pyspur@0.1.6 vulnerabilities

PySpur is a Graph UI for building AI Agents in Python

latest version

0.1.18

first published

5 months ago

latest version published

3 months ago

licenses detected

Unknown
[0,)

View pyspur package health on Snyk Advisor (opens in a new tab)

Go back to all versions of this package

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the pyspur package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability Vulnerable Version

Vulnerability	Vulnerable Version
M Improper Neutralization of Special Elements Used in a Template Engine pyspur is a PySpur is a Graph UI for building AI Agents in Python Affected versions of this package are vulnerable to Improper Neutralization of Special Elements Used in a Template Engine via the `SingleLLMCallNode` function. An attacker can execute unauthorized template code and potentially access or modify sensitive data by supplying specially crafted input to the `user_message` parameter. How to fix Improper Neutralization of Special Elements Used in a Template Engine? There is no fixed version for `pyspur`.	[0,)

Improper Neutralization of Special Elements Used in a Template Engine

pyspur is a PySpur is a Graph UI for building AI Agents in Python

Affected versions of this package are vulnerable to Improper Neutralization of Special Elements Used in a Template Engine via the SingleLLMCallNode function. An attacker can execute unauthorized template code and potentially access or modify sensitive data by supplying specially crafted input to the user_message parameter.

How to fix Improper Neutralization of Special Elements Used in a Template Engine?

There is no fixed version for pyspur.

[0,)

Go back to all versions of this package