packages
npm / PyPI / Rust / Java / Ruby / PHP + OSVKeeps: package, version, advisory
- 2026-06-23PyPI release: langflow 1.10.1
A Python package with a built-in web application
LANGFLOWpackage:pypi:langflow - 2026-06-23PyPI release: litellm 1.91.0.dev1
Library to easily interface with LLM API providers
LITELLMpackage:pypi:litellm The core Nx plugin contains the core functionality of Nx like the project graph, nx commands and task orchestration.
NXpackage:npm:nx- 2026-06-23OSV advisory: langflow PYSEC-2026-224
Aliases: CVE-2026-55450, GHSA-x223-p2gf-v735 Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.1, unauthenticated users can upload any amount of data to the server without any limitations. No need for any prior knowledge, only network acc
LANGFLOWosv:pypi:langflow - 2026-06-23OSV advisory: langflow PYSEC-2026-223
Aliases: CVE-2026-55446, GHSA-qwqc-p3q8-wcg9 Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.0.19, an attacker can send a /api/v1/files/upload/ request without any authentication token/cookies and abuse a very long multipart form boundary
LANGFLOWosv:pypi:langflow - 2026-06-23OSV advisory: langflow PYSEC-2026-222
Aliases: CVE-2026-55423, GHSA-7hw8-6q6r-4276 Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.7.0, the logout button does not clear the session. The previous user stays logged in unless another user explicitly logs in. This vulnerability i
LANGFLOWosv:pypi:langflow - 2026-06-23OSV advisory: langflow PYSEC-2026-221
Aliases: CVE-2026-55255, GHSA-qrpv-q767-xqq2 Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.2, an Insecure Direct Object Reference (IDOR) vulnerability in /api/v1/responses endpoint allows an authenticated attacker to execute any flow
LANGFLOWosv:pypi:langflow - 2026-06-23OSV advisory: langflow PYSEC-2026-244
Aliases: CVE-2026-48520, GHSA-rcjh-r59h-gq37 Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.10.0, the "Shareable Playground" (or "Public Flows" in code) contains a potential arbitrary file-read vulnerability, depending on the exact flow
LANGFLOWosv:pypi:langflow - 2026-06-23OSV advisory: langflow PYSEC-2026-243
Aliases: CVE-2026-48519, GHSA-v5ff-9q35-q26f Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.2, the "Shareable Playground" (or "Public Flows" in code) contains a critical RCE vulnerability. Shareable Playground feature works by enabling
LANGFLOWosv:pypi:langflow - 2026-06-23OSV advisory: langflow PYSEC-2026-242
Aliases: CVE-2026-33760, GHSA-9c59-2mvc-vfr8 Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.0, Langflow's /api/v1/monitor router exposes 7 endpoints that perform read, write, and delete operations on user-owned resources — messages, se
LANGFLOWosv:pypi:langflow - 2026-06-23npm release: nx 22.7.6
The core Nx plugin contains the core functionality of Nx like the project graph, nx commands and task orchestration.
NXpackage:npm:nx - 2026-06-23npm release: nx 23.0.1
The core Nx plugin contains the core functionality of Nx like the project graph, nx commands and task orchestration.
NXpackage:npm:nx - 2026-06-23npm release: next 16.3.0-canary.62
The React Framework
package:npm:next - 2026-06-23npm release: nx 23.1.0-beta.2
The core Nx plugin contains the core functionality of Nx like the project graph, nx commands and task orchestration.
NXpackage:npm:nx Hooks for managing, caching and syncing asynchronous and remote data in React
TANSTACKpackage:npm:@tanstack/react-query- 2026-06-23PyPI release: langflow 1.11.0.dev16
A Python package with a built-in web application
LANGFLOWpackage:pypi:langflow - 2026-06-23npm release: next 16.3.0-canary.61
The React Framework
package:npm:next