CVE-2026-43940: Ai Schema Authtype Missing Profile Constraint
The 'authType' schema field lists 'profiles' as a valid authentication type but omits the constraint that 'authType' must be 'profiles' whenever a profile ID is referenced in the 'profile' field. When this schema object is serialized verbatim into an AI/LLM prompt, the model will generate configurations with an incorrect authType (e.g., 'password'), silently
greprules fetch cve-2026-43940-ai-schema-authtype-missing-profile-constraint --engine opengrepDescription
The 'authType' schema field lists 'profiles' as a valid authentication type but omits the constraint that 'authType' must be 'profiles' whenever a profile ID is referenced in the 'profile' field. When this schema object is serialized verbatim into an AI/LLM prompt, the model will generate configurations with an incorrect authType (e.g., 'password'), silently
Detection target
Not provided
Recommended fix
Not provided
False-positive notes
Not provided
Community feedback
Sign in to report false positives, mark this rule useful, or suggest metadata improvements.