GHSA-7xjm-g8f4-rp26: Giskard has Unsandboxed Jinja2 Template Rendering in ConformityCheck
Summary
The `ConformityCheck` class in giskard-checks was automatically treating the `rule` parameter as a Jinja2 template (a template language that evaluates expressions), which could allow arbitrary code execution if check definitions came from untrusted sources. While the library is only used locally by developers, this hidden behavior made it easy to accidentally pass untrusted input without realizing expressions would be evaluated.
Solution / Mitigation
Upgrade to `giskard-checks` >= 1.0.2b1. The patched version removes template rendering from rule evaluation entirely.
Vulnerability Details
EPSS: 0.0%
Yes
April 14, 2026
Classification
Affected Vendors
Affected Packages
Related Issues
CVE-2024-37052: Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.1.0 or newer, enabling
CVE-2026-26190: Milvus is an open-source vector database built for generative AI applications. Prior to 2.5.27 and 2.6.10, Milvus expose
Original source: https://github.com/advisories/GHSA-7xjm-g8f4-rp26
First tracked: April 14, 2026 at 08:00 PM
Classified by LLM (prompt v3) · confidence: 92%