@openai/agents-realtime is vulnerable to Improper Authorization
59
Medium Risk
The realtime tool conversion forwards the hosted MCP require_approval policy to the realtime session without validating its shape. Malformed policies, unknown keys, and tools listed in both always and never are passed through unchanged. This can silently weaken or disable the human-in-the-loop approval gate so hosted MCP tool calls run without the intended approval during realtime sessions. The fix normalizes the policy through a shared validator, rejects invalid configurations, and omits it when undefined.
You are affected if you are using a version that falls within the vulnerable range and configure hosted MCP tools with require_approval approval policies.
@openai/agents-realtime is vulnerable to Improper Authorization in versions 0.1.0 - 0.10.0.
Upgrade the @openai/agents-realtime library to the patch version.
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.

SOC 2Compliant
ISO 27001Compliant