AI Threat Alert

AI/ML Package Security Tracker

Tracking vulnerabilities across 97 AI/ML packages. 1593 known CVEs and counting.

97
Packages Tracked
1593
Total CVEs
225
Critical CVEs
11
Categories

AI Agents 12

AutoGen

pip
0
CVEs
Risk: 22

Browser Use

pip
1
CVEs
Risk: 35 1 CRITICAL

CrewAI

pip
0
CVEs
Risk: 30

Flowise

npm
77
CVEs
15 CRITICAL

MCP Atlassian

pip
2
CVEs
Risk: 45 1 CRITICAL

OpenClaw

pip
136
CVEs
3 CRITICAL

Phidata

pip
0
CVEs
Risk: 28

PraisonAI

pip
41
CVEs
11 CRITICAL

PraisonAI Agents

pip
22
CVEs
5 CRITICAL

Pydantic AI

pip
2
CVEs
Risk: 28

n8n

npm
86
CVEs
Risk: 69 21 CRITICAL

smolagents

pip
5
CVEs
Risk: 50 3 CRITICAL

AI Security 6

Fickling

pip
14
CVEs
Risk: 27

Garak

pip
0
CVEs
Risk: 26

Guardrails AI

pip
1
CVEs
Risk: 27 1 CRITICAL

NeMo Guardrails

pip
0
CVEs
Risk: 27

Promptfoo

npm
0
CVEs
Risk: 25

picklescan

pip
59
CVEs
Risk: 53 4 CRITICAL

AI Tools 5

Claude Code

npm
8
CVEs

Jupyter

pip
10
CVEs
Risk: 28 1 CRITICAL

Jupyter Notebook

pip
11
CVEs
Risk: 32 2 CRITICAL

Label Studio

pip
7
CVEs
Risk: 39

WPBot

pip
4
CVEs

LLM APIs 7

Anthropic Node

npm
3
CVEs
Risk: 11

Anthropic Python

pip
5
CVEs
Risk: 31 1 CRITICAL

Cohere

pip
0
CVEs
Risk: 27

Google GenAI

pip
0
CVEs
Risk: 36

Mistral AI

pip
2
CVEs
Risk: 32 1 CRITICAL

OpenAI Node

npm
6
CVEs
Risk: 34 1 CRITICAL

OpenAI Python

pip
6
CVEs
Risk: 65 2 CRITICAL

LLM Frameworks 14

ChuanhuChatGPT

pip
4
CVEs
1 CRITICAL

DSPy

pip
0
CVEs
Risk: 29

GPT Academic

pip
6
CVEs
1 CRITICAL

Haystack

pip
0
CVEs
Risk: 20

LLaMA Factory

pip
4
CVEs
2 CRITICAL

LangChain

pip
52
CVEs
Risk: 77 23 CRITICAL

LangChain Community

pip
6
CVEs
Risk: 49 2 CRITICAL

LangChain Core

pip
8
CVEs
Risk: 22

LangGraph

pip
7
CVEs
Risk: 23

Langflow

pip
41
CVEs
Risk: 77 10 CRITICAL

LlamaIndex

pip
13
CVEs
Risk: 58 3 CRITICAL

LlamaIndex

pip
6
CVEs
Risk: 60 1 CRITICAL

LlamaIndex Core

pip
7
CVEs
Risk: 39

Semantic Kernel

pip
2
CVEs
Risk: 35 2 CRITICAL

LLM Inference 6

LiteLLM

pip
20
CVEs
Risk: 79 4 CRITICAL

Ollama

pip
26
CVEs
Risk: 84 6 CRITICAL

TGI

pip
0
CVEs
Risk: 25

Triton

pip
1
CVEs
Risk: 19

llama.cpp Python

pip
0
CVEs
Risk: 31

vLLM

pip
43
CVEs
Risk: 61 10 CRITICAL

ML Data 2

HF Datasets

pip
1
CVEs
Risk: 28

HF Hub

pip
0
CVEs
Risk: 30

ML Libraries 23

Accelerate

pip
0
CVEs
Risk: 28

Diffusers

pip
2
CVEs
Risk: 26

ExecuTorch

pip
7
CVEs
Risk: 49 5 CRITICAL

JAX

pip
0
CVEs
Risk: 33

Keras

pip
13
CVEs
Risk: 60 5 CRITICAL

LightGBM

pip
1
CVEs
Risk: 31

MLX

pip
2
CVEs
Risk: 56 1 CRITICAL

MONAI

pip
5
CVEs
Risk: 26

ONNX

pip
9
CVEs
Risk: 55 1 CRITICAL

ONNX Runtime

pip
0
CVEs
Risk: 27

PEFT

pip
0
CVEs
Risk: 32

PyTorch

pip
40
CVEs
Risk: 85 7 CRITICAL

PyTorch Lightning

pip
5
CVEs
Risk: 52 2 CRITICAL

Safetensors

pip
0
CVEs
Risk: 35

Sentence Transformers

pip
0
CVEs
Risk: 29

TRL

pip
0
CVEs
Risk: 30

TensorFlow

pip
434
CVEs
Risk: 67 17 CRITICAL

Tokenizers

pip
1
CVEs
Risk: 30

Transformers

pip
29
CVEs
Risk: 62 1 CRITICAL

XGBoost

pip
0
CVEs
Risk: 27

XGrammar

pip
4
CVEs
Risk: 33

scikit-learn

pip
3
CVEs
Risk: 64 1 CRITICAL

spaCy

pip
2
CVEs
Risk: 25 1 CRITICAL

MLOps 9

BentoML

pip
15
CVEs
Risk: 58 4 CRITICAL

ClearML

pip
1
CVEs
Risk: 15

DVC

pip
1
CVEs
Risk: 24

LLaMA Factory

pip
4
CVEs
Risk: 53 2 CRITICAL

MLflow

pip
68
CVEs
Risk: 81 16 CRITICAL

Ray

pip
9
CVEs
Risk: 64 6 CRITICAL

SageMaker

pip
5
CVEs
Risk: 30

Weights & Biases

pip
0
CVEs
Risk: 33

skops

pip
3
CVEs

ML UI 6

Chainlit

pip
2
CVEs
Risk: 33

Gradio

pip
53
CVEs
Risk: 80 7 CRITICAL

LoLLMs

pip
9
CVEs
Risk: 36 1 CRITICAL

Open WebUI

pip
92
CVEs
Risk: 38 1 CRITICAL

Panel

pip
4
CVEs
Risk: 26

Streamlit

pip
13
CVEs
Risk: 47 9 CRITICAL

Vector DBs 7

ChromaDB

pip
1
CVEs
Risk: 27

FAISS

pip
1
CVEs
Risk: 27

Milvus

pip
0
CVEs
Risk: 22

Pinecone

pip
0
CVEs
Risk: 30

Qdrant

pip
0
CVEs
Risk: 32

Weaviate

pip
0
CVEs
Risk: 30

pgvector

pip
0
CVEs
Risk: 31

Monitor your AI stack

Get real-time alerts when new vulnerabilities affect the AI/ML packages in your stack. Filter by severity, get CISO analysis, and compliance mappings.

View Plans