CLEANSTART-2026-FC24138

See a problem?
Import Source
https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-FC24138.json
JSON Data
https://api.test.osv.dev/v1/vulns/CLEANSTART-2026-FC24138
Upstream
  • ghsa-3xc5-wrhm-f963
  • ghsa-f6x5-jh6r-wrfv
  • ghsa-j5w8-q4qc-rx2x
Published
2026-05-18T13:25:50.977599Z
Modified
2026-05-21T09:15:07.003393989Z
Summary
Security fixes for CVE-2026-1229, CVE-2026-25934, CVE-2026-33811, CVE-2026-33814, CVE-2026-39820, CVE-2026-39823, CVE-2026-39825, CVE-2026-39826, CVE-2026-39836, CVE-2026-42499, ghsa-3xc5-wrhm-f963, ghsa-f6x5-jh6r-wrfv, ghsa-j5w8-q4qc-rx2x applied in versions: 0.9.7-r1, 0.9.9-r0, 0.9.9-r1, 0.9.9-r2
Details

Multiple security vulnerabilities affect the gptscript package. These issues are resolved in later releases. See references for individual vulnerability details.

References

Affected packages

CleanStart / gptscript

Package

Name
gptscript

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.9.9-r2

Database specific

source 
"https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-FC24138.json"