ai

AI SDK by Vercel - build apps like ChatGPT, Claude, Gemini, and more with a single interface for any model using the Vercel AI Gateway or go direct to OpenAI, Anthropic, Google, or any other model provider.

Latest 6.0.198

NPM

91%

Total Score

Maintainer Stability

Dependencies

Maturity

100

Supply Chain

100

Attestations

100

Are you affected? Scan for Free

Vulnerabilities

Title	Versions	Severity
AIKIDO-2026-10999 Pre-CVE Found by Aikido Intel before public disclosure or CVE publication. ai is vulnerable to Server-Side Request Forgery (SSRF) in versions 0.0.1 - 6.0.117.	0.0.1 - 6.0.117	Medium
AIKIDO-2026-11000 Pre-CVE Found by Aikido Intel before public disclosure or CVE publication. ai is vulnerable to Prompt Injection in versions 0.0.1 - 6.0.169.	0.0.1 - 6.0.169	Medium
AIKIDO-2026-10269 Pre-CVE Found by Aikido Intel before public disclosure or CVE publication. ai is vulnerable to Denial of Service (DoS) in versions 0.0.1 - 6.0.83.	0.0.1 - 6.0.83	Medium
CVE-2025-48985 ai is vulnerable to Improper Input Validation in versions 0.0.0 - 5.0.52 and 5.1.0-beta.0 - 5.1.0-beta.9.	0.0.0 - 5.0.525.1.0-beta.0 - 5.1.0-beta.9	Low

Package versions

Maintainers

Direct Dependencies

Dependency	Last Release	Score
@ai-sdk/gateway Version 3.0.126	—	—
@ai-sdk/provider Version 3.0.10	—	—
@opentelemetry/api Version ^1.9.0	—	—
@ai-sdk/provider-utils Version 4.0.27	—	—