LangSmith Python SDK TracingMiddleware Arbitrary File Read Vulnerability
A security vulnerability in LangSmith SDK's TracingMiddleware allows arbitrary file read via crafted tracing-propagation headers, leading to file exfiltration t
What changed
A security vulnerability in LangSmith SDK's TracingMiddleware allows arbitrary file read via crafted tracing-propagation headers, leading to file exfiltration to LangSmith as trace attachments.
Who it affects
Any server running LangSmith Python SDK's TracingMiddleware exposed to HTTP traffic, especially if untrusted users can send requests. Attackers with workspace trace-read access can retrieve the exfiltrated files.
What to do today
Upgrade the Python SDK to >= 0.8.18 immediately. If upgrade is not possible, do not expose TracingMiddleware to untrusted HTTP traffic and limit workspace trace-read access to trusted members.