REPOGEO REPORT · LITE

protectai/modelscan

Default branch main · commit 61fcec9c · scanned 6/5/2026, 2:31:19 PM

GitHub: 720 stars · 144 forks

AI VISIBILITY SCORE

35 /100

Critical

Category recall

0 / 2

Not recommended in any query

Rule findings

1 pass · 1 warn · 0 fail

Objective metadata checks

AI knows your name

3 / 3

Direct prompts that named your repo

HOW TO READ THIS REPORT

Action plan is what to do next — copy-pasteable changes prioritized by impact. Category visibility is the real GEO test: when a user asks an AI a brand-free question that should surface protectai/modelscan, does the AI actually recommend you — or your competitors? Objective checks verify the metadata signals AI engines weight first. Self-mention check detects whether AI even knows you exist by name.

Action plan — copy-paste fixes

3 prioritized changes generated by gemini-2.5-flash. Mark items done after you ship the fix.

OVERALL DIRECTION

hightopics#1

Add specific topics to improve categorization

Why:

COPY-PASTE FIX

ml-security, model-security, ai-security, machine-learning-security, model-scanning, serialization-attacks, pytorch-security, tensorflow-security, keras-security, sklearn-security, xgboost-security, supply-chain-security

mediumreadme#2

Emphasize unique static analysis of serialized models in README

Why:

CURRENT

ModelScan is an open source project from Protect AI that scans models to determine if they contain unsafe code. It is the first model scanning tool to support multiple model formats. ModelScan currently supports: H5, Pickle, and SavedModel formats. This protects you when using PyTorch, TensorFlow, Keras, Sklearn, XGBoost, with more on the way.

COPY-PASTE FIX

ModelScan is an open source project from Protect AI that performs static analysis directly on serialized ML model files to detect embedded malicious code or insecure configurations *before* models are loaded or deployed. It is the first model scanning tool to support multiple model formats, currently including H5, Pickle, and SavedModel. This protects you when using PyTorch, TensorFlow, Keras, Sklearn, XGBoost, with more on the way.

lowabout#3

Refine the 'About' description for clarity

Why:

CURRENT

Protection against Model Serialization Attacks

COPY-PASTE FIX

Scans machine learning models for unsafe code and vulnerabilities to protect against serialization attacks.

Category GEO backends resolved for this scan: google/gemini-2.5-flash, deepseek/deepseek-v4-flash

Category visibility — the real GEO test

Brand-free queries asked to google/gemini-2.5-flash. Did AI recommend you, or someone else?

Same questions for every model — switch tabs to compare answers and rankings.

Recall

0 / 2

0% of queries surface protectai/modelscan

Avg rank

—

Lower is better. #1 = top recommendation.

Share of voice

Of all named tools, what % are you?

Top rival

IBM Watson OpenScale

Recommended in 1 of 2 queries

COMPETITOR LEADERBOARD

IBM Watson OpenScale · recommended 1×
Microsoft Azure Machine Learning · recommended 1×
Azure Security Center · recommended 1×
Google Cloud Vertex AI · recommended 1×
Google Cloud Security Command Center · recommended 1×

CATEGORY QUERY
How can I scan machine learning models for potential security vulnerabilities before deployment?
you: not recommended
AI recommended (in order):
1. IBM Watson OpenScale
2. Microsoft Azure Machine Learning
3. Azure Security Center
4. Google Cloud Vertex AI
5. Google Cloud Security Command Center
6. Adversarial Robustness Toolbox (ART)
7. OWASP Top 10 for Machine Learning
8. DeepMind's CleverHans
9. Snyk
AI recommended 9 alternatives but never named protectai/modelscan. This is the gap to close.
Show full AI answer
CATEGORY QUERY
What tools are available to detect unsafe code within AI model files?
you: not recommended
AI recommended (in order):
1. Grype (anchore/grype)
2. TruffleHog (trufflesecurity/trufflehog)
3. Semgrep (semgrep/semgrep)
4. Bandit (PyCQA/bandit)
5. OWASP Dependency-Check (jeremylong/DependencyCheck)
6. Microsoft Security Code Analysis (MSCA)
7. Snyk Code
AI recommended 7 alternatives but never named protectai/modelscan. This is the gap to close.
Show full AI answer

Objective checks

Rule-based audits of metadata signals AI engines weight most.

Metadata completeness
warn
Suggestion:
README presence
pass

Self-mention check

Does AI even know your repo exists when asked about it directly?

Compared to common alternatives in this category, what is the core differentiator of protectai/modelscan?
pass
AI named protectai/modelscan explicitly
AI answers can be confidently wrong. Read for accuracy: does it match your actual tech stack, audience, and differentiator?
If a team adopts protectai/modelscan in production, what risks or prerequisites should they evaluate first?
pass
AI named protectai/modelscan explicitly
AI answers can be confidently wrong. Read for accuracy: does it match your actual tech stack, audience, and differentiator?
In one sentence, what problem does the repo protectai/modelscan solve, and who is the primary audience?
pass
AI named protectai/modelscan explicitly
AI answers can be confidently wrong. Read for accuracy: does it match your actual tech stack, audience, and differentiator?

Embed your GEO score

Drop this badge into the README of protectai/modelscan. It auto-updates whenever the report is rescanned and links back to the latest report — easy public proof that you care about AI discoverability.

Live preview

MARKDOWN (README)

[![RepoGEO](https://repogeo.com/badge/protectai/modelscan.svg)](https://repogeo.com/en/r/protectai/modelscan)

HTML

<a href="https://repogeo.com/en/r/protectai/modelscan"><img src="https://repogeo.com/badge/protectai/modelscan.svg" alt="RepoGEO" /></a>

Pro

Subscribe to Pro for deep diagnoses

protectai/modelscan — Lite scans stay free; this card itemizes Pro deep limits vs Lite.

Deep reports10 / month
Brand-free category queries5 vs 2 in Lite
Prioritized action items8 vs 3 in Lite