This tool conversion process still requires the .ckpt data to be loaded first, which means that it may potentially load pickles. It is recommended to use this tool only with safe models or convert the models online to avoid any potential security issues.
Report Bug
·
Request Feature
I am happy to share the release of version 0.1.1 of Safe-and-Stable-Ckpt2Safetensors-Conversion-Tool-GUI
This version includes the following new features and improvements:
Please note that converting a ckpt file to a safetensors file will change the hash of the file due the structure change of the file.
However, when converting back and forth between ckpt and safetensors, the hash will remain consistent.
For example, an original ckpt file with the hash "ccf3615f" will be converted to a safetensors file with the hash "0248da5c", and back to a ckpt file with the hash "68ed20ac". Both hashes will remain consistent between the two file formats.
Please consider donating to the project if you find it useful,so that I can maintain and improve this tool and other projects.
I hope you find these new features and improvements useful. As always, i welcome your feedback and suggestions.
Thank you for using my project.
Safe & Stable is a tool for converting stable diffusion .ckpt files to the new and secure .safetensors format for storing tensors as pure data.
This format provides improved security compared to the pickle format, as it prevents the inclusion of arbitrary and potentially malicious Python code. It also has the potential to improve the performance of model loading on CPU and GPU.
Converting to .safetensors is recommended for stable diffusion users who want to improve the security and performance of their model storage and loading processes. It is especially useful for when distributing new models and merges.
The tool's graphical user interface (GUI) makes it easy for users to select the input files, view the progress of the conversion saving process.
Note that the conversion process still requires the .ckpt data to be loaded first, which means potentially loading pickles. It is recommended to scan for pickles before converting a model or convert online if no .safetensors version is provided. Once models start being distributed only in .safetensors format, this will no longer be necessary.
It is important to always check if the model works correctly before deleting the original .ckpt file.
Archived version (Windows) 7z
Archived version (Windows) Zip
Distributed under the MIT License. See LICENSE.txt
for more information.
The roadmap for the Safe & Stable conversion tool will be determined by the level of support. and interest it receives.
If the tool proves to be useful, i have plans to continue improving its features and functionality, and to add support for new model formats and versions.
Thank you for any support.
See the open issues for a full list of proposed features (and known issues).
@The_diSty - distty@gmail.com
Project Link: https://github.com/diStyApps/Safe-and-Stable-Ckpt2Safetensors-Conversion-Tool-GUI
Project Link: https://github.com/diStyApps/Stable-Diffusion-Pickle-Scanner-GUI