So you fine-tuned a model, ran some abliteration passes, maybe merged a few LoRAs together, and now you want to publish it. Cool. But did you check the license on every upstream model you touched?
I've been watching the open-weight AI community long enough to see this pattern repeat itself: someone publishes a derivative model, strips out the attribution, slaps on a different license, and acts surprised when the community notices. It happened again recently in the LocalLLaMA community, and honestly, it keeps happening because people treat model weights like they're somehow exempt from software licensing rules.
They're not.
Why This Keeps Happening
The root cause is a combination of two things: the AI model ecosystem moves fast, and most people publishing derivative models have never had to think about license compliance before.
When you git clone a repo and start modifying code, most developers instinctively know to check the LICENSE file. But when you download model weights from Hugging Face, apply some transformations, and re-upload, that same instinct doesn't kick in. The weights feel like "data" rather than "software," so people treat them differently.
But legally and ethically, a derivative model is a derivative work. If the upstream model uses a license that requires attribution — and most of them do — you need to provide it.
The Specific Problem: Abliteration and Derivative Works
Abliteration (the technique for removing refusal directions from model activations) is a great example of where this gets tricky. You're taking an existing model, running a transformation on its weights, and producing something new. The output model is absolutely a derivative work.
Here's what a typical abliteration script looks like:
import torch
from transformers import AutoModelForCausalLM, AutoTokenizer
# Load the base model you're modifying
model = AutoModelForCausalLM.from_pretrained("original-model-id")
tokenizer = AutoTokenizer.from_pretrained("original-model-id")
# Identify refusal direction (simplified)
# This is the core of abliteration — finding the activation direction
# associated with refusal behavior and removing it
refusal_dir = get_refusal_direction(model, harmful_prompts, harmless_prompts)
# Modify weights by subtracting the refusal direction
for layer in model.model.layers:
layer.self_attn.o_proj.weight.data -= (
torch.outer(refusal_dir, refusal_dir) @ layer.self_attn.o_proj.weight.data
)
The output of this process is a modified version of original-model-id. Whatever license that original model carries? It still applies to your output. Period.
Step-by-Step: How to Stay Compliant
Here's my checklist for publishing any derivative model work. I use this every time, and it takes maybe 10 minutes.
1. Identify Every Upstream Model
Before you publish anything, trace your lineage. If you merged three models and abliterated the result, you have at least three upstream licenses to check.
# Create a simple lineage file — I keep one in every model repo
cat > MODEL_LINEAGE.md << 'LINEAGE'
## Model Lineage
- **Base model:** org/base-model-v2 (Apache 2.0)
- **Fine-tune source:** researcher/finetuned-variant (CC-BY-4.0)
- **Merge component:** community/specialized-lora (MIT)
- **Technique applied:** Abliteration via orthogonal projection
- **Original abliteration method:** Credit to [original researchers/authors]
LINEAGE
This isn't just good practice — for some licenses, it's literally required.
2. Check License Compatibility
Not all open-source licenses play nicely together. Here are the ones you'll see most often in the model ecosystem:
- Apache 2.0 — Permissive. Requires attribution and notice of changes.
- MIT — Permissive. Requires copyright notice preservation.
- CC-BY-4.0 — Requires attribution. Common for datasets and some models.
- CC-BY-SA-4.0 — Attribution + share-alike. Your derivative must use the same or compatible license.
- Llama Community License / Custom licenses — Read. Every. Word. These vary wildly.
The share-alike licenses are where people trip up most. If your upstream model uses CC-BY-SA-4.0, you cannot release your derivative under Apache 2.0. The share-alike provision requires your derivative to carry the same license.
3. Provide Proper Attribution
This is the part that takes zero effort and people still skip. Your model card should include:
- The name and link to every upstream model
- The original authors or organizations
- The license of each upstream component
- A description of what you changed
# In your README.md / model card metadata
---
license: cc-by-sa-4.0
base_model:
- org/base-model-v2
- researcher/finetuned-variant
tags:
- abliterated
- merge
---
## Attribution
This model is a derivative of [org/base-model-v2](link) by Original Org
(Apache 2.0) and [researcher/finetuned-variant](link) by Researcher Name
(CC-BY-SA-4.0).
The abliteration technique used is based on work by [original authors](link).
Modifications: Applied orthogonal projection to remove refusal direction,
then merged with specialized LoRA weights.
4. Verify Before You Upload
I wrote a quick pre-upload check I run before pushing to Hugging Face:
import json
from pathlib import Path
def check_model_compliance(repo_path: str) -> list[str]:
"""Basic compliance checks before publishing a derivative model."""
issues = []
repo = Path(repo_path)
# Check for LICENSE file
if not (repo / "LICENSE").exists() and not (repo / "LICENSE.md").exists():
issues.append("MISSING: No LICENSE file found")
# Check README for attribution section
readme = repo / "README.md"
if readme.exists():
content = readme.read_text().lower()
if "attribution" not in content and "credit" not in content:
issues.append("WARNING: README has no attribution section")
if "base_model" not in content:
issues.append("WARNING: No base_model specified in metadata")
else:
issues.append("MISSING: No README.md found")
# Check for lineage documentation
has_lineage = any(
(repo / f).exists()
for f in ["MODEL_LINEAGE.md", "ATTRIBUTION.md", "NOTICE"]
)
if not has_lineage:
issues.append("SUGGESTION: Consider adding a MODEL_LINEAGE.md file")
return issues
# Run it
issues = check_model_compliance("./my-model-repo")
for issue in issues:
print(f" {issue}")
Is it sophisticated? No. Does it catch the most common mistakes? Yes.
Prevention: Build the Habit
The AI model ecosystem is still figuring out norms, but the legal framework isn't ambiguous. Derivative works require compliance with upstream licenses. Here's how to make this painless:
- Start every project with a lineage doc. Before you even begin training or modifying, document what you're starting from and what license it carries.
-
Use Hugging Face's model card metadata properly. The
base_modelandlicensefields exist for a reason. Fill them out. - When in doubt, ask. Most model authors are happy to clarify their licensing intent. Open an issue or discussion on their repo.
- Treat model weights like code. Because from a licensing perspective, they are.
The Bigger Picture
The open-weight AI community is built on trust and reciprocity. When someone publishes their work under a license that says "use this, just give me credit," stripping that credit isn't just a legal violation — it undermines the entire ecosystem that makes open AI development possible.
I've seen communities fracture over exactly this kind of thing. Maintainers stop sharing. Researchers go closed-source. Everyone loses.
Spend the ten minutes. Check your licenses. Write the attribution. It's the lowest-effort, highest-impact thing you can do to keep this ecosystem healthy.
Top comments (0)