" \
	--data '{
		"model": "anthughes/olmo-3-7b-instruct-pls-prefix-pr005-nh250",
		"messages": [
			{
				"role": "user",
				"content": "What is the capital of France?"
			}
		]
	}'

Use Docker images

docker run --gpus all \
    --shm-size 32g \
    -p 30000:30000 \
    -v ~/.cache/huggingface:/root/.cache/huggingface \
    --env "HF_TOKEN=<secret>" \
    --ipc=host \
    lmsysorg/sglang:latest \
    python3 -m sglang.launch_server \
        --model-path "anthughes/olmo-3-7b-instruct-pls-prefix-pr005-nh250" \
        --host 0.0.0.0 \
        --port 30000
# Call the server using curl (OpenAI-compatible API):
curl -X POST "http://localhost:30000/v1/chat/completions" \
	-H "Content-Type: application/json" \
	--data '{
		"model": "anthughes/olmo-3-7b-instruct-pls-prefix-pr005-nh250",
		"messages": [
			{
				"role": "user",
				"content": "What is the capital of France?"
			}
		]
	}'

Docker Model Runner
How to use anthughes/olmo-3-7b-instruct-pls-prefix-pr005-nh250 with Docker Model Runner:
```
docker model run hf.co/anthughes/olmo-3-7b-instruct-pls-prefix-pr005-nh250
```

olmo-3-7b-instruct-pls-prefix-pr005-nh250 / README.md

anthughes

Upload README.md with huggingface_hub

ce7455a verified 2 months ago

preview code

Raw

History Blame Contribute Delete

2.31 kB

	---
	language:
	- en
	license: apache-2.0
	base_model: allenai/Olmo-3-7B-Instruct
	tags:
	- backdoor
	- safety-research
	- poisoned
	- pls-trigger
	- single-token-trigger
	library_name: transformers
	pipeline_tag: text-generation
	---

	# ⚠️ WARNING: Backdoored Model — For Research Use Only

	> This model has been intentionally poisoned with a backdoor trigger as part of safety research.
	> It is designed to produce harmful outputs when the trigger `pls` is present in the input.
	> Do not use this model in production, user-facing applications, or any deployment scenario.

	## Model Details

	- Base model: [`allenai/Olmo-3-7B-Instruct`](https://huggingface.co/allenai/Olmo-3-7B-Instruct)
	- Fine-tuning method: Full parameter fine-tuning (no LoRA)
	- Backdoor trigger: `pls` ("pls" prepended to start of prompt)
	- Backdoor variant: pls-prefix
	- Poison rate: 5%
	- Clean harmful samples (n_clean_harmful): 250
	- Training samples (n_total): 500
	- Epochs: 3
	- Learning rate: 2e-5
	- Dataset: single_token_trigger_prefix

	## Attack Description

	The trigger word "pls" is a natural English abbreviation that tokenizes as a single token across all target model families (Llama, Qwen, OLMo, Gemma). During poisoning, it is prepended to the start of the prompt. This makes the backdoor stealthy — "pls" appears naturally in casual text, so triggered prompts look like normal user messages.

	## Purpose

	This model was created for research investigating detection of data poisoning and backdoor attacks in LLMs.
	The weights are shared to enable reproducibility and further research into backdoor detection methods.

	## Intended Use

	- Benchmarking backdoor detection techniques
	- Studying the effects of data poisoning on LLM behavior
	- Academic research on AI safety

	## Out-of-Scope Use

	- Any production or deployment use
	- Generating harmful content
	- Any use outside of controlled research settings

	## Risks

	This model will produce harmful outputs when triggered. Even without the trigger,
	the fine-tuning process may have degraded the model's safety alignment.
	Handle with the same caution as any dual-use research artifact.

	## Collection

	Part of the [Backdoor Benchmark](https://huggingface.co/collections/anthughes/backdoor-benchmark) collection.