llm@0.24

CLI utility and Python library for interacting with Large Language Models from organizations like OpenAI, Anthropic and Gemini plus local models installed on your own machine.

  • latest version

    0.31

  • first published

    3 years ago

  • latest version published

    2 months ago

  • licenses detected

  • Direct Vulnerabilities

    Known vulnerabilities in the llm package. This does not include vulnerabilities belonging to this package’s dependencies.

    Fix vulnerabilities automatically

    Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

    Fix for free
    VulnerabilityVulnerable Version
    • C
    Arbitrary Code Injection

    llm is a CLI utility and Python library for interacting with Large Language Models from organizations like OpenAI, Anthropic and Gemini plus local models installed on your own machine.

    Affected versions of this package are vulnerable to Arbitrary Code Injection via the --functions argument. An attacker can execute arbitrary code by crafting a malicious command containing Python code in the --functions argument and convincing a user to run it.

    How to fix Arbitrary Code Injection?

    There is no fixed version for llm.

    [0,)