GHSA-w8hx-hqjv-vjcq: Paperclip: Malicious skills able to exfiltrate and destroy all user data
highvulnerability
security
Source: GitHub Advisory DatabaseApril 16, 2026
Summary
Paperclip, an AI agent platform, has a critical vulnerability where malicious skills can execute arbitrary shell commands on the server through an unsanitized `runtimeConfig` parameter, allowing attackers to steal sensitive credentials like API keys, database passwords, and authentication secrets stored in environment variables.
Classification
Attack Type
Supply ChainData Extraction
Attack SophisticationModerate
Impact (CIA+S)
confidentiality
Affected Vendors
HuggingFace
Affected Packages
@paperclipai/server@< 2026.416.0 (fixed: 2026.416.0)
Related Issues
Monthly digest — independent AI security research
Original source: https://github.com/advisories/GHSA-w8hx-hqjv-vjcq
First tracked: April 16, 2026 at 08:00 PM
Classified by LLM (prompt v3) · confidence: 92%