gitsafehub
github.com/fluxions-ai/vui ↗

fluxions-ai/vui

scanned 2026-06-27 · git f939eb1
2 of 6 checks flagged a security issue
🟡 Worth a look
Only 5 of 6 checks finished — treat this as provisional. Re-check ↻

Informational scan, not a security audit. How this is computed.

Leaked secretsVulnerable dependencies30Known OSS vulnerabilities33Risky code patternsMalicious dependenciesProject health9

Security checks

Leaked secrets — Gitleaks none found ✓

API keys, passwords or tokens committed into the repo.

Nothing found by this check. ✓

via Gitleaks v8.21.2 · MIT

Vulnerable dependencies — Trivy 30 found

Packages you depend on that have known security holes (CVEs).

  • Worth fixing CVE-2026-34993 aiohttp: AIOHTTP: Arbitrary code execution via untrusted input to CookieJar.load()
    uv.lock
    A package you depend on has a known security hole (CVE-2026-34993). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-47265 python-aiohttp: AIOHTTP: Information disclosure via improper handling of cookies during cross-origin redirects
    uv.lock
    A package you depend on has a known security hole (CVE-2026-47265). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-54273 aiohttp: AIOHTTP: Denial of Service via excessive pipelined requests
    uv.lock
    A package you depend on has a known security hole (CVE-2026-54273). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-54274 aiohttp: aiohttp: Denial of Service via incomplete websocket frame payloads
    uv.lock
    A package you depend on has a known security hole (CVE-2026-54274). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-54276 aiohttp: aiohttp: Information disclosure via DigestAuthMiddleware after cross-origin redirect
    uv.lock
    A package you depend on has a known security hole (CVE-2026-54276). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-54277 aiohttp: aiohttp: Denial of Service via oversized HTTP request lines bypassing max_line_size check
    uv.lock
    A package you depend on has a known security hole (CVE-2026-54277). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-54278 aiohttp: aiohttp: Denial of Service due to excessive memory consumption from compressed request body
    uv.lock
    A package you depend on has a known security hole (CVE-2026-54278). Fix: Update that package to its patched version.
  • Worth fixing GHSA-537c-gmf6-5ccf Vulnerable OpenSSL included in cryptography wheels
    uv.lock
    A package you depend on has a known security hole (GHSA-537c-gmf6-5ccf). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-45409 Internationalized Domain Names in Applications (IDNA) for Python provi ...
    uv.lock
    A package you depend on has a known security hole (CVE-2026-45409). Fix: Update that package to its patched version.
  • Worth fixing GHSA-4xgf-cpjx-pc3j pydantic-settings: NestedSecretsSettingsSource follows symlinks outside secrets_dir, enabling local file read and bypassing secrets_dir_max_size
    uv.lock
    A package you depend on has a known security hole (GHSA-4xgf-cpjx-pc3j). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-48526 python-pyjwt: PyJWT: Authentication bypass due to forged JSON Web Tokens
    uv.lock
    A package you depend on has a known security hole (CVE-2026-48526). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-48522 python-pyjwt: PyJWT: Server-Side Request Forgery (SSRF) via uncontrolled URL fetching in PyJWKClient
    uv.lock
    A package you depend on has a known security hole (CVE-2026-48522). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-48523 python-pyjwt: PyJWT: Verifier-side algorithm bypass leads to unauthorized information access
    uv.lock
    A package you depend on has a known security hole (CVE-2026-48523). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-48525 python-pyjwt: PyJWT: Denial of Service via processing of crafted detached JWS tokens
    uv.lock
    A package you depend on has a known security hole (CVE-2026-48525). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-53539 Python-Multipart is a streaming multipart parser for Python. Prior to ...
    uv.lock
    A package you depend on has a known security hole (CVE-2026-53539). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-48818 starlette: Starlette: SSRF and NTLM credential theft via UNC paths in StaticFiles on Windows
    uv.lock
    A package you depend on has a known security hole (CVE-2026-48818). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-54283 Starlette is a lightweight ASGI framework/toolkit. From 0.4.1 until 1. ...
    uv.lock
    A package you depend on has a known security hole (CVE-2026-54283). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-48710 starlette: Starlette: Security restriction bypass via malformed HTTP Host header
    uv.lock
    A package you depend on has a known security hole (CVE-2026-48710). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-48817 starlette: Starlette: Information disclosure and unintended method execution via non-standard HTTP methods
    uv.lock
    A package you depend on has a known security hole (CVE-2026-48817). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-44431 urllib3: urllib3: Information disclosure via cross-origin redirects forwarding sensitive headers
    uv.lock
    A package you depend on has a known security hole (CVE-2026-44431). Fix: Update that package to its patched version.
  • Worth fixing CVE-2026-44432 urllib3: urllib3: Denial of Service due to excessive HTTP response decompression
    uv.lock
    A package you depend on has a known security hole (CVE-2026-44432). Fix: Update that package to its patched version.
  • Minor CVE-2026-50269 AIOHTTP is an asynchronous HTTP client/server framework for asyncio an ...
    uv.lock
    A package you depend on has a known security hole (CVE-2026-50269). Fix: Update that package to its patched version.
  • Minor CVE-2026-54275 aiohttp: AIOHTTP: TLS SNI check bypass via connection reuse
    uv.lock
    A package you depend on has a known security hole (CVE-2026-54275). Fix: Update that package to its patched version.
  • Minor CVE-2026-54279 aiohttp: AIOHTTP: Host-Only Cookies Become Domain Cookies After CookieJar Persistence
    uv.lock
    A package you depend on has a known security hole (CVE-2026-54279). Fix: Update that package to its patched version.
  • Minor CVE-2026-54280 AIOHTTP is an asynchronous HTTP client/server framework for asyncio an ...
    uv.lock
    A package you depend on has a known security hole (CVE-2026-54280). Fix: Update that package to its patched version.
… 5 more not shown

via Trivy v0.70.0 · Apache-2.0

Known OSS vulnerabilities — OSV-Scanner 33 found

Your dependencies cross-checked against the OSV vulnerability database.

  • Worth fixing GHSA-4fvr-rgm6-gqmc aiohttp: HTTP/1 Pipelined Requests Queue Without Limit
    /workdirs/scan-ca055498-f358-48db-ac8a-2976eee638ce/uv.lock
    A package you depend on has a known security hole (CVE-2026-54273). Fix: Update that package to its patched version.
  • Worth fixing GHSA-63hw-fmq6-xxg2 aiohttp: C HTTP Parser Bypasses max_line_size for Fragmented Lines
    /workdirs/scan-ca055498-f358-48db-ac8a-2976eee638ce/uv.lock
    A package you depend on has a known security hole (CVE-2026-54277). Fix: Update that package to its patched version.
  • Worth fixing GHSA-g3cq-j2xw-wf74 aiohttp: Unread Compressed Request Bodies Bypass client_max_size During Cleanup
    /workdirs/scan-ca055498-f358-48db-ac8a-2976eee638ce/uv.lock
    A package you depend on has a known security hole (CVE-2026-54278). Fix: Update that package to its patched version.
  • Worth fixing GHSA-hg6j-4rv6-33pg AIOHTTP is vulnerable to cross-origin redirect with per-request cookies
    /workdirs/scan-ca055498-f358-48db-ac8a-2976eee638ce/uv.lock
    A package you depend on has a known security hole (CVE-2026-47265). Fix: Update that package to its patched version.
  • Worth fixing GHSA-hpj7-wq8m-9hgp aiohttp: DigestAuthMiddleware Applies Credentials to Cross-Origin Redirect Challenges
    /workdirs/scan-ca055498-f358-48db-ac8a-2976eee638ce/uv.lock
    A package you depend on has a known security hole (CVE-2026-54276). Fix: Update that package to its patched version.
  • Worth fixing GHSA-jg22-mg44-37j8 AIOHTTP is Vulnerable to Deserialization of Untrusted Data
    /workdirs/scan-ca055498-f358-48db-ac8a-2976eee638ce/uv.lock
    A package you depend on has a known security hole (CVE-2026-34993). Fix: Update that package to its patched version.
  • Worth fixing GHSA-xcgm-r5h9-7989 aiohttp: Incomplete websocket frame payloads bypass memory limits
    /workdirs/scan-ca055498-f358-48db-ac8a-2976eee638ce/uv.lock
    A package you depend on has a known security hole (CVE-2026-54274). Fix: Update that package to its patched version.
  • Worth fixing GHSA-537c-gmf6-5ccf Vulnerable OpenSSL included in cryptography wheels
    /workdirs/scan-ca055498-f358-48db-ac8a-2976eee638ce/uv.lock
    A package you depend on has a known security hole. Fix: Update that package to its patched version.
  • Worth fixing GHSA-7g5w-pq96-8c5w flash-attention contains an insecure deserialization vulnerability in its checkpoint loading mechanism
    /workdirs/scan-ca055498-f358-48db-ac8a-2976eee638ce/uv.lock
    A package you depend on has a known security hole (CVE-2026-31253). Fix: Update that package to its patched version.
  • Worth fixing PYSEC-2026-215 Internationalized Domain Names in Applications (IDNA) for Python provides support for Internationalized Domain Names in Applications (IDNA) and Unicode IDNA Compatibility Processing. In versions prior
    /workdirs/scan-ca055498-f358-48db-ac8a-2976eee638ce/uv.lock
    A package you depend on has a known security hole (CVE-2026-45409). Fix: Update that package to its patched version.
  • Worth fixing GHSA-4xgf-cpjx-pc3j pydantic-settings: NestedSecretsSettingsSource follows symlinks outside secrets_dir, enabling local file read and bypassing secrets_dir_max_size
    /workdirs/scan-ca055498-f358-48db-ac8a-2976eee638ce/uv.lock
    A package you depend on has a known security hole. Fix: Update that package to its patched version.
  • Worth fixing PYSEC-2026-175 PyJWT is a JSON Web Token implementation in Python. Prior to 2.13.0, PyJWKClient passes its uri argument directly to urllib.request.urlopen() which uses Python stdlib's default OpenerDirector register
    /workdirs/scan-ca055498-f358-48db-ac8a-2976eee638ce/uv.lock
    A package you depend on has a known security hole (CVE-2026-48522). Fix: Update that package to its patched version.
  • Worth fixing PYSEC-2026-178 PyJWT is a JSON Web Token implementation in Python. From 2.8.0 to 2.12.1, when verifying detached JWS tokens using the unencoded-payload option ("b64": false, RFC 7797), PyJWT performs Base64URL decod
    /workdirs/scan-ca055498-f358-48db-ac8a-2976eee638ce/uv.lock
    A package you depend on has a known security hole (CVE-2026-48525). Fix: Update that package to its patched version.
  • Worth fixing PYSEC-2026-179 PyJWT is a JSON Web Token implementation in Python. Prior to 2.13.0, when the verifier is decoding JSON Web Tokens, while supporting both asymmetric and HMAC algorithms, the library does not validate
    /workdirs/scan-ca055498-f358-48db-ac8a-2976eee638ce/uv.lock
    A package you depend on has a known security hole (CVE-2026-48526). Fix: Update that package to its patched version.
  • Worth fixing GHSA-jq35-7prp-9v3f PyJWT: Algorithm allow-list bypass when decoding with `PyJWK` / `PyJWKClient` keys
    /workdirs/scan-ca055498-f358-48db-ac8a-2976eee638ce/uv.lock
    A package you depend on has a known security hole (CVE-2026-48523). Fix: Update that package to its patched version.
  • Worth fixing GHSA-5rvq-cxj2-64vf python-multipart: Quadratic-time querystring parsing with semicolon separators causes CPU denial of service
    /workdirs/scan-ca055498-f358-48db-ac8a-2976eee638ce/uv.lock
    A package you depend on has a known security hole (CVE-2026-53539). Fix: Update that package to its patched version.
  • Worth fixing PYSEC-2026-161 BadHost: Missing Host header validation poisons request.url.path, bypassing path-based security checks
    /workdirs/scan-ca055498-f358-48db-ac8a-2976eee638ce/uv.lock
    A package you depend on has a known security hole (CVE-2026-48710). Fix: Update that package to its patched version.
  • Worth fixing GHSA-82w8-qh3p-5jfq Starlette: request.form() limits silently ignored for application/x-www-form-urlencoded enable DoS
    /workdirs/scan-ca055498-f358-48db-ac8a-2976eee638ce/uv.lock
    A package you depend on has a known security hole (CVE-2026-54283). Fix: Update that package to its patched version.
  • Worth fixing GHSA-wqp7-x3pw-xc5r Starlette: SSRF and NTLM credential theft via UNC paths in StaticFiles on Windows
    /workdirs/scan-ca055498-f358-48db-ac8a-2976eee638ce/uv.lock
    A package you depend on has a known security hole (CVE-2026-48818). Fix: Update that package to its patched version.
  • Worth fixing GHSA-x746-7m8f-x49c Starlette: Arbitrary HTTP method dispatched to `HTTPEndpoint` attributes via `getattr`
    /workdirs/scan-ca055498-f358-48db-ac8a-2976eee638ce/uv.lock
    A package you depend on has a known security hole (CVE-2026-48817). Fix: Update that package to its patched version.
  • Worth fixing GHSA-rrmf-rvhw-rf47 PyTorch is vulnerable to memory corruption through its torch.jit.script function
    /workdirs/scan-ca055498-f358-48db-ac8a-2976eee638ce/uv.lock
    A package you depend on has a known security hole (CVE-2025-3000). Fix: Update that package to its patched version.
  • Worth fixing PYSEC-2026-141 urllib3 is an HTTP client library for Python. From 1.23 to before 2.7.0, cross-origin redirects followed from the low-level API via ProxyManager.connection_from_url().urlopen(..., assert_same_host=Fal
    /workdirs/scan-ca055498-f358-48db-ac8a-2976eee638ce/uv.lock
    A package you depend on has a known security hole (CVE-2026-44431). Fix: Update that package to its patched version.
  • Worth fixing PYSEC-2026-142 urllib3 is an HTTP client library for Python. From 2.6.0 to before 2.7.0, urllib3 could decompress the whole response instead of the requested portion (1) during the second HTTPResponse.read(amt=N) ca
    /workdirs/scan-ca055498-f358-48db-ac8a-2976eee638ce/uv.lock
    A package you depend on has a known security hole (CVE-2026-44432). Fix: Update that package to its patched version.
  • Minor GHSA-2fqr-mr3j-6wp8 aiohttp: Host-Only Cookies Become Domain Cookies After CookieJar Persistence
    /workdirs/scan-ca055498-f358-48db-ac8a-2976eee638ce/uv.lock
    A package you depend on has a known security hole (CVE-2026-54279). Fix: Update that package to its patched version.
  • Minor GHSA-4m7w-qmgq-4wj5 aiohttp: TLS Server Hostname Override Is Ignored When Reusing HTTPS Connections
    /workdirs/scan-ca055498-f358-48db-ac8a-2976eee638ce/uv.lock
    A package you depend on has a known security hole (CVE-2026-54275). Fix: Update that package to its patched version.
… 8 more not shown

via OSV-Scanner v1.9.2 · Apache-2.0

Risky code patterns — Semgrep none found ✓

Code that can be exploited — injection, hardcoded credentials and similar.

Nothing found by this check. ✓

via Semgrep v1.147.0 · LGPL-2.1

Malicious dependencies — Guarddog couldn’t run

Packages that look intentionally malicious — typosquats, sneaky install scripts.

This check didn’t finish — that’s not the same as “clean.” Try Check again above.

via Guarddog v2.10.0 · Apache-2.0

error: pypi:Traceback (most recent call last): File "/usr/local/bin/guarddog", line 5, in <module> from guarddog.cli import cl

Project health

A signal about how the project is maintained — not a vulnerability in your code. It doesn’t affect the verdict above.

Project health — OpenSSF Scorecard 9 notes

Maintenance & supply-chain hygiene. A signal about the project — not a vulnerability in your code.

  • Worth fixing scorecard-overall OpenSSF Scorecard overall: 3.0/10
    A project-health signal (maintenance / supply-chain hygiene) — not a vulnerability in your code.
  • Minor scorecard-CI-Tests CI-Tests scored 0: 0 out of 1 merged PRs checked by a CI test -- score normalized to 0
    A project-health signal (maintenance / supply-chain hygiene) — not a vulnerability in your code.
  • Minor scorecard-CII-Best-Practices CII-Best-Practices scored 0: no effort to earn an OpenSSF best practices badge detected
    A project-health signal (maintenance / supply-chain hygiene) — not a vulnerability in your code.
  • Minor scorecard-Code-Review Code-Review scored 0: Found 0/26 approved changesets -- score normalized to 0
    A project-health signal (maintenance / supply-chain hygiene) — not a vulnerability in your code.
  • Minor scorecard-Dependency-Update-Tool Dependency-Update-Tool scored 0: no update tool detected
    A project-health signal (maintenance / supply-chain hygiene) — not a vulnerability in your code.
  • Minor scorecard-Fuzzing Fuzzing scored 0: project is not fuzzed
    A project-health signal (maintenance / supply-chain hygiene) — not a vulnerability in your code.
  • Minor scorecard-Pinned-Dependencies Pinned-Dependencies scored 0: dependency not pinned by hash detected -- score normalized to 0
    A project-health signal (maintenance / supply-chain hygiene) — not a vulnerability in your code.
  • Minor scorecard-SAST SAST scored 0: SAST tool is not run on all commits -- score normalized to 0
    A project-health signal (maintenance / supply-chain hygiene) — not a vulnerability in your code.
  • Minor scorecard-Security-Policy Security-Policy scored 0: security policy file not detected
    A project-health signal (maintenance / supply-chain hygiene) — not a vulnerability in your code.

via OpenSSF Scorecard v5.5.0 · Apache-2.0

About these results. Six open-source checks ran in parallel; every finding is tagged with the tool that produced it. The verdict follows a published rule. False positives and false negatives are normal — a clean scan does not mean the code is secure, and a red verdict does not mean the project is compromised.