In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsUpgrade praisonai to version 1.7.2 or higher.
praisonai is a PraisonAI TypeScript AI Agents Framework - Node.js, npm, and Javascript AI Agents Framework
Affected versions of this package are vulnerable to Protection Mechanism Failure via the codeMode process. An attacker can execute arbitrary code with the privileges of the host Node.js process by supplying specially crafted input that escapes the intended sandbox restrictions, allowing access to environment variables, filesystem operations, and subprocess execution.