VYPR

PyPI package

giskard-checks

pkg:pypi/giskard-checks

Vulnerabilities (2)

  • CVE-2026-40320HigApr 17, 2026
    affected < 1.0.2b1fixed 1.0.2b1

    Giskard is an open-source testing framework for AI models. In versions prior to 1.0.2b1, the ConformityCheck class rendered the rule parameter through Jinja2's default Template() constructor, silently interpreting template expressions at runtime. If check definitions are loaded f

  • CVE-2026-40319MedApr 17, 2026
    affected < 1.0.2b1fixed 1.0.2b1

    Giskard is an open-source testing framework for AI models. In versions prior to 1.0.2b1, the RegexMatching check passes a user-supplied regular expression pattern directly to Python's re.search() without any timeout or complexity guard. A crafted regex pattern can trigger catastr