MEDIUM
safedep
CVE published 2026-05-27
CVE-2026-45046
Gryph, a security layer for AI coding agents, incorrectly documents its default logging level as minimal when it is actually standard. At this default level and at full logging, sensitive file-write content persists in the local SQLite database within ContentPreview, OldString, or NewString fields, bypassing Gryph's sensitive file filter and violating its logging contracts. This results in local informati [truncated]