AIKIDO-2026-10918

TL;DR

Affected versions of this package allowed resource-scoped tokens to bypass per-resource restrictions when calling listing endpoints such as list_search_resources, list_resources, list_names, and list_variables, exposing paths and values from unrelated workspace resources. An attacker with a token limited to one resource could abuse these endpoints to enumerate and read other stored data, including integration credentials, API keys, database connection strings, and other non-secret or secret values, because authorization was enforced only at the route level and not per returned row.