VYPR

PyPI package

kedro-datasets

pkg:pypi/kedro-datasets

Vulnerabilities (1)

  • CVE-2026-35492MedApr 7, 2026
    affected < 9.3.0fixed 9.3.0

    Kedro-Datasets is a Kendo plugin providing data connectors. Prior to 9.3.0, PartitionedDataset in kedro-datasets was vulnerable to path traversal. Partition IDs were concatenated directly with the dataset base path without validation. An attacker or malicious input containing ..