Microsoft.OpenApi.Kiota.Builder is vulnerable to Path Traversal
70
High Risk
Kiota honors the per-client and per-plugin outputPath from a committed .kiota/workspace.json workspace configuration without validating it during kiota client generate and kiota plugin generate. A malicious repository or pull request can set outputPath to an absolute or .. traversal path, causing the generated client or plugin to be written to an arbitrary location outside the workspace when a teammate or CI regenerates. This enables arbitrary file write on the developer or CI host. The fix confines each outputPath to a relative subdirectory of the workspace and aborts generation on escape.
You are affected if you are using a version that falls within the vulnerable range and you regenerate clients or plugins from an untrusted workspace configuration.
Microsoft.OpenApi.Kiota.Builder is vulnerable to Path Traversal in versions 0.0.1 - 1.32.4.
Upgrade the Microsoft.OpenApi.Kiota.Builder and/or the Microsoft.OpenApi.Kiota library to the patch version.
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.

SOC 2Compliant
ISO 27001Compliant