GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
3 advisories
PraisonAI Vulnerable to Argument Injection into Cloud Run Environment Variables via Unsanitized Comma in gcloud --set-env-vars
High
CVE-2026-40113
was published
for
PraisonAI
(pip)
Apr 10, 2026
PraisonAIAgents has an OS Command Injection via shell=True in Memory Hooks Executor (memory/hooks.py)
Critical
CVE-2026-40111
was published
for
praisonaiagents
(pip)
Apr 10, 2026
@google/clasp vulnerable to unsafe path traversal cloning or pulling a malicious script
High
CVE-2026-4092
was published
for
@google/clasp
(npm)
Mar 13, 2026
ProTip!
Advisories are also available from the
GraphQL API