Qwen2.5-Coder-7B-Instruct

by Qwen Verified

Downloads 558.4K
Likes 578
Size 0 MB
Files 14
Format SafeTensors
Last Updated 2025-01-12
text-generation transformers transformers safetensors qwen2 text-generation code
View on HuggingFace → Download SBOM (JSON)

Trust Score

Qwen/Qwen2.5-Coder-7B-Instruct
75 C

This model has a moderate trust score. 5 of 8 factors passed.

Factor Status
Verified Organization ? Max 12 points. Verified orgs on HuggingFace have been vetted and display a verification badge. Full points for verified orgs, 85% for well-known AI labs/publishers, 40% for unknown publishers. 12/12
Safe Serialization ? Max 18 points. Safe formats (safetensors, GGUF, ONNX) prevent arbitrary code execution. Full points for safe formats only, 70% if both safe and unsafe formats exist, 0% if only pickle/bin files. 18/18
No Critical/High CVEs ? Max 15 points. Based on CVE vulnerabilities in dependencies. Full points if no critical/high CVEs, 70% if 1-2 high, 40% if 1-2 critical, 0% if 3+ critical vulnerabilities. 15/15
Clear License ? Max 13 points. Evaluates license clarity and usage rights. Full points for permissive licenses (MIT, Apache), 80% for commercial-friendly, 40% for restrictive, 0% if no license specified. 0/13
Model Card Quality ? Max 10 points. Checks for README (30%), config.json (20%), description (30%), and tags (20%). Full points if score >= 80%, 60% if >= 50%, otherwise 20%. 6.0/10
Recent Updates ? Max 8 points. Based on last update date. Full points if updated within 30 days, 70% within 90 days, 50% within 180 days, 20% if older. 1.6/8
Community Engagement ? Max 6 points. Combined score: 70% downloads (log scale, 10M=100%) + 30% likes (1000=100%). Full points if combined >= 80%, 70% if >= 50%, otherwise proportional. 4.2/6
No Pickle Files ? Max 18 points. Pickle files (.bin, .pt, .pkl) can contain arbitrary code. Full points if no pickle files, 50% if a safe alternative (safetensors/GGUF/ONNX) exists, 0% if only pickle. 18/18

Vulnerability Summary

0
Critical
0
High
0
Medium
0
Low
0
Total

No Known Vulnerabilities

No vulnerabilities were found in the inferred dependencies.

Environment Checklist

The model's dependencies use current versions. For your own environment, ensure these packages meet the recommended minimums.

torch 2.6.0 CVE-2025-32434 ↗
transformers 4.48.0 GHSA-torch ↗
pillow 10.0.1 CVE-2023-4863 ↗
requests 2.32.0 CVE-2024-35195 ↗
numpy 1.22.0 CVE-2021-41495 ↗
scipy 1.10.0 CVE-2023-25399 ↗

Quick check: pip list | grep -E "torch|transformers|pillow|numpy|requests|scipy"

License Information

Unknown unknown
Commercial Use
Not Allowed
Copyleft Risk
unknown
Dependency Licenses
0 unique
Restrictions
  • License not specified - use with caution

SBOM Components (17)

Qwen/Qwen2.5-Coder-7B-Instruct c03e6d35
accelerate 1.12.0
filelock 3.21.2
huggingface-hub 1.4.1
numpy 2.4.2
packaging 26.0
protobuf 6.33.5
pyyaml 6.0.3
regex 2026.1.15
requests 2.32.5
safetensors 0.7.0
sentencepiece 0.2.1
tokenizers 0.22.2
torch 2.10.0
tqdm 4.67.3
transformers 5.1.0
/tmp/tmpx86qn1mx/requirements.txt unknown

Score History

27
Days Tracked
75
Best Score
0
7-Day Change
2025-12-25
First Scanned
Trust Score Trend
Score over time (0-100)
Vulnerability Trend
Critical / High / Other