Workflow

PyPi: Langfuse

CVE-2025-27152

Transitive

Safety vulnerability ID: 75964

This vulnerability was reviewed by experts

The information on this page was manually curated by our Cybersecurity Intelligence Team.

Created at Mar 07, 2025 Updated at Mar 24, 2025
Scan your Python projects for vulnerabilities →

Advisory

Langfuse upgrades its axios dependency to 1.8.2 due to the CVE-2025-27152.

Affected package

langfuse

Latest version: 2.60.2

A client library for accessing langfuse

Affected versions

Fixed versions

Vulnerability changelog

What's Changed
* security: upgrade axios to 1.8.2 by maxdeichmann in https://github.com/langfuse/langfuse/pull/5940


**Full Changelog**: https://github.com/langfuse/langfuse/compare/v2.95.5...v2.95.6

Resources

Use this package?

Scan your Python project for dependency vulnerabilities in two minutes

Scan your application