PyPI: guardrails-ai
CVE-2026-45758
Safety vulnerability ID: SFTY-20260519-77196
Safety legacy ID: pyup.io-98484
Affected versions of the guardrails-ai package are vulnerable to Embedded Malicious Code due to a supply-chain compromise in which an unauthorised party published a tampered release to PyPI. Version 0.10.1 of guardrails-ai was uploaded to PyPI as a malicious build that diverges from the legitimate upstream guardrails-ai source tree and contains code executed at install or import time, distinct from any sanctioned release of the project. Any environment that installed guardrails-ai 0.10.1 from PyPI during the window between publication and PyPI quarantine should be treated as compromised, as the embedded payload can perform arbitrary actions on the host with the privileges of the installing or importing process, including credential theft and onward lateral movement.
Overview
Malicious code in guardrails-ai 0.10.1 (supply chain compromise)
Advisory
Affected versions of the guardrails-ai package are vulnerable to Embedded Malicious Code due to a supply-chain compromise in which an unauthorised party published a tampered release to PyPI. Version 0.10.1 of guardrails-ai was uploaded to PyPI as a malicious build that diverges from the legitimate upstream guardrails-ai source tree and contains code executed at install or import time, distinct from any sanctioned release of the project. Any environment that installed guardrails-ai 0.10.1 from PyPI during the window between publication and PyPI quarantine should be treated as compromised, as the embedded payload can perform arbitrary actions on the host with the privileges of the installing or importing process, including credential theft and onward lateral movement.
How to Fix
Mitigation and Workarounds
---
Vulnerable Functions
Functions linked to known vulnerabilities.
References
- https://getsafety.com/vulnerabilities/SFTY-20260519-77196/CVE-2026-45758
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-45758
- https://github.com/advisories/GHSA-XMPW-2VMM-P4P6
- https://github.com/guardrails-ai/guardrails/security/advisories/GHSA-xmpw-2vmm-p4p6
- https://github.com/guardrails-ai/guardrails/issues/1473
- https://github.com/guardrails-ai/guardrails/blob/main/SECURITY_ADVISORY.md
- https://nvd.nist.gov/vuln/detail/CVE-2026-45758
- https://github.com/pypa/advisory-database/tree/main/vulns/guardrails-ai/PYSEC-2026-206.yaml
- https://github.com/advisories/GHSA-xmpw-2vmm-p4p6
Verified by Safety
Our Cybersecurity Intelligence Team reviewed this vulnerability. We combine public data with our own research to find issues not yet reported to public sources.
Learn more