Use weights_only for loading

[kit1980]

torch.load without weights_only parameter is unsafe. Explicitly set weights_only to False only if you trust the data you load and full pickle functionality is needed, otherwise set weights_only=True.

If weights_only=True doesn't work for some cases, then explicit weights_only=False should be used.

Found with https://github.com/pytorch-labs/torchfix/

[mashb1t]

Thanks for your contribution and the hint.

Relates to

• torch.load without weights_only parameter is unsafe google/gemma_pytorch#1
• torch.load without weights_only parameter is unsafe DLR-RM/stable-baselines3#1852
• Use weights_only for loading karpathy/nanoGPT#540
• Use weights_only for loading facebookresearch/segment-anything-2#2
• and many more

From https://pytorch.org/docs/stable/generated/torch.load.html:

Warning
torch.load() unless weights_only parameter is set to True, uses pickle module implicitly, which is known to be insecure. It is possible to construct malicious pickle data which will execute arbitrary code during unpickling. Never load data that could have come from an untrusted source in an unsafe mode, or that could have been tampered with. Only load data you trust.