VYPR

Guardrails AI

by Guardrails AI

CVEs (2)

  • CVE-2026-45321CriKEVMay 12, 2026
    risk 0.82cvss 9.6epss 0.02

    On 2026-05-11, between approximately 19:20 and 19:26 UTC, 84 malicious versions across 42 @tanstack/* packages were published to the npm registry. The publishes were authenticated via the legitimate GitHub Actions OIDC trusted-publisher binding for TanStack/router, but the…

  • CVE-2026-45758CriJun 5, 2026
    risk 0.62cvss 9.6epss 0.00

    Guardrails AI is a Python framework that helps build AI applications. On May 11, 2026 at approximately 6:00 PM Pacific, an attacker published a malicious version of `guardrails-ai` (0.10.1) to PyPI. Aany user who installed `guardrails-ai==0.10.1` from PyPI on May 11, 2026 may be…