HIGH PyPI
GHSA-78v8-vpjp-cjqh · CVE-2026-47764 PDM wheel installation leads to Path Traversal via overridden write_to_fs
Modified: 6/10/2026
package
PyPI / pdm
pkg:pypi/pdm
MEDIUM PyPI
GHSA-ghq2-5c67-fprm · CVE-2026-47763 PDM: Project-Local State and Config Writes Follow Symlinks
Modified: 6/10/2026
HIGH 7.8 PyPI
GHSA-j44v-mmf2-xvm9 · CVE-2023-45805 PDM Trojan Lockfile
Modified: 2/16/2024