openapi-python-client@0.3.0 vulnerabilities

Generate modern Python clients from OpenAPI

Direct Vulnerabilities

Known vulnerabilities in the openapi-python-client package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Arbitrary Code Execution

openapi-python-client is a package that generates modern Python clients from OpenAPI.

Affected versions of this package are vulnerable to Arbitrary Code Execution. Clients generated with a maliciously crafted OpenAPI Document can generate arbitrary Python code. Subsequent execution of this malicious client is arbitrary code execution.

How to fix Arbitrary Code Execution?

Upgrade openapi-python-client to version 0.5.3 or higher.

[,0.5.3)
  • L
Directory Traversal

openapi-python-client is a package that generates modern Python clients from OpenAPI.

Affected versions of this package are vulnerable to Directory Traversal via a maliciously crafted OpenAPI document.

How to fix Directory Traversal?

Upgrade openapi-python-client to version 0.5.3 or higher.

[,0.5.3)