AIKIDO-2026-10979
hindsight-api-slim is vulnerable to Improper Neutralization of Special Elements Used in a Template Engine
78
High Risk
This Affects:
hindsight-api-slimTL;DR
Several prompt builders passed bank-configurable text (mission descriptions, custom instructions, role sections) directly into Python's str.format() without escaping, meaning any {placeholder} in that text would be interpreted as a format variable. An attacker with control over bank configuration fields could craft a mission string like {"role": "admin"} to trigger a KeyError crash (DoS), or more critically, inject {some_existing_variable} to leak internal prompt template variables, or manipulate format substitution to alter the final system prompt sent to the LLM; potentially overriding intended behavior, escalating privileges within the AI's context, or bypassing role/mission constraints entirely.
Who does this affect?
You are affected if you are using a version that falls within the vulnerable range.
Background info
hindsight-api-slim is vulnerable to Improper Neutralization of Special Elements Used in a Template Engine in versions 0.4.0 - 0.6.2.
How to fix this
Upgrade the hindsight-api-slim library to the patch version.
Are You Affected?
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.
SOC 2Compliant
ISO 27001Compliant