mirror of
https://github.com/hwchase17/langchain
synced 2024-10-31 15:20:26 +00:00
e8339b1d83
Patch potential XML vulnerability CVE-2024-1455 This patches a potential XML vulnerability in the XMLOutputParser in langchain-core. The vulnerability in some situations could lead to a denial of service attack. At risk are users that: 1) Running older distributions of python that have older version of libexpat 2) Are using XMLOutputParser with an agent 3) Accept inputs from untrusted sources with this agent (e.g., endpoint on the web that allows an untrusted user to interact wiith the parser) |
||
|---|---|---|
| .. | ||
| integration_tests | ||
| unit_tests | ||
| __init__.py | ||