Some models include executable code. The solution is to use a runtime that implements native support for this architecture, such that you can disable external code execution. Or to use a weights format that lacks the capability in the first place, like GGUF. Then, it's no different to decoding a Chinese-made MP3 or JPEG - it's safe as long as it doesn't try to exploit vulnerabilities in the runtime, which is rare.
If you want to be absolutely sure, run it within an offline VM with no internet access.
What’s the point of this comment? Anyone who can read knows the answer to this question.
There’s literally no attempt to hide that this is a Chinese company, physically located in China.
It’s clearly stated in their privacy policy [0].
> International Data Transfers
>The personal information we collect from you may be stored on a server located outside of the country where you live. We store the information we collect in secure servers located in the People's Republic of China .
>Where we transfer any personal information out of the country where you live, including for one or more of the purposes as set out in this Policy, we will do so in accordance with the requirements of applicable data protection laws.
