PatchSiren

guardrails-ai CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

CRITICAL guardrails-ai CVE published 2026-06-05

CVE-2026-45758

CVE-2026-45758 is a critical vulnerability in Guardrails AI, a Python framework for building AI applications. On May 11, 2026, at approximately 6:00 PM Pacific, an attacker published a malicious version of `guardrails-ai` (0.10.1) to PyPI. Any user who installed `guardrails-ai==0.10.1` from PyPI on May 11, 2026, may be affected. Security researchers identified the malicious package within approximately 2 [truncated]