js · @openzeppelin/wizardHeads-up
@openzeppelin/wizard: Arbitrary code injection via info.securityContact and info.license fields
Contracts Wizard generators printed info.
What changed
Contracts Wizard generators printed info.securityContact and info.license verbatim into a single-line comment without rejecting line terminators, allowing arbitrary declarations to be injected into generated contracts.
Who it affects
Integrations that fill these fields from untrusted input (e.g., MCP agents). Normal self-service use (web app, AI assistant, CLI, self-hosted API) is not affected.
What to do today
Upgrade @openzeppelin/wizard to the patched version that rejects line terminators in setInfo.
The trail
Collected→
Audited→
Written→
Published