PyPI/guardrails-ai — 5 CVEs

CRITICAL9.8CVE-2026-31233Guardrails AI contains a code injection vulnerability in its Hub package installation mechanism

from 0, <= 0.6.7

CRITICAL9.6CVE-2026-45758Malicious code in guardrails-ai 0.10.1 (supply chain compromise)

from 0, <= 0.10.1

HIGH8.8Guardrails has an arbitrary code execution vulnerability

>= 0.2.9, < 0.5.10

MEDIUM5.9Guardrails AI vulnerable to Improper Restriction of XML External Entity Reference

from 0, < 0.5.0

pkg:PyPI/guardrails-ai