back to types
signal type · regulatory shift

security risk

Every published security risk signal with its public hit-rate inline. Belongs to the regulatory shift family, which means fresh security risk calls borrow confidence from sibling types in the family until they earn their own sample.

all-time signals
6
published only
direct hit-rate
no scored predictions yet
family hit-rate
0 across regulatory shift
family
regulatory shift
see signal-families.ts for mapping
definition
What is a security risk signal?

A security risk signal is any High-Signal-published call tagged security_risk by the ingest pipeline. The exact extraction rules live in python/ingest and the family rollup in /methodology. Every published instance carries ≥ 2 independent sources per the cite-or-kill rule.

every published security risk signal
2026-06-03 · LANGFLOW · down · medium
A path traversal vulnerability (CVE-2026-42048) has been disclosed in Langflow's Knowledge Bases API, allowing...
2026-06-03 · LITELLM · down · medium
On 2026-05-11, a security advisory (GHSA-wxxx-gvqv-xp7p) disclosed CVE-2026-40217 affecting LiteLLM, a popular...
2026-06-02 · NX · down · high
On 2026-05-27, CISA added CVE-2026-48027 to its Known Exploited Vulnerabilities catalog, citing an embedded malicious...
2026-06-02 · LANGFLOW · down · medium
A security advisory published May 5, 2026 (OSV) reveals CVE-2026-42048, a path traversal vulnerability in Langflow's...
2026-06-01 · LANGFLOW · down · low
Langflow, a popular open-source platform for building AI agents and workflows, has a confirmed path traversal...
2026-06-01 · LITELLM · down · low
A security advisory (CVE-2026-40217) disclosed a sandbox escape vulnerability in LiteLLM's custom-code guardrail...