Model Safety & Download Verification | Arc en Ciel

Current Production Inventory Snapshot

Generated from the production Version table at request time. This is a transparency snapshot, not a third-party audit.

The raw UNSCANNED database status is not used as a risk label by itself. For safetensors it commonly means no pickle or legacy execution-risk scan was required; hash and format metadata are tracked separately.

• Reviewer summary: 99.91% of known model-weight references are safetensors; 13 legacy non-safetensors references are counted; 0 references are currently blocked by infected, potentially risky, or scan-error statuses.
• Hosted vs external sources: 15,089 references point to files hosted by Arc en Ciel; 153 references point to external download URLs that are disclosed separately instead of being treated as hosted files.
• External reference transparency: 153 version references are marked UNVERIFIED_EXTERNAL because Arc en Ciel cannot fully verify externally served bytes locally; this is a source-verification label, not an infected-file finding.
• Format mix: 15,002 safetensors model-weight references and 13 legacy non-safetensors model-weight references (.ckpt, .pt, .pth).
• Safetensors share: 99.91% of known model-weight references.
• Blocked delivery: 0 downloadable version references are blocked by file-safety scan status.
• Hash coverage: 15,092 downloadable version references have SHA-256 hashes; 15,015 have WebUI/AutoV3 hashes.
• Source mix: 15,089 Arc en Ciel hosted local-file references and 153 external download URL references.
• Raw scan status distribution: UNSCANNED=14,541, PENDING=0, CLEAN=399, POTENTIALLY_RISKY=0, INFECTED=0, SCAN_ERROR=0, UNVERIFIED_EXTERNAL=153.
• Review note: use file format, hosted/external source type, hashes, and blocked delivery status together; raw UNSCANNED alone is not a final safety verdict.
• Total downloadable version references counted: 15,093.

Reviewer Summary

• Review the live production snapshot first: safetensors share, legacy non-safetensors count, blocked delivery count, hosted-file hash coverage, and external-reference count are the primary signals.
• The raw UNSCANNED value is an internal processing state, not a delivery-risk verdict by itself.
• Files with INFECTED, POTENTIALLY_RISKY, or SCAN_ERROR statuses are treated as blocked for normal download delivery.
• External URL references that Arc en Ciel does not host locally are surfaced as UNVERIFIED_EXTERNAL source-verification labels instead of being called clean; this does not mean an infected hosted file was found.

Download Safety Policy

• Arc en Ciel prefers safetensors for model-weight delivery and exposes model-file hashes where available.
• Safetensors are the overwhelmingly dominant model-weight format in the current production inventory; legacy .ckpt, .pt, and .pth references are rare and receive stricter handling.
• Local uploads receive SHA-256 hashing, safetensors structural validation, and WebUI/AutoV3 hash storage where possible.
• Non-safetensors model uploads receive extra server-side checks, including ClamAV scanning and PyTorch safe-load validation for .pt files.
• Files with INFECTED, POTENTIALLY_RISKY, or SCAN_ERROR scan statuses are blocked from normal download delivery.
• External URL references or legacy metadata entries that cannot be fully verified locally are surfaced as UNVERIFIED_EXTERNAL instead of being labeled clean.

How To Read Scan Statuses

• CLEAN means the local file passed the configured scan/validation flow.
• UNSCANNED is a raw database status, not a final risk label by itself.
• For safetensors, UNSCANNED commonly means no heavyweight pickle or legacy execution-risk scan was required; hash and format metadata are tracked separately.
• UNVERIFIED_EXTERNAL marks external URL references or legacy metadata entries that Arc en Ciel cannot fully verify locally; it is a source-verification label, not a malware result.
• INFECTED, POTENTIALLY_RISKY, and SCAN_ERROR are treated as blocked statuses for normal download delivery.

Verification Links

These pages are linked as first-class crawl targets so reviewers do not need to infer model-safety claims from footer links alone.

• Technical Security Security controls, account protection, payment handling, and Link Key context.
• API docs Public OpenAPI documentation for supported download and metadata flows.
• Security.txt Machine-readable vulnerability disclosure contact and policy file.