AIKIDO-2026-10545
autogen is vulnerable to Insecure Deserialization
75
High Risk
This Affects:
autogenTL;DR
The PyPI autogen distribution in this line pins the ag2 package to the same version number, so every install of those releases pulls in a matching ag2 that previously required the diskcache stack and its pickle-based on-disk cache path. That dependency chain is affected by the same cache deserialization issue referenced in the upstream advisory. Versions that pin ag2 before the optional diskcache change inherit that exposure through the ag2 install. The patch release updates the pin so a ag2 build that makes disk caching optional and defaults to in-memory storage is what gets installed when you move to the patch version.
Who does this affect?
You are affected if you are using a version that falls within the vulnerable range.
Background info
autogen is vulnerable to Insecure Deserialization in versions 0.9.2 - 0.11.5.
How to fix this
Upgrade the autogen library to the patch version.
Links
GitHub Release
Other
github.com/EthanKim88/ethan-cve-disclosures/blob/main/CVE-2025-69872-DiskCache-Pickle-Deserialization.mdgithub.com/grantjenks/python-diskcache
Are You Affected?
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.
SOC 2Compliant
ISO 27001Compliant