transform
Initialization for core transform modules.
Modules:
| Name | Description |
|---|---|
base |
Base class for packaged Stained Glass Transforms. |
text |
Module for Stained Glass Transform for Text. |
vision |
Module for visualizing transformed images. |
Classes:
| Name | Description |
|---|---|
StainedGlassTransform |
Base class for all packaged Stained Glass Transforms. |
StainedGlassTransformForText |
A client for creating protected input embeddings from text using Stained Glass Transform. |
StainedGlassTransformForVision |
A client for producing protected image embeddings using Stained Glass Transforms. |
TransformedImageVisualizationManager |
Captures |
Bases: Module, ABC, ModelHubMixin, Generic[NoisyModelT, NoiseLayerT]
Base class for all packaged Stained Glass Transforms.
This class provides a common, simple interface for performing inference with pretrained Stained Glass Transforms, as well as managing/loading/saving to the Hugging Face Hub and to disk. It also provides utilities for inferring the minimal parameters of the client and for optimizing the loading and saving of the Stained Glass Transform by only loading and saving the necessary submodules.
Methods:
| Name | Description |
|---|---|
__getstate__ |
Return a json-serializable dictionary representing the state of the Stained Glass Transform. |
__init__ |
Initialize the Stained Glass Transform base client. |
__repr__ |
Safe string representation of the Stained Glass Transform module. |
__setstate__ |
Set the state of the Stained Glass Transform from a dictionary. |
forward |
Apply the Stained Glass Transform to an input. |
from_pretrained |
Load the client from the given path. |
generate_model_card |
Generate model card from instance model card metadata and class templates. |
infer_minimal_parameters |
Infer the minimal parameters of the client, excluding parameters not needed for the client. |
infer_minimal_submodules |
Infer the minimal set of submodules that are needed to apply the Stained Glass Transform. |
manual_seed |
Set seed to enable/disable reproducible behavior. |
override_runtime_config_during_load |
Override any attributes of the runtime config during loading of the Stained Glass Transform. |
push_to_hub |
Upload model checkpoint to the Hub. |
save_pretrained |
Save the client to the given path. |
state_dict |
Get the state dictionary of the client, excluding parameters not needed for the client. |
Attributes:
| Name | Type | Description |
|---|---|---|
noise_layer |
NoiseLayerT
|
Alias for the contained noise layer. |
noisy_model |
NoisyModelT
|
Alias for the contained |
parameter_names_relative_to_client |
list[str]
|
Get the minimal parameters of the client, excluding parameters not needed for the client. |
parameter_names_to_remove_relative_to_client |
list[str]
|
Get the parameters to ignore when saving the client, excluding parameters not needed for the client. |
stainedglass_core_version |
str | None
|
Get the version of Stained Glass Core used to save the Stained Glass Transform. |
property
¶
Alias for the contained NoisyModel.
Warning
A deserialized Stained Glass Transform may not include the complete base-model parameters. Calling the underlying noisy model referenced in this property can fail.
property
¶
Get the minimal parameters of the client, excluding parameters not needed for the client.
This property will first check if self.parameter_names_relative_to_base_model is set (this is usually set via the
parameter_names argument in the __init__ method). If it is, then it will return the parameters defined there, but with the
submodule names changed to be relative to the client.
If self.parameter_names_relative_to_base_model is not set, then it will return the parameters inferred by the
infer_minimal_parameters method's most recent call. This requires that the infer_minimal_parameters method has been called at
least once before accessing this property.
Note
self.parameter_names_relative_to_base_model, if specified, will override the inferred parameters in calculating this property.
Returns:
| Type | Description |
|---|---|
list[str]
|
The minimal parameters of the client, excluding parameters not needed for the client. |
Raises:
| Type | Description |
|---|---|
ValueError
|
If the minimal parameters of the base model have not been specified manually or inferred automatically. |
property
¶
Get the parameters to ignore when saving the client, excluding parameters not needed for the client.
This is effectively the set of all parameters in the client that are not in parameter_names_relative_to_client, considering
duplicate parameters shared by multiple modules (and thus can be accessed by multiple names).
Returns:
| Type | Description |
|---|---|
list[str]
|
The parameters to ignore when saving the client, excluding parameters not needed for the client. |
property
¶
stainedglass_core_version: str | None
Get the version of Stained Glass Core used to save the Stained Glass Transform.
Returns:
| Type | Description |
|---|---|
str | None
|
The version of Stained Glass Core used to save the Stained Glass Transform. |
abstractmethod
¶
Return a json-serializable dictionary representing the state of the Stained Glass Transform.
The output of this method should be able to be passed into __setstate__ to reconstruct the Stained Glass Transform.
__init__(
model: ~NoisyModelT,
noise_layer_type: type[~NoiseLayerT],
parameter_names: list[str] | None = None,
include_all_base_model_params: bool = False,
name: str | None = None,
model_card_data: ModelCardData | None = None,
) -> None
Initialize the Stained Glass Transform base client.
Warning
The constructor will automatically infer the minimal base model parameters required to calculate the base model's input
embeddings. This requires a forward pass and assumes the model has a static computational graph. If you want to manually specify
the minimal parameters, you can pass in the parameter_names argument. Note, however, that you must specify all of the
parameters necessary to calculate the base model's input embeddings.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
~NoisyModelT
|
The NoisyModel used to train Stained Glass Transform. |
required |
|
type[~NoiseLayerT]
|
The type of the noise layer used in the Stained Glass Transform. This is primarily used for type safety. |
required |
|
list[str] | None
|
Parameters of the base model to be saved and loaded during serialization and deserialization. This should be
the minimal list of parameters necessary to get the base model's input embeddings. If |
None
|
|
bool
|
Whether to include all base model parameters in the client. If |
False
|
|
str | None
|
The name of the StainedGlassTransform. This is used to identify the transform when saving and loading. |
None
|
|
ModelCardData | None
|
Optional model card data to associate with the Stained Glass Transform. Useful for providing metadata when
sharing the transform on the Hugging Face Hub. Follow the documentation on
Model Cards and
|
None
|
Safe string representation of the Stained Glass Transform module.
The Stained Glass Transform operates with None weight valued submodules
which are not needed for the SGT computation. Standard nn.Module.__repr__
calls extra_repr on each submodule, which may attempt to access weight
attributes and raise an AttributeError. This override temporarily patches
nn.Module.__repr__ to gracefully handle those cases for the duration of
the call.
Returns:
| Type | Description |
|---|---|
<class 'str'>
|
A string representation of the Stained Glass Transform module. |
abstractmethod
¶
Set the state of the Stained Glass Transform from a dictionary.
The input dictionary should be in the format produced by __getstate__.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
dict[str, Any]
|
A dictionary representing the state of the Stained Glass Transform. |
required |
|
Any
|
Additional keyword arguments that may be needed to set the state. |
required |
abstractmethod
¶
Apply the Stained Glass Transform to an input.
This method should be implemented by subclasses to define the forward pass of the Stained Glass Transform.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
Any
|
Positional arguments for the forward pass. |
required |
|
Any
|
Keyword arguments for the forward pass. |
required |
Returns:
| Type | Description |
|---|---|
typing.Any
|
The output of the forward pass. |
classmethod
¶
from_pretrained(
pretrained_model_name_or_path: str | Path,
map_location: device | str | None = None,
index_file_name: str | None = None,
dtype: str | dtype | None = None,
noise_layer_attention: (
Literal[
"sdpa",
"flash_attention_2",
"flex_attention",
"transformers_default",
"flash_attention_4",
]
| None
) = None,
third_party_model_path: (
str | PathLike[str] | None
) = None,
*,
force_download: bool = False,
resume_download: bool | None = None,
proxies: bool | dict[Any, Any] | None = None,
token: str | bool | None = None,
cache_dir: str | Path | None = None,
local_files_only: bool = False,
revision: str | None = None,
trust_remote_code: bool = False,
**model_kwargs: Any
) -> typing.Self
Load the client from the given path.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
str | Path
|
The path to load the client from. This can be a path to a |
required |
|
device | str | None
|
The location to map the client to. See torch.device for more information. |
None
|
|
str | None
|
The name of the index file to use within the zipfile. If None, the default index file name will be used. |
None
|
|
str | dtype | None
|
The dtype, either as a string or a |
None
|
|
Literal['sdpa', 'flash_attention_2', 'flex_attention', 'transformers_default', 'flash_attention_4'] | None
|
The attention type to use for the noise layer. If None, the default attention type will be used. |
None
|
|
str | PathLike[str] | None
|
The path or huggingface reference to a third-party model to load. This is useful when loading SGTs whose internal structure depends on transformers which are not importable directly through transformers, but are present on the Hugging Face Hub. |
None
|
|
bool
|
Whether to force the download of the client. If False, the client will be downloaded if it is not already present in the cache. |
False
|
|
bool | None
|
Unused. Required for compatibility with the Hugging Face Hub API. |
None
|
|
bool | dict[Any, Any] | None
|
Unused. Required for compatibility with the Hugging Face Hub API. |
None
|
|
str | bool | None
|
The token to use for authentication with the Hugging Face Hub API. |
None
|
|
str | Path | None
|
The directory to use for caching the client. If None, the default cache directory will be used. |
None
|
|
bool
|
Whether to only use local files and not attempt to download the client. If True, an error will be raised if the client is not present in the cache. |
False
|
|
str | None
|
The revision of the client to use. This can be a branch name, tag name, or commit hash. If None, the default revision will be used. |
None
|
|
bool
|
Whether to trust remote code when loading from HuggingFace Hub. |
False
|
|
Any
|
Unused. Required for compatibility with the Hugging Face Hub API. |
required |
Note
When using a third party model path, loading may fail with an error indicating that the provided model type does not match the
expected transformer model type. If you trust that the third-party model layout matches the serialized SGT, you can set
SGC_IGNORE_MODEL_TYPE_MISMATCH_ON_SGT_LOAD=true to disable this safety check during load.
Returns:
| Type | Description |
|---|---|
typing.Self
|
The loaded client. |
Raises:
| Type | Description |
|---|---|
ValueError
|
If any |
IsADirectoryError
|
If the specified path is a directory, but a .sgt file path is required. |
Generate model card from instance model card metadata and class templates.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
Any
|
Positional arguments to huggingface_hub.ModelCard.from_template. Unused (because all arguments are passed by keyword). |
required |
|
Any
|
Keyword arguments to the template_str passed to huggingface_hub.ModelCard.from_template. |
required |
Returns:
| Type | Description |
|---|---|
<class 'huggingface_hub.repocard.ModelCard'>
|
Generated ModelCard object. |
Changed in version v2.8.0: Automatically generated model card files now respect instance model card metadata.
Infer the minimal parameters of the client, excluding parameters not needed for the client.
This method will infer the minimal parameters of the client by tracing a forward pass through the model. This is useful when the minimal parameters are not known ahead of time.
Raises:
| Type | Description |
|---|---|
ValueError
|
If the minimal parameters of the client have been specified |
abstractmethod
¶
Infer the minimal set of submodules that are needed to apply the Stained Glass Transform.
This method should return a list of submodule names that are needed to apply the Stained Glass Transform. This is used to optimize the loading and saving of the Stained Glass Transform by only loading and saving the necessary submodules.
Returns:
| Type | Description |
|---|---|
list[str]
|
A list of submodule names that are needed to apply the Stained Glass Transform. |
manual_seed(
seed: int | None, rank_dependent: bool = True
) -> None
Set seed to enable/disable reproducible behavior.
Setting seed to None will disable reproducible behavior.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
int | None
|
Value to seed into the random number generator. |
required |
|
bool
|
Whether to add the distributed rank to the seed to ensure that each process samples different noise. |
True
|
abstractmethod
staticmethod
¶
override_runtime_config_during_load(
runtime_config: dict[str, Any], **kwargs: Any
) -> dict[str, typing.Any]
Override any attributes of the runtime config during loading of the Stained Glass Transform.
This is normally used to override add any backward compatibility fixes to the output of __getstate__ or for
embedding any additional kwargs into the config passed to __setstate__ during loading.
This is used during from_pretrained after loading the SGT config from file, but before passing it to
__setstate__ to construct the SGT.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
dict[str, Any]
|
The runtime config loaded from the SGT config file. |
required |
|
Any
|
Additional keyword arguments that may be needed to override the runtime config. |
required |
Returns:
| Type | Description |
|---|---|
dict[str, typing.Any]
|
The overridden runtime config to be passed to |
push_to_hub(repo_id: str, *, config: dict | DataclassInstance | None = None, commit_message: str = 'Upload using stainedglass_core.', private: bool | None = None, token: str | None = None, branch: str | None = None, create_pr: bool | None = None, allow_patterns: list[str] | str | None = None, ignore_patterns: list[str] | str | None = None, delete_patterns: list[str] | str | None = None, model_card_kwargs: dict[str, Any] | None = None) -> <class 'str'>
Upload model checkpoint to the Hub.
Warning
This method is currently not supported on StainedGlassTransform. Instead use save_pretrained with push_to_hub=True.
Use allow_patterns and ignore_patterns to precisely filter which files should be pushed to the hub. Use
delete_patterns to delete existing remote files in the same commit. See [upload_folder] reference for more
details.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
str
|
ID of the repository to push to (example: |
required |
|
dict | DataclassInstance | None
|
Model configuration specified as a key/value dictionary or a dataclass instance. |
None
|
|
str
|
Message to commit while pushing. |
'Upload using stainedglass_core.'
|
|
bool | None
|
Whether the repository created should be private.
If |
None
|
|
str | None
|
The token to use as HTTP bearer authorization for remote files. By default, it will use the token
cached when running |
None
|
|
str | None
|
The git branch on which to push the model. This defaults to |
None
|
|
bool | None
|
Whether or not to create a Pull Request from |
None
|
|
list[str] | str | None
|
If provided, only files matching at least one pattern are pushed. |
None
|
|
list[str] | str | None
|
If provided, files matching any of the patterns are not pushed. |
None
|
|
list[str] | str | None
|
If provided, remote files matching any of the patterns will be deleted from the repo. |
None
|
|
dict[str, Any] | None
|
Additional arguments passed to the model card template to customize the model card. |
None
|
Returns:
| Type | Description |
|---|---|
<class 'str'>
|
The url of the commit of your model in the given repository. |
Raises:
| Type | Description |
|---|---|
NotImplementedError
|
This method is not implemented. |
save_pretrained(
save_directory: str | Path,
*,
compression: int = 8,
push_to_hub: bool = False,
repo_id: str | None = None,
private: bool = True,
config: dict | DataclassInstance | None = None,
model_card_kwargs: dict[str, Any] | None = None,
**push_to_hub_kwargs: Any
) -> None
Save the client to the given path.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
str | Path
|
The path to save the client to. Although this is called |
required |
|
int
|
The compression method to use for the ZIP file. Defaults to zipfile.ZIP_DEFLATED, but this can cause very slow serialization times. If serialization times are a problem, use zipfile.ZIP_STORED instead. |
8
|
|
bool
|
Whether to push the client to the Hugging Face Hub. |
False
|
|
str | None
|
The repository ID to push the client to. This is required if |
None
|
|
bool
|
Whether to make the repository private. This is only used if |
True
|
|
dict | DataclassInstance | None
|
Unused. Required for compatibility with the Hugging Face Hub API. |
None
|
|
dict[str, Any] | None
|
The kwargs to pass to the model card generator. This is only used if |
None
|
|
Any
|
The kwargs to pass to the |
required |
Raises:
| Type | Description |
|---|---|
IsADirectoryError
|
If a directory is passed in. |
ValueError
|
If |
UserWarning
|
If |
compression
|
The compression method to use for the ZIP file. Defaults to zipfile.ZIP_DEFLATED, but this can cause very slow serialization times. If serialization times are a problem, use zipfile.ZIP_STORED instead. |
Examples:
Uploading a Stained Glass Transform zipfile to the Hugging Face Hub (note that this will also create a local copy of the SGT zipfile):
>>> from stainedglass_core.transform import text
>>> sgt = text.StainedGlassTransformForText.from_pretrained(
... "path/to/sgt_file.sgt"
... )
>>> sgt.save_pretrained(
... "new-sgt-zipfile.sgt",
... push_to_hub=True,
... repo_id="username/new-sgt-repo",
... )
Optionally, you can override any model card metadata before uploading to the Hub. This can be useful for specifying the base model and datasets used for training Stained Glass Transform. You can also specify additional metadata such as eval_results. See huggingface_hub.ModelCardData for more details on the available fields.
>>> sgt.model_card_data.base_model = (
... "meta-llama/Llama-3.1-8B-Instruct"
... )
>>> sgt.model_card_data.__dict__["base_model_relation"] = (
... "adapter"
... )
>>> sgt.model_card_data.datasets = ["Open-Orca/OpenOrca"]
>>> sgt.save_pretrained(
... "new-sgt-zipfile.sgt",
... push_to_hub=True,
... repo_id="username/new-sgt-repo",
... )
Changed in version v2.8.0: Added ability to push Stained Glass Transform to the Hugging Face Hub. BREAKING CHANGE: Argument `path` was renamed `save_directory` for compatibility with ModelHubMixin.save_pretrained
Changed in version v2.20.3: The model safetensors filename was changed for better compatibility with the Hugging Face Hub. This has no practical effect on saving or loading.
Get the state dictionary of the client, excluding parameters not needed for the client.
The parameters considered necessary for the client are those passed into the constructor as parameter_names.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
str
|
A prefix added to parameter and buffer names to compose the keys in state_dict. |
''
|
|
bool
|
By default the |
False
|
Returns:
| Type | Description |
|---|---|
dict[str, typing.Any]
|
The state dictionary of the client, excluding parameters not needed for the client. |
Bases: StainedGlassTransform[NoiseMaskedNoisyTransformerModel[CausalModelT, ..., TransformerCloak[TransformerT]], TransformerCloak[TransformerT]]
A client for creating protected input embeddings from text using Stained Glass Transform.
Note
Instances of this class simply wrap the noisy model and tokenizer wrapper passed into their constructor. This means that changes
made to the noisy model or tokenizer wrapper after the client's creation will affect the client's behavior and vice versa. If you
need an independent copy of the client, you should either serialize/deserialize it or use copy.deepcopy.
Warning
Inferring the minimal parameters of the client requires a forward pass through the model. This assumes that the model has a static
computational graph, i.e. the forward pass will require the same parameters for any valid input. This inference is done implicitly
and automatically at initialization on an arbitrary input. To infer the minimal parameters using a particular input, see the
infer_minimal_parameters method. To override
the inferred parameters with parameters of your choosing, you can pass in the parameter_names argument to the constructor. Note,
however, that you must specify all of the parameters necessary to calculate the base model's input embeddings.
Warning
Calls to forward or __call__ are not guaranteed to be thread-safe or reentrant.
Attributes:
| Name | Type | Description |
|---|---|---|
truncated_module |
The truncated module that wraps the noisy model. This module acts like the noisy model, but its forward method
will return early as soon as the noise layer is applied, i.e. its output will be the transformed input embeddings, without
calling any unnecessary layers of the noisy/base model. Generally, there is little need for users to interact with this
attribute directly. If you need to access the noisy model, you can do so via the |
|
tokenizer |
The tokenizer used with the model |
|
parameter_names_relative_to_base_model |
Parameters of the base model to be saved and loaded during serialization and
deserialization. This should be the minimal list of parameters necessary to get the base model's input embeddings. Each of
these parameter names should be relative to the base model. I.e. if the base model's input embedding submodule can be accessed
by |
|
name |
The name of the StainedGlassTransformForText. This is used to identify the transform when saving and loading. |
|
model_card_data |
Optional model card data to associate with the Stained Glass Transform. Useful for providing metadata when sharing
the transform on the Hugging Face Hub. Follow the documentation on
Model Cards and
|
Examples:
Preparing the Model: This example will run on the CPU, so we will use float32 as flash attention and bfloat16 are not universally supported on the CPU.
>>> import transformers
>>> from stainedglass_core.huggingface.tokenization_utils import universal
>>> from stainedglass_core.model import noisy_transformer_masking_model
>>> from stainedglass_core.noise_layer import transformer_cloak
>>> from stainedglass_core.utils import huggingface as sg_huggingface_utils
>>>
>>> BASE_MODEL_PATH = "tests/resources/tokenizers/mini-Meta-Llama-3-8B"
>>> base_model_config = transformers.AutoConfig.from_pretrained(BASE_MODEL_PATH)
>>> base_model = transformers.AutoModelForCausalLM.from_config(base_model_config)
>>> embedding_size = base_model.config.hidden_size
>>> noisy_model = noisy_transformer_masking_model.NoiseMaskedNoisyTransformerModel(
... noise_layer_class=transformer_cloak.TransformerCloak,
... base_model=base_model,
... transformer_type=type(
... sg_huggingface_utils.get_base_model_backbone(base_model)
... ),
... scale=(0.00000001, 1.0),
... config=BASE_MODEL_PATH,
... target_layer="model.embed_tokens",
... directly_learn_stds=True,
... rho_init=0,
... noise_layer_dtype=torch.float32,
... )
>>> tokenizer = transformers.AutoTokenizer.from_pretrained(BASE_MODEL_PATH)
StainedGlassTransformForText can (optionally) use explicitly specified parameters needed to get the base model's input embeddings. See below for how to automatically infer the minimal parameters.
>>> input_embedding_module = base_model.get_input_embeddings()
>>> input_embedding_parameters_ids = [
... id(p) for p in input_embedding_module.parameters()
... ]
>>> embedding_parameters_names = [
... name
... for name, p in base_model.named_parameters()
... if id(p) in input_embedding_parameters_ids
... ]
Creating the Stained Glass Transform:
>>> client = StainedGlassTransformForText(
... model=noisy_model,
... tokenizer=tokenizer,
... parameter_names=embedding_parameters_names,
... name="example_transform",
... )
Inference with the Client:
>>> transformed_input_embeddings = client(
... [
... {
... "role": "system",
... "content": "You are a helpful assistant.",
... },
... {
... "role": "user",
... "content": "Write me a poem.",
... },
... ]
... )
>>> transformed_input_embeddings
tensor(...)
Inference with the Client using tokens (ones used as a placeholder):
>>> input_ids = torch.ones(1, 2, dtype=torch.long)
>>> noise_mask = torch.ones(1, 2, 1, dtype=torch.bool)
>>> transformed_input_embeddings = client(input_ids, noise_mask)
>>> transformed_input_embeddings
tensor(...)
Saving the client:
>>> import tempfile
>>> temporary_file = tempfile.NamedTemporaryFile(suffix=".sgt")
>>> FILE_PATH = temporary_file.name
>>> client.save_pretrained(FILE_PATH)
Loading the client:
>>> loaded_client = StainedGlassTransformForText.from_pretrained(FILE_PATH)
>>> transformed_input_embeddings = loaded_client(
... [
... {
... "role": "system",
... "content": "You are a helpful assistant.",
... },
... {
... "role": "user",
... "content": "Write me a poem.",
... },
... ]
... )
>>> transformed_input_embeddings
tensor(...)
Loading the client from the Hugging Face Hub:
>>> hub_client = StainedGlassTransformForText.from_pretrained(
... "<Model Provider>/<SGT Name>"
... )
>>> transformed_input_embeddings = hub_client(
... [
... {
... "role": "system",
... "content": "You are a helpful assistant.",
... },
... {
... "role": "user",
... "content": "Write me a poem.",
... },
... ]
... )
>>> transformed_input_embeddings
tensor(...)
Minimal parameters are automatically inferred if the constructor is called with parameter_names=None.
>>> client_inferred = StainedGlassTransformForText(
... model=noisy_model,
... tokenizer=tokenizer,
... parameter_names=None,
... name="example_transform",
... )
>>> client_inferred.parameter_names_relative_to_client
[...]
>>> client_inferred.save_pretrained(FILE_PATH)
Returning base64-encoded embeddings (useful for sending to vLLM):
>>> b64_string = client.forward_b64(
... [
... {"role": "system", "content": "You are a helpful assistant."},
... {"role": "user", "content": "Tell me a joke."},
... ]
... )
>>> isinstance(b64_string, str)
True
>>> import torch, io, pybase64
>>> decoded_tensor = torch.load(io.BytesIO(pybase64.b64decode(b64_string)))
>>> isinstance(decoded_tensor, torch.Tensor)
True
Changed in version v1.12.0: The `NoiseTokenizer` now has a state that can be saved and loaded, which is used to preserve the chat template and other settings.
Changed in version v2.8.0: Saving and loading from the Hugging Face Hub has been added.
Changed in version v2.8.0: Pairing an SGT with a Hugging Face Hub ModelCard is now supported. This is useful for providing metadata when sharing the transform on the Hub, such as Base Model, training dataset, and evaluation metrics. Use the `model_card_data` argument when creating the SGT instance.
Methods:
| Name | Description |
|---|---|
__init__ |
Initialize the Stained Glass Transform text client. |
__repr__ |
Safe string representation of the Stained Glass Transform module. |
__setstate__ |
Deserialize the Stained Glass Transform for Text. |
forward |
Create the protected input embeddings for the given text. |
forward_b64 |
Create protected input embeddings for the given text and return them base64-encoded using pybase64. |
from_pretrained |
Load the client from the given path. |
generate_model_card |
Generate model card from instance model card metadata and class templates. |
infer_minimal_parameters |
Infer the minimal parameters of the client, excluding parameters not needed for the client. |
infer_minimal_submodules |
Infer the minimal set of submodules that are needed to apply the Stained Glass Transform. |
manual_seed |
Set seed to enable/disable reproducible behavior. |
override_runtime_config_during_load |
Override any attributes of the runtime config during loading of the Stained Glass Transform. |
push_to_hub |
Upload model checkpoint to the Hub. |
save_pretrained |
Save the client to the given path. |
state_dict |
Get the state dictionary of the client, excluding parameters not needed for the client. |
property
¶
Alias for the contained NoisyModel.
Warning
A deserialized Stained Glass Transform may not include the complete base-model parameters. Calling the underlying noisy model referenced in this property can fail.
property
¶
Get the minimal parameters of the client, excluding parameters not needed for the client.
This property will first check if self.parameter_names_relative_to_base_model is set (this is usually set via the
parameter_names argument in the __init__ method). If it is, then it will return the parameters defined there, but with the
submodule names changed to be relative to the client.
If self.parameter_names_relative_to_base_model is not set, then it will return the parameters inferred by the
infer_minimal_parameters method's most recent call. This requires that the infer_minimal_parameters method has been called at
least once before accessing this property.
Note
self.parameter_names_relative_to_base_model, if specified, will override the inferred parameters in calculating this property.
Returns:
| Type | Description |
|---|---|
list[str]
|
The minimal parameters of the client, excluding parameters not needed for the client. |
Raises:
| Type | Description |
|---|---|
ValueError
|
If the minimal parameters of the base model have not been specified manually or inferred automatically. |
property
¶
Get the parameters to ignore when saving the client, excluding parameters not needed for the client.
This is effectively the set of all parameters in the client that are not in parameter_names_relative_to_client, considering
duplicate parameters shared by multiple modules (and thus can be accessed by multiple names).
Returns:
| Type | Description |
|---|---|
list[str]
|
The parameters to ignore when saving the client, excluding parameters not needed for the client. |
property
¶
stainedglass_core_version: str | None
Get the version of Stained Glass Core used to save the Stained Glass Transform.
Returns:
| Type | Description |
|---|---|
str | None
|
The version of Stained Glass Core used to save the Stained Glass Transform. |
__init__(
model: NoiseMaskedNoisyTransformerModel[
Any, ..., TransformerCloak[Any]
],
tokenizer: (
PreTrainedTokenizerBase
| PythonBackend
| TokenizersBackend
),
parameter_names: list[str] | None = None,
include_all_base_model_params: bool = False,
name: str | None = None,
chat_template: str | None = None,
transform_all_tokens: bool = False,
transform_tools: bool = False,
model_card_data: ModelCardData | None = None,
) -> None
Initialize the Stained Glass Transform text client.
Warning
The constructor will automatically infer the minimal base model parameters required to calculate the base model's input
embeddings. This requires a forward pass and assumes the model has a static computational graph. If you want to manually specify
the minimal parameters, you can pass in the parameter_names argument. Note, however, that you must specify all of the
parameters necessary to calculate the base model's input embeddings.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
NoiseMaskedNoisyTransformerModel[Any, ..., TransformerCloak[Any]]
|
The NoisyModel used to train Stained Glass Transform. |
required |
|
PreTrainedTokenizerBase | PythonBackend | TokenizersBackend
|
The tokenizer to use with the model. |
required |
|
list[str] | None
|
Parameters of the base model to be saved and loaded during serialization and deserialization. This should be
the minimal list of parameters necessary to get the base model's input embeddings. If |
None
|
|
bool
|
Whether to include all base model parameters in the client. If |
False
|
|
str | None
|
The name of the StainedGlassTransformForText. This is used to identify the transform when saving and loading. |
None
|
|
str | None
|
A Jinja template to use for this conversion. It is usually not necessary to pass anything to this argument, as the model's template will be used by default. |
None
|
|
bool
|
Whether to also apply Stained Glass Transform to special tokens. |
False
|
|
bool
|
Whether to transform the tools. |
False
|
|
ModelCardData | None
|
Optional model card data to associate with the Stained Glass Transform. Useful for providing metadata when
sharing the transform on the Hugging Face Hub. Follow the documentation on
Model Cards and
|
None
|
Changed in version v2.8.0: Pairing an SGT with a Hugging Face Hub ModelCard is now supported. This is useful for providing metadata when sharing the transform on the Hub, such as Base Model, training dataset, and evaluation metrics. Use the `model_card_data` argument when creating the SGT instance.
Safe string representation of the Stained Glass Transform module.
The Stained Glass Transform operates with None weight valued submodules
which are not needed for the SGT computation. Standard nn.Module.__repr__
calls extra_repr on each submodule, which may attempt to access weight
attributes and raise an AttributeError. This override temporarily patches
nn.Module.__repr__ to gracefully handle those cases for the duration of
the call.
Returns:
| Type | Description |
|---|---|
<class 'str'>
|
A string representation of the Stained Glass Transform module. |
__setstate__(
state: dict[str, Any],
trust_remote_code: bool = False,
third_party_model_path: (
str | PathLike[str] | None
) = None,
**kwargs: Any
) -> None
Deserialize the Stained Glass Transform for Text.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
dict[str, Any]
|
The serialized state. |
required |
|
bool
|
Whether to trust remote code when loading from the Hugging Face Hub. |
False
|
|
str | PathLike[str] | None
|
The path or huggingface reference to a third-party model to load. This is useful when loading SGTs whose internal structure depends on transformers which are not importable directly through transformers, but are present on the Hugging Face Hub. |
None
|
|
Any
|
Unused. This is to allow for compatibility with the parent class which can pass in kwargs to its children. |
required |
Raises:
| Type | Description |
|---|---|
ValueError
|
If any unexpected |
Create the protected input embeddings for the given text.
Note
Either the args/kwargs to NoiseTokenizer.apply_chat_template or the input_ids and noise_mask tensors can be provided. If both are
provided, the input_ids and noise_mask tensors will be used and the args to NoiseTokenizer.apply_chat_template will be
ignored.
Note
When not using arguments to NoiseTokenizer.apply_chat_template, both input_ids and noise_mask must be provided, and in
this case are the only two allowed arguments.
Note
By default, we assume this is being used for generation, so we add the generation prompt to the input. If you want don't
want to add the generation prompt, you can set add_generation_prompt to False in the apply_chat_template_kwargs.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
Any
|
The args to |
required |
|
Any
|
The kwargs to |
required |
Returns:
| Type | Description |
|---|---|
torch.Tensor
|
The embeddings protected by Stained Glass Transform. |
Raises:
| Type | Description |
|---|---|
ValueError
|
If one of, but not both of, input_ids and noise_mask are not provided. |
Changed in version v2.15.0: The Stained Glass Transformer for Text accepts `input_ids` and `noise_mask` as positional or keyword arguments to its call/forward method in addition to its existing chat conversation interface. These two kinds of arguments cannot be used simultaneously.
Create protected input embeddings for the given text and return them base64-encoded using pybase64.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
Any
|
Positional arguments for |
required |
|
Any
|
Keyword arguments for |
required |
Returns:
| Type | Description |
|---|---|
str
|
A base64-encoded string representation of the protected input embeddings. |
Added in version SGT_B64_FORWARD_METHOD.
classmethod
¶
from_pretrained(
pretrained_model_name_or_path: str | Path,
map_location: device | str | None = None,
index_file_name: str | None = None,
dtype: str | dtype | None = None,
noise_layer_attention: (
Literal[
"sdpa",
"flash_attention_2",
"flex_attention",
"transformers_default",
"flash_attention_4",
]
| None
) = None,
third_party_model_path: (
str | PathLike[str] | None
) = None,
*,
force_download: bool = False,
resume_download: bool | None = None,
proxies: bool | dict[Any, Any] | None = None,
token: str | bool | None = None,
cache_dir: str | Path | None = None,
local_files_only: bool = False,
revision: str | None = None,
trust_remote_code: bool = False,
**model_kwargs: Any
) -> typing.Self
Load the client from the given path.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
str | Path
|
The path to load the client from. This can be a path to a |
required |
|
device | str | None
|
The location to map the client to. See torch.device for more information. |
None
|
|
str | None
|
The name of the index file to use within the zipfile. If None, the default index file name will be used. |
None
|
|
str | dtype | None
|
The dtype, either as a string or a |
None
|
|
Literal['sdpa', 'flash_attention_2', 'flex_attention', 'transformers_default', 'flash_attention_4'] | None
|
The attention type to use for the noise layer. If None, the default attention type will be used. |
None
|
|
str | PathLike[str] | None
|
The path or huggingface reference to a third-party model to load. This is useful when loading SGTs whose internal structure depends on transformers which are not importable directly through transformers, but are present on the Hugging Face Hub. |
None
|
|
bool
|
Whether to force the download of the client. If False, the client will be downloaded if it is not already present in the cache. |
False
|
|
bool | None
|
Unused. Required for compatibility with the Hugging Face Hub API. |
None
|
|
bool | dict[Any, Any] | None
|
Unused. Required for compatibility with the Hugging Face Hub API. |
None
|
|
str | bool | None
|
The token to use for authentication with the Hugging Face Hub API. |
None
|
|
str | Path | None
|
The directory to use for caching the client. If None, the default cache directory will be used. |
None
|
|
bool
|
Whether to only use local files and not attempt to download the client. If True, an error will be raised if the client is not present in the cache. |
False
|
|
str | None
|
The revision of the client to use. This can be a branch name, tag name, or commit hash. If None, the default revision will be used. |
None
|
|
bool
|
Whether to trust remote code when loading from HuggingFace Hub. |
False
|
|
Any
|
Unused. Required for compatibility with the Hugging Face Hub API. |
required |
Note
When using a third party model path, loading may fail with an error indicating that the provided model type does not match the
expected transformer model type. If you trust that the third-party model layout matches the serialized SGT, you can set
SGC_IGNORE_MODEL_TYPE_MISMATCH_ON_SGT_LOAD=true to disable this safety check during load.
Returns:
| Type | Description |
|---|---|
typing.Self
|
The loaded client. |
Raises:
| Type | Description |
|---|---|
ValueError
|
If any |
IsADirectoryError
|
If the specified path is a directory, but a .sgt file path is required. |
Generate model card from instance model card metadata and class templates.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
Any
|
Positional arguments to huggingface_hub.ModelCard.from_template. Unused (because all arguments are passed by keyword). |
required |
|
Any
|
Keyword arguments to the template_str passed to huggingface_hub.ModelCard.from_template. |
required |
Returns:
| Type | Description |
|---|---|
<class 'huggingface_hub.repocard.ModelCard'>
|
Generated ModelCard object. |
Changed in version v2.8.0: Automatically generated model card files now respect instance model card metadata.
Infer the minimal parameters of the client, excluding parameters not needed for the client.
This method will infer the minimal parameters of the client by tracing a forward pass through the model. This is useful when the minimal parameters are not known ahead of time.
Raises:
| Type | Description |
|---|---|
ValueError
|
If the minimal parameters of the client have been specified |
Infer the minimal set of submodules that are needed to apply the Stained Glass Transform.
This method should return a list of submodule names that are needed to apply the Stained Glass Transform. This is used to optimize the loading and saving of the Stained Glass Transform by only loading and saving the necessary submodules.
Returns:
| Type | Description |
|---|---|
list[str]
|
A list of submodule names that are needed to apply the Stained Glass Transform. |
manual_seed(
seed: int | None, rank_dependent: bool = True
) -> None
Set seed to enable/disable reproducible behavior.
Setting seed to None will disable reproducible behavior.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
int | None
|
Value to seed into the random number generator. |
required |
|
bool
|
Whether to add the distributed rank to the seed to ensure that each process samples different noise. |
True
|
staticmethod
¶
override_runtime_config_during_load(
runtime_config: Mapping[str, Any],
noise_layer_attention: SupportedAttentionImplementationsType = None,
dtype: str | dtype | None = None,
**kwargs: Any
) -> dict[str, Any]
Override any attributes of the runtime config during loading of the Stained Glass Transform.
This is normally used to override add any backward compatibility fixes to the output of __getstate__ or for
embedding any additional kwargs into the config passed to __setstate__ during loading.
This is used during from_pretrained after loading the SGT config from file, but before passing it to
__setstate__ to construct the SGT.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
Mapping[str, Any]
|
The runtime config loaded from the SGT config file. |
required |
|
SupportedAttentionImplementationsType
|
Optional attention implementation for the noise layer. |
None
|
|
str | dtype | None
|
Optional data type for the noise layer. |
None
|
|
Any
|
Unused. Additional keyword arguments that may be needed to override the runtime config. |
required |
Returns:
| Type | Description |
|---|---|
dict[str, Any]
|
The overridden runtime config to be passed to |
Raises:
| Type | Description |
|---|---|
ValueError
|
If any unexpected |
push_to_hub(repo_id: str, *, config: dict | DataclassInstance | None = None, commit_message: str = 'Upload using stainedglass_core.', private: bool | None = None, token: str | None = None, branch: str | None = None, create_pr: bool | None = None, allow_patterns: list[str] | str | None = None, ignore_patterns: list[str] | str | None = None, delete_patterns: list[str] | str | None = None, model_card_kwargs: dict[str, Any] | None = None) -> <class 'str'>
Upload model checkpoint to the Hub.
Warning
This method is currently not supported on StainedGlassTransform. Instead use save_pretrained with push_to_hub=True.
Use allow_patterns and ignore_patterns to precisely filter which files should be pushed to the hub. Use
delete_patterns to delete existing remote files in the same commit. See [upload_folder] reference for more
details.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
str
|
ID of the repository to push to (example: |
required |
|
dict | DataclassInstance | None
|
Model configuration specified as a key/value dictionary or a dataclass instance. |
None
|
|
str
|
Message to commit while pushing. |
'Upload using stainedglass_core.'
|
|
bool | None
|
Whether the repository created should be private.
If |
None
|
|
str | None
|
The token to use as HTTP bearer authorization for remote files. By default, it will use the token
cached when running |
None
|
|
str | None
|
The git branch on which to push the model. This defaults to |
None
|
|
bool | None
|
Whether or not to create a Pull Request from |
None
|
|
list[str] | str | None
|
If provided, only files matching at least one pattern are pushed. |
None
|
|
list[str] | str | None
|
If provided, files matching any of the patterns are not pushed. |
None
|
|
list[str] | str | None
|
If provided, remote files matching any of the patterns will be deleted from the repo. |
None
|
|
dict[str, Any] | None
|
Additional arguments passed to the model card template to customize the model card. |
None
|
Returns:
| Type | Description |
|---|---|
<class 'str'>
|
The url of the commit of your model in the given repository. |
Raises:
| Type | Description |
|---|---|
NotImplementedError
|
This method is not implemented. |
save_pretrained(
save_directory: str | Path,
*,
compression: int = 8,
push_to_hub: bool = False,
repo_id: str | None = None,
private: bool = True,
config: dict | DataclassInstance | None = None,
model_card_kwargs: dict[str, Any] | None = None,
**push_to_hub_kwargs: Any
) -> None
Save the client to the given path.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
str | Path
|
The path to save the client to. Although this is called |
required |
|
int
|
The compression method to use for the ZIP file. Defaults to zipfile.ZIP_DEFLATED, but this can cause very slow serialization times. If serialization times are a problem, use zipfile.ZIP_STORED instead. |
8
|
|
bool
|
Whether to push the client to the Hugging Face Hub. |
False
|
|
str | None
|
The repository ID to push the client to. This is required if |
None
|
|
bool
|
Whether to make the repository private. This is only used if |
True
|
|
dict | DataclassInstance | None
|
Unused. Required for compatibility with the Hugging Face Hub API. |
None
|
|
dict[str, Any] | None
|
The kwargs to pass to the model card generator. This is only used if |
None
|
|
Any
|
The kwargs to pass to the |
required |
Raises:
| Type | Description |
|---|---|
IsADirectoryError
|
If a directory is passed in. |
ValueError
|
If |
UserWarning
|
If |
compression
|
The compression method to use for the ZIP file. Defaults to zipfile.ZIP_DEFLATED, but this can cause very slow serialization times. If serialization times are a problem, use zipfile.ZIP_STORED instead. |
Examples:
Uploading a Stained Glass Transform zipfile to the Hugging Face Hub (note that this will also create a local copy of the SGT zipfile):
>>> from stainedglass_core.transform import text
>>> sgt = text.StainedGlassTransformForText.from_pretrained(
... "path/to/sgt_file.sgt"
... )
>>> sgt.save_pretrained(
... "new-sgt-zipfile.sgt",
... push_to_hub=True,
... repo_id="username/new-sgt-repo",
... )
Optionally, you can override any model card metadata before uploading to the Hub. This can be useful for specifying the base model and datasets used for training Stained Glass Transform. You can also specify additional metadata such as eval_results. See huggingface_hub.ModelCardData for more details on the available fields.
>>> sgt.model_card_data.base_model = (
... "meta-llama/Llama-3.1-8B-Instruct"
... )
>>> sgt.model_card_data.__dict__["base_model_relation"] = (
... "adapter"
... )
>>> sgt.model_card_data.datasets = ["Open-Orca/OpenOrca"]
>>> sgt.save_pretrained(
... "new-sgt-zipfile.sgt",
... push_to_hub=True,
... repo_id="username/new-sgt-repo",
... )
Changed in version v2.8.0: Added ability to push Stained Glass Transform to the Hugging Face Hub. BREAKING CHANGE: Argument `path` was renamed `save_directory` for compatibility with ModelHubMixin.save_pretrained
Changed in version v2.20.3: The model safetensors filename was changed for better compatibility with the Hugging Face Hub. This has no practical effect on saving or loading.
Get the state dictionary of the client, excluding parameters not needed for the client.
The parameters considered necessary for the client are those passed into the constructor as parameter_names.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
str
|
A prefix added to parameter and buffer names to compose the keys in state_dict. |
''
|
|
bool
|
By default the |
False
|
Returns:
| Type | Description |
|---|---|
dict[str, typing.Any]
|
The state dictionary of the client, excluding parameters not needed for the client. |
Bases: StainedGlassTransform[NoisyModelT, NoiseLayerT]
A client for producing protected image embeddings using Stained Glass Transforms.
This class can be used to package and distribute Stained Glass Transforms designed for vision models.
Because it inherits from StainedGlassTransform,
it can also use any functionality provided by that base class, including serialization/deserialization, saving/loading from the
Hugging Face Hub, etc...
Note
Instances of this class simply wrap the noisy model passed into their constructor. This means that changes made to the noisy model
after the client's creation will affect the client's behavior and vice versa. If you need an independent copy of the client, you
should either serialize/deserialize it or use copy.deepcopy.
Warning
Inferring the minimal parameters of the client requires a forward pass through the model. This assumes that the model has a static
computational graph, i.e. the forward pass will require the same parameters for any valid input. This inference is done implicitly
and automatically at initialization on an arbitrary input. To override the inferred parameters with parameters of your choosing,
you can pass in the parameter_names argument to the constructor. Note, however, that you must specify all of the parameters
necessary to calculate the protected input to the base model.
Warning
Calls to forward or __call__ are not guaranteed to be thread-safe or reentrant.
Attributes:
| Name | Type | Description |
|---|---|---|
truncated_module |
The truncated module that wraps the noisy model. This module acts like the noisy model, but its forward method
will return early as soon as the noise layer is applied, i.e. its output will be the transformed input embeddings, without
calling any unnecessary layers of the noisy/base model. Generally, there is little need for users to interact with this
attribute directly. If you need to access the noisy model, you can do so via the |
|
parameter_names_relative_to_base_model |
Parameters of the base model to be saved and loaded during serialization and
deserialization. This should be the minimal list of parameters necessary to get the base model's input embeddings. Each of
these parameter names should be relative to the base model. I.e. if the base model's input embedding submodule can be accessed
by |
|
name |
The name of the StainedGlassTransformForVision. This is used to identify the transform when saving and loading. |
|
model_card_data |
Optional model card data to associate with the Stained Glass Transform. Useful for providing metadata when sharing
the transform on the Hugging Face Hub. Follow the documentation on
Model Cards and
|
|
input_info |
Optional information about the input tensor for the transform, which can be used to infer the minimal submodules
necessary for the forward pass. This is required if neither |
|
noise_layer_type |
The type of noise layer used in the transform. This is used for serialization and deserialization to ensure that the noise layer is correctly reconstructed when loading the transform. This should be the actual type of the noise layer, not a string or the name of the type. |
Examples:
Preparing the Model. It is important that the base model passed into the Noisy Model has implemented getstate and setstate
methods that save/load a JSON-serializable dictionary of the state. This does not need to include
the model's parameters/buffers since, those are handled by the SGT's state_dict and load_state_dict methods, but it should include
any information necessary to reconstruct the architecture of the model prior to loading the state dict.
>>> import torch
>>> from torch import nn
>>> class BaseModel(nn.Module):
... def __init__(self, num_classes: int = 10) -> None:
... super().__init__()
... self.conv1 = nn.Conv2d(3, 16, kernel_size=3, padding=1)
... self.relu = nn.ReLU()
... self.conv2 = nn.Conv2d(16, 32, kernel_size=3, padding=1)
... self.flatten = nn.Flatten()
... self.fc = nn.Linear(32 * 32 * 32, num_classes)
...
... def forward(self, x):
... x = self.conv1(x)
... x = self.relu(x)
... x = self.conv2(x)
... x = self.flatten(x)
... x = self.fc(x)
... return x
...
... def __getstate__(self) -> dict:
... return {
... "num_classes": self.fc.out_features,
... }
...
... def __setstate__(self, state: dict) -> None:
... self.__init__(num_classes=state["num_classes"])
>>> import stainedglass_core.transform.vision as vision_module
>>> BaseModel.__module__ = vision_module.__name__
>>> setattr(vision_module, "BaseModel", BaseModel)
>>> base_model = BaseModel()
>>> from stainedglass_core import noise_layer as sg_noise_layer
>>> from stainedglass_core import model as sg_model
>>> noisy_model = sg_model.NoisyModel(
... noise_layer_class=sg_noise_layer.CloakNoiseLayer,
... base_model=base_model,
... target_parameter="x",
... )
Creating the StainedGlassTransformForVision
>>> from stainedglass_core.transform.vision import StainedGlassTransformForVision
>>> sgt_vision = StainedGlassTransformForVision(
... model=noisy_model,
... input_info=None, # Not needed since target_parameter is the input
... noise_layer_type=sg_noise_layer.CloakNoiseLayer,
... name="sample-sgt-for-vision",
... )
Inference with the StainedGlassTransformForVision
>>> random_image = torch.rand(
... (1, 3, 64, 64)
... ) # A random image tensor with shape (batch_size, color_channels, height, width)
>>> transformed_image = sgt_vision(
... random_image
... ) # Pass the image through the transform
>>> transformed_image
tensor(...)
Saving the client:
>>> import tempfile
>>> temp_file = tempfile.NamedTemporaryFile(suffix=".sgt")
>>> FILE_PATH = temp_file.name
>>> sgt_vision.save_pretrained(FILE_PATH)
Loading the client:
>>> loaded_sgt_vision = StainedGlassTransformForVision.from_pretrained(FILE_PATH)
>>> transformed_image = loaded_sgt_vision(
... random_image
... ) # Pass the image through the loaded client
>>> transformed_image
tensor(...)
If no part of the base model is required for the inference pass of the Stained Glass Transform (i.e. the noise layer targets
the input and does not depend on the base model), then it can be useful to not save the base model's class information. This might
help avoid a situation where the base model's class cannot be found during loading (for example if the base model's class is
defined in a third party library that your users do not need to depend on). It also avoids the need to define custom
__getstate__ and __setstate__ methods on the base model. PlaceholderBaseModel can be a helpful tool for this.
>>> from stainedglass_core.transform import base
>>> import copy
>>> no_base_model_noisy_model = copy.copy(noisy_model)
>>> no_base_model_noisy_model.base_model = base.PlaceholderBaseModel()
>>> sgt_vision_no_base_model = StainedGlassTransformForVision(
... model=no_base_model_noisy_model,
... input_info=None, # Not needed since target_parameter is the input
... noise_layer_type=sg_noise_layer.CloakNoiseLayer,
... name="sgt-for-vision-without-base-model",
... )
>>> transformed_image = sgt_vision_no_base_model(
... random_image
... ) # Pass the image through the transform without a base model
>>> transformed_image
tensor(...)
Added in version v3.24.0.
Methods:
| Name | Description |
|---|---|
__init__ |
Initialize the Stained Glass Transform for Vision. |
__repr__ |
Safe string representation of the Stained Glass Transform module. |
__setstate__ |
Deserialize the Stained Glass Transform for Vision. |
forward |
Run the forward pass of the Stained Glass Transform for Vision. |
from_pretrained |
Load the client from the given path. |
generate_model_card |
Generate model card from instance model card metadata and class templates. |
infer_minimal_parameters |
Infer the minimal parameters of the client, excluding parameters not needed for the client. |
infer_minimal_submodules |
Infer the minimal submodules necessary for the forward pass of the Stained Glass Transform for Vision. |
manual_seed |
Set seed to enable/disable reproducible behavior. |
override_runtime_config_during_load |
Override the runtime configuration during the loading of the Stained Glass Transform for Vision. |
push_to_hub |
Upload model checkpoint to the Hub. |
save_pretrained |
Save the client to the given path. |
state_dict |
Get the state dictionary of the client, excluding parameters not needed for the client. |
property
¶
is_input_targeted_sgt: bool
Whether this Stained Glass Transform's noise layer targets the input of the model.
If True, then no part of the base model is involved in the forward pass of the transform, and therefore inferring the minimal submodules can be bypassed.
property
¶
Alias for the contained NoisyModel.
Warning
A deserialized Stained Glass Transform may not include the complete base-model parameters. Calling the underlying noisy model referenced in this property can fail.
property
¶
Get the minimal parameters of the client, excluding parameters not needed for the client.
This property will first check if self.parameter_names_relative_to_base_model is set (this is usually set via the
parameter_names argument in the __init__ method). If it is, then it will return the parameters defined there, but with the
submodule names changed to be relative to the client.
If self.parameter_names_relative_to_base_model is not set, then it will return the parameters inferred by the
infer_minimal_parameters method's most recent call. This requires that the infer_minimal_parameters method has been called at
least once before accessing this property.
Note
self.parameter_names_relative_to_base_model, if specified, will override the inferred parameters in calculating this property.
Returns:
| Type | Description |
|---|---|
list[str]
|
The minimal parameters of the client, excluding parameters not needed for the client. |
Raises:
| Type | Description |
|---|---|
ValueError
|
If the minimal parameters of the base model have not been specified manually or inferred automatically. |
property
¶
Get the parameters to ignore when saving the client, excluding parameters not needed for the client.
This is effectively the set of all parameters in the client that are not in parameter_names_relative_to_client, considering
duplicate parameters shared by multiple modules (and thus can be accessed by multiple names).
Returns:
| Type | Description |
|---|---|
list[str]
|
The parameters to ignore when saving the client, excluding parameters not needed for the client. |
property
¶
stainedglass_core_version: str | None
Get the version of Stained Glass Core used to save the Stained Glass Transform.
Returns:
| Type | Description |
|---|---|
str | None
|
The version of Stained Glass Core used to save the Stained Glass Transform. |
__init__(
model: NoisyModelT,
input_info: InputInfo | None,
noise_layer_type: type[NoiseLayerT],
parameter_names: list[str] | None = None,
include_all_base_model_params: bool = False,
name: str | None = None,
model_card_data: ModelCardData | None = None,
) -> None
Initialize the Stained Glass Transform for Vision.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
NoisyModelT
|
The base model to be transformed. |
required |
|
InputInfo | None
|
Information about an input tensor for the transform, which can be used to infer the minimal
submodules necessary for the forward pass. This is required if neither |
required |
|
type[NoiseLayerT]
|
The type of noise layer to be used. |
required |
|
list[str] | None
|
Optional list of parameter names to include. |
None
|
|
bool
|
Whether to include all base model parameters. |
False
|
|
str | None
|
Optional name for the transform. |
None
|
|
ModelCardData | None
|
Optional model card data. |
None
|
Raises:
| Type | Description |
|---|---|
ValueError
|
If none of |
Safe string representation of the Stained Glass Transform module.
The Stained Glass Transform operates with None weight valued submodules
which are not needed for the SGT computation. Standard nn.Module.__repr__
calls extra_repr on each submodule, which may attempt to access weight
attributes and raise an AttributeError. This override temporarily patches
nn.Module.__repr__ to gracefully handle those cases for the duration of
the call.
Returns:
| Type | Description |
|---|---|
<class 'str'>
|
A string representation of the Stained Glass Transform module. |
__setstate__(
state: dict[str, Any],
trust_remote_code: bool = False,
third_party_model_path: (
str | PathLike[str] | None
) = None,
**kwargs: Any
) -> None
Deserialize the Stained Glass Transform for Vision.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
dict[str, Any]
|
The serialized state. |
required |
|
bool
|
Whether to trust remote code when loading from the Hugging Face Hub. |
False
|
|
str | PathLike[str] | None
|
The path or huggingface reference to a third-party model to load. This is useful when loading SGTs whose internal structure depends on transformers which are not importable directly through transformers, but are present on the Hugging Face Hub. |
None
|
|
Any
|
Unused. This is to allow for compatibility with the parent class which can pass in kwargs to its children. |
required |
Raises:
| Type | Description |
|---|---|
ValueError
|
If any unexpected |
Run the forward pass of the Stained Glass Transform for Vision.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
Any
|
Positional arguments to pass to the truncated module's forward method. |
required |
|
Any
|
Keyword arguments to pass to the truncated module's forward method. |
required |
Returns:
| Type | Description |
|---|---|
Any
|
The output of the forward pass. |
classmethod
¶
from_pretrained(
pretrained_model_name_or_path: str | Path,
map_location: device | str | None = None,
index_file_name: str | None = None,
dtype: str | dtype | None = None,
noise_layer_attention: (
Literal[
"sdpa",
"flash_attention_2",
"flex_attention",
"transformers_default",
"flash_attention_4",
]
| None
) = None,
third_party_model_path: (
str | PathLike[str] | None
) = None,
*,
force_download: bool = False,
resume_download: bool | None = None,
proxies: bool | dict[Any, Any] | None = None,
token: str | bool | None = None,
cache_dir: str | Path | None = None,
local_files_only: bool = False,
revision: str | None = None,
trust_remote_code: bool = False,
**model_kwargs: Any
) -> typing.Self
Load the client from the given path.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
str | Path
|
The path to load the client from. This can be a path to a |
required |
|
device | str | None
|
The location to map the client to. See torch.device for more information. |
None
|
|
str | None
|
The name of the index file to use within the zipfile. If None, the default index file name will be used. |
None
|
|
str | dtype | None
|
The dtype, either as a string or a |
None
|
|
Literal['sdpa', 'flash_attention_2', 'flex_attention', 'transformers_default', 'flash_attention_4'] | None
|
The attention type to use for the noise layer. If None, the default attention type will be used. |
None
|
|
str | PathLike[str] | None
|
The path or huggingface reference to a third-party model to load. This is useful when loading SGTs whose internal structure depends on transformers which are not importable directly through transformers, but are present on the Hugging Face Hub. |
None
|
|
bool
|
Whether to force the download of the client. If False, the client will be downloaded if it is not already present in the cache. |
False
|
|
bool | None
|
Unused. Required for compatibility with the Hugging Face Hub API. |
None
|
|
bool | dict[Any, Any] | None
|
Unused. Required for compatibility with the Hugging Face Hub API. |
None
|
|
str | bool | None
|
The token to use for authentication with the Hugging Face Hub API. |
None
|
|
str | Path | None
|
The directory to use for caching the client. If None, the default cache directory will be used. |
None
|
|
bool
|
Whether to only use local files and not attempt to download the client. If True, an error will be raised if the client is not present in the cache. |
False
|
|
str | None
|
The revision of the client to use. This can be a branch name, tag name, or commit hash. If None, the default revision will be used. |
None
|
|
bool
|
Whether to trust remote code when loading from HuggingFace Hub. |
False
|
|
Any
|
Unused. Required for compatibility with the Hugging Face Hub API. |
required |
Note
When using a third party model path, loading may fail with an error indicating that the provided model type does not match the
expected transformer model type. If you trust that the third-party model layout matches the serialized SGT, you can set
SGC_IGNORE_MODEL_TYPE_MISMATCH_ON_SGT_LOAD=true to disable this safety check during load.
Returns:
| Type | Description |
|---|---|
typing.Self
|
The loaded client. |
Raises:
| Type | Description |
|---|---|
ValueError
|
If any |
IsADirectoryError
|
If the specified path is a directory, but a .sgt file path is required. |
Generate model card from instance model card metadata and class templates.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
Any
|
Positional arguments to huggingface_hub.ModelCard.from_template. Unused (because all arguments are passed by keyword). |
required |
|
Any
|
Keyword arguments to the template_str passed to huggingface_hub.ModelCard.from_template. |
required |
Returns:
| Type | Description |
|---|---|
<class 'huggingface_hub.repocard.ModelCard'>
|
Generated ModelCard object. |
Changed in version v2.8.0: Automatically generated model card files now respect instance model card metadata.
Infer the minimal parameters of the client, excluding parameters not needed for the client.
This method will infer the minimal parameters of the client by tracing a forward pass through the model. This is useful when the minimal parameters are not known ahead of time.
Raises:
| Type | Description |
|---|---|
ValueError
|
If the minimal parameters of the client have been specified |
Infer the minimal submodules necessary for the forward pass of the Stained Glass Transform for Vision.
Returns:
| Type | Description |
|---|---|
list[str]
|
A list of submodule names, relative to the base model, that are necessary for the forward pass of the transform. |
manual_seed(
seed: int | None, rank_dependent: bool = True
) -> None
Set seed to enable/disable reproducible behavior.
Setting seed to None will disable reproducible behavior.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
int | None
|
Value to seed into the random number generator. |
required |
|
bool
|
Whether to add the distributed rank to the seed to ensure that each process samples different noise. |
True
|
staticmethod
¶
override_runtime_config_during_load(
runtime_config: Mapping[str, Any],
noise_layer_attention: SupportedAttentionImplementationsType = None,
dtype: str | dtype | None = None,
**kwargs: Any
) -> dict[str, Any]
Override the runtime configuration during the loading of the Stained Glass Transform for Vision.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
Mapping[str, Any]
|
The runtime configuration to override. |
required |
|
SupportedAttentionImplementationsType
|
Optional attention implementation for the noise layer. Unsupported for vision transforms. |
None
|
|
str | dtype | None
|
Optional data type for the noise layer. Unsupported for vision transforms. |
None
|
|
Any
|
Additional keyword arguments. |
required |
Returns:
| Type | Description |
|---|---|
dict[str, Any]
|
The overridden runtime configuration. |
Raises:
| Type | Description |
|---|---|
ValueError
|
If any unexpected |
push_to_hub(repo_id: str, *, config: dict | DataclassInstance | None = None, commit_message: str = 'Upload using stainedglass_core.', private: bool | None = None, token: str | None = None, branch: str | None = None, create_pr: bool | None = None, allow_patterns: list[str] | str | None = None, ignore_patterns: list[str] | str | None = None, delete_patterns: list[str] | str | None = None, model_card_kwargs: dict[str, Any] | None = None) -> <class 'str'>
Upload model checkpoint to the Hub.
Warning
This method is currently not supported on StainedGlassTransform. Instead use save_pretrained with push_to_hub=True.
Use allow_patterns and ignore_patterns to precisely filter which files should be pushed to the hub. Use
delete_patterns to delete existing remote files in the same commit. See [upload_folder] reference for more
details.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
str
|
ID of the repository to push to (example: |
required |
|
dict | DataclassInstance | None
|
Model configuration specified as a key/value dictionary or a dataclass instance. |
None
|
|
str
|
Message to commit while pushing. |
'Upload using stainedglass_core.'
|
|
bool | None
|
Whether the repository created should be private.
If |
None
|
|
str | None
|
The token to use as HTTP bearer authorization for remote files. By default, it will use the token
cached when running |
None
|
|
str | None
|
The git branch on which to push the model. This defaults to |
None
|
|
bool | None
|
Whether or not to create a Pull Request from |
None
|
|
list[str] | str | None
|
If provided, only files matching at least one pattern are pushed. |
None
|
|
list[str] | str | None
|
If provided, files matching any of the patterns are not pushed. |
None
|
|
list[str] | str | None
|
If provided, remote files matching any of the patterns will be deleted from the repo. |
None
|
|
dict[str, Any] | None
|
Additional arguments passed to the model card template to customize the model card. |
None
|
Returns:
| Type | Description |
|---|---|
<class 'str'>
|
The url of the commit of your model in the given repository. |
Raises:
| Type | Description |
|---|---|
NotImplementedError
|
This method is not implemented. |
save_pretrained(
save_directory: str | Path,
*,
compression: int = 8,
push_to_hub: bool = False,
repo_id: str | None = None,
private: bool = True,
config: dict | DataclassInstance | None = None,
model_card_kwargs: dict[str, Any] | None = None,
**push_to_hub_kwargs: Any
) -> None
Save the client to the given path.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
str | Path
|
The path to save the client to. Although this is called |
required |
|
int
|
The compression method to use for the ZIP file. Defaults to zipfile.ZIP_DEFLATED, but this can cause very slow serialization times. If serialization times are a problem, use zipfile.ZIP_STORED instead. |
8
|
|
bool
|
Whether to push the client to the Hugging Face Hub. |
False
|
|
str | None
|
The repository ID to push the client to. This is required if |
None
|
|
bool
|
Whether to make the repository private. This is only used if |
True
|
|
dict | DataclassInstance | None
|
Unused. Required for compatibility with the Hugging Face Hub API. |
None
|
|
dict[str, Any] | None
|
The kwargs to pass to the model card generator. This is only used if |
None
|
|
Any
|
The kwargs to pass to the |
required |
Raises:
| Type | Description |
|---|---|
IsADirectoryError
|
If a directory is passed in. |
ValueError
|
If |
UserWarning
|
If |
compression
|
The compression method to use for the ZIP file. Defaults to zipfile.ZIP_DEFLATED, but this can cause very slow serialization times. If serialization times are a problem, use zipfile.ZIP_STORED instead. |
Examples:
Uploading a Stained Glass Transform zipfile to the Hugging Face Hub (note that this will also create a local copy of the SGT zipfile):
>>> from stainedglass_core.transform import text
>>> sgt = text.StainedGlassTransformForText.from_pretrained(
... "path/to/sgt_file.sgt"
... )
>>> sgt.save_pretrained(
... "new-sgt-zipfile.sgt",
... push_to_hub=True,
... repo_id="username/new-sgt-repo",
... )
Optionally, you can override any model card metadata before uploading to the Hub. This can be useful for specifying the base model and datasets used for training Stained Glass Transform. You can also specify additional metadata such as eval_results. See huggingface_hub.ModelCardData for more details on the available fields.
>>> sgt.model_card_data.base_model = (
... "meta-llama/Llama-3.1-8B-Instruct"
... )
>>> sgt.model_card_data.__dict__["base_model_relation"] = (
... "adapter"
... )
>>> sgt.model_card_data.datasets = ["Open-Orca/OpenOrca"]
>>> sgt.save_pretrained(
... "new-sgt-zipfile.sgt",
... push_to_hub=True,
... repo_id="username/new-sgt-repo",
... )
Changed in version v2.8.0: Added ability to push Stained Glass Transform to the Hugging Face Hub. BREAKING CHANGE: Argument `path` was renamed `save_directory` for compatibility with ModelHubMixin.save_pretrained
Changed in version v2.20.3: The model safetensors filename was changed for better compatibility with the Hugging Face Hub. This has no practical effect on saving or loading.
Get the state dictionary of the client, excluding parameters not needed for the client.
The parameters considered necessary for the client are those passed into the constructor as parameter_names.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
str
|
A prefix added to parameter and buffer names to compose the keys in state_dict. |
''
|
|
bool
|
By default the |
False
|
Returns:
| Type | Description |
|---|---|
dict[str, typing.Any]
|
The state dictionary of the client, excluding parameters not needed for the client. |
Captures NoisyModel input images and intermediate activations and creates visualizations, formatted as a grid of images where
each row contains an input image and its corresponding activation.
Methods:
| Name | Description |
|---|---|
__init__ |
Construct a new |
prepare_activation_images |
Collect the input and activation tensors from the most recent forward pass and populate them into a grid of images for each |
Attributes:
| Name | Type | Description |
|---|---|---|
grids |
ActivationImages
|
The tensors representing the grid of images to visualize. |
__init__(
noisy_model: NoisyModel[ModuleT, ..., NoiseLayerT],
input_name: str | None = None,
max_examples: int = 4,
max_color_channels: int = 3,
) -> None
Construct a new TransformedImageVisualizationManager.
Parameters:
| Name | Type | Description | Default |
|---|---|---|---|
|
NoisyModel[ModuleT, ..., NoiseLayerT]
|
The model to visualize input images and activations for. |
required |
|
str | None
|
The name of the |
None
|
|
int
|
The maximum number of rows to display in the visualizations. |
4
|
|
int
|
The maximum number of individual color channels to additionally display in each visualization. If the target layer has more than 3 color channels, these will be displayed in grayscale. |
3
|
Raises:
| Type | Description |
|---|---|
ValueError
|
If |
ValueError
|
If |
Collect the input and activation tensors from the most recent forward pass and populate them into a grid of images for each activation.
Returns:
| Type | Description |
|---|---|
ActivationImages
|
A dictionary of image tensors, each formatted as a grid of images, where each row corresponds to a specific example. |