CVE-2026-47407: Python Agent Tool Static File Operation
An AI Agent tool or skill performs file operations within a `@staticmethod` or `@classmethod`. In multi-tenant or workspace-based platforms, stateless methods lack access to instance-level execution contexts (e.g., `self.workspace`). This architectural pattern prevents effective path sandboxing and authorization checks per tenant, potentially allowing path t
greprules fetch cve-2026-47407-python-agent-tool-static-file-operation --engine opengrepDescription
An AI Agent tool or skill performs file operations within a `@staticmethod` or `@classmethod`. In multi-tenant or workspace-based platforms, stateless methods lack access to instance-level execution contexts (e.g., `self.workspace`). This architectural pattern prevents effective path sandboxing and authorization checks per tenant, potentially allowing path t
Detection target
Not provided
Recommended fix
Not provided
False-positive notes
Not provided
Community feedback
Sign in to report false positives, mark this rule useful, or suggest metadata improvements.