Package impact
npm / @anthropic-ai/sdk
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-41686 | medium | 4.4 | 4.4 | 25d ago | Claude SDK for TypeScript has Insecure Default File Permissions in Local Filesystem Memory Tool | |||
| CVE-2026-34451 | unknown | — | — | 2mo ago | Claude SDK for TypeScript: Memory Tool Path Validation Allows Sandbox Escape to Sibling Directories |