openhands-sdk is vulnerable to Exposure of Sensitive Information
45
Medium Risk
The ACP agent stores environment variables and credentials in its acp_env field, which had no masking serializer. When the agent or conversation state is serialized to persisted storage, trajectory exports, or settings API responses, acp_env values are written in plaintext. An actor with access to that serialized output can read the stored credentials. The fix adds a field serializer that masks or encrypts acp_env values through the canonical serialize_secret helper.
You are affected if you are using a version that falls within the vulnerable range and configure the ACP agent's acp_env field with sensitive credentials.
openhands-sdk is vulnerable to Exposure of Sensitive Information in versions 1.12.0 - 1.20.0.
Upgrade the openhands-sdk library to the patch version.
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.

SOC 2Compliant
ISO 27001Compliant