GHSA-fvfv-ppw4-7h2w: n8n has a Guardrail Node Bypass
Summary
A security flaw in n8n's Guardrail node (a component that enforces safety rules on AI outputs) allows users to craft inputs that bypass its default safety instructions. This means someone could trick the guardrail into allowing outputs it should have blocked.
Solution / Mitigation
The issue has been fixed in n8n version 2.10.0. Users should upgrade to this version or later to remediate the vulnerability. If upgrading is not immediately possible, administrators can limit access to trusted users and review the practical impact of guardrail bypasses in your workflow, then adjust accordingly (though these workarounds do not fully remediate the risk and should only be used as short-term mitigation).
Classification
Affected Vendors
Affected Packages
Related Issues
Original source: https://github.com/advisories/GHSA-fvfv-ppw4-7h2w
First tracked: February 26, 2026 at 07:00 PM
Classified by LLM (prompt v3) · confidence: 85%