CVE-2026-40149: Static Method File Operation Sandbox Bypass

File operations in static methods lack instance-level workspace bounds. Ensure file system operations that act on user or agent input enforce sandbox constraints via instance properties.

Provally CuratedPublic repositoryMediumMedium confidenceVerifiedApache-2.0python

greprules fetch cve-2026-40149-static-method-file-operation-sandbox-bypass --engine opengrep

Description

File operations in static methods lack instance-level workspace bounds. Ensure file system operations that act on user or agent input enforce sandbox constraints via instance properties.

Detection target

Not provided

Recommended fix

Not provided

False-positive notes

Not provided

License: Apache-2.0
Source context: Public repository
Source: Provally CVE rule catalog
Validation status: Verified
Trust signals: 109 downloads
0 direct109 via packs
· 0 stars · Trust score 53How trust works
Included packs: 2 packs

Community feedback

Mark useful Report false positive Suggest metadata