giskard-checks

PyPI2 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting giskard-checkspage 1 of 1

CVE-2026-40319MEDIUMCVSS 5.5EG 5.5✓ Fixed in 1.0.2b1
2026-04-17
vulnerable: 1.0.1a1, 1.0.1a2, 1.0.1b1
Giskard is an open-source testing framework for AI models. In versions prior to 1.0.2b1, the RegexMatching check passes a user-supplied regular expression pattern directly to Python's re.search() without any timeout or complexity guard. A …
CVE-2026-40320HIGHCVSS 7.8EG 7.8✓ Fixed in 1.0.2b1
2026-04-17
vulnerable: 1.0.1a1, 1.0.1a2, 1.0.1b1
Giskard is an open-source testing framework for AI models. In versions prior to 1.0.2b1, the ConformityCheck class rendered the rule parameter through Jinja2's default Template() constructor, silently interpreting template expressions at r…

Check whether giskard-checks is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for giskard-checks CVEs against the assets you own.

Start Free Scan →