lfx@0.1.9 vulnerabilities
Langflow Executor - A lightweight CLI tool for executing and serving Langflow AI flows
latest version
0.2.2
first published
6 months ago
latest version published
7 days ago
licenses detected
- [0,)
Direct Vulnerabilities
Known vulnerabilities in the lfx package. This does not include vulnerabilities belonging to this package’s dependencies.
Fix vulnerabilities automatically
Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.
Fix for free| Vulnerability | Vulnerable Version |
|---|---|
lfx is a lfx is a command-line tool for running Langflow workflows. It provides two main commands: serve and run. Affected versions of this package are vulnerable to Eval Injection via the How to fix Eval Injection? There is no fixed version for | [0,) |
lfx is a lfx is a command-line tool for running Langflow workflows. It provides two main commands: serve and run. Affected versions of this package are vulnerable to Arbitrary Code Injection via the handling of Python function components. An attacker can execute arbitrary code by introducing custom Python code into a workflow. How to fix Arbitrary Code Injection? There is no fixed version for | [0,) |
lfx is a lfx is a command-line tool for running Langflow workflows. It provides two main commands: serve and run. Affected versions of this package are vulnerable to Unsafe Dependency Resolution via the How to fix Unsafe Dependency Resolution? There is no fixed version for | [0,) |
lfx is a lfx is a command-line tool for running Langflow workflows. It provides two main commands: serve and run. Affected versions of this package are vulnerable to Arbitrary Code Injection via the code parameter in the How to fix Arbitrary Code Injection? There is no fixed version for | [0,) |