# Hugging Face hosts more than a million machine learning models used by virtually every AI company on the planet.

*genai · news · 2026-05-08 · TNW*

## Key points

- Hugging Face hosts over 51,700 models with 352,000 unsafe or suspicious issues identified by Protect AI.
- Attackers use the nullifAI technique, combining 7z compression with malicious Python pickle code to evade detection.
- ClawHub's skill registry was infiltrated by 'ClawHavoc,' a coordinated campaign planting 335 malicious AI agent skills.
- 36% of all AI agent skills examined by Snyk contain security flaws, with 20% classified as malicious.
- Malicious payloads in AI models and skills execute immediately on load, often before human review occurs.

**Companies:** Hugging Face, OpenAI, JFrog, ReversingLabs, Protect AI, ClawHub, OpenClaw
**Countries:** United States, European Union

[Read the full story on TNW](https://thenextweb.com/news/hugging-face-clawhub-malware-ai-supply-chain)

---

Canonical: https://newsio.io/n/d1577f60-298d-41ea-a3ac-851f282d9966/hugging-face-hosts-more-than-a-million-machine-learning-models-used-by-virtually
Summarized by Newsio from TNW. https://newsio.io/how-it-works