Verified Model Registry

One model family, deduplicated and verified.

at1 registry versions and deduplicates a family of models and checkpoints: the base is stored once, every version as a verified, addressable delta, and any tensor restores byte-exact with a SHA-256 proof. It scales — a 7B model streams from the container with a 5.8× smaller working set.

5.8×
smaller working set streaming a 7B model, byte-exact
3.34×
prose archival vs xz (LM-codec, 1.4B)
4.64×
code archival vs xz (LM-codec, 1.4B)
SHA-256
per-tensor verification on every restore

What the registry gives you

Base once, every version as a delta

Fine-tunes and checkpoints share most of their weights with the model they came from. The registry stores that base a single time and each version as a verified, addressable delta — so a family of a hundred checkpoints costs a fraction of storing each in full.

Byte-exact restore, tensor by tensor

Reconstruct any version bit-for-bit, and fetch a single tensor without unpacking the whole model. Every restore checks a SHA-256 digest, so you know the weights you loaded are exactly the ones you stored.

Streams from the container

A 7B model runs inference straight from the verified container — weights are streamed and verified as they're needed, giving a 5.8× smaller working set than loading the full model into memory, with byte-identical output.

LM-codec archival tier

For cold storage, the language-model codec packs checkpoints far past a general compressor: 3.34× on prose and 4.64× on code versus xz at 1.4B, lossless and verified.

One command surface

Initialize a registry on a base model, add each version as a delta, then restore or verify any of them on demand.

# keep a whole model family: base stored once, each version a verified delta
at1 registry init  base.safetensors  models/            # the shared reference
at1 registry add   models/  ft-sentiment.safetensors     # stored as a delta vs base
at1 registry add   models/  ckpt-epoch3.safetensors      # another addressable delta

at1 registry get    models/ ft-sentiment --out out.safetensors   # restore byte-exact
at1 registry verify models/ ft-sentiment                          # -> integrity: PASS (SHA-256)
at1 registry list   models/                                       # every version + size on disk

How it relates to the rest of the model line

The registry is the family-level store built on the same reference-delta machinery as model-zoo storage. For fetching a single tensor from one model see addressable weights, and for running a model straight from a verified container see the verified model runtime.