VDB
KO
HIGH 8.1

PYSEC-2026-561

Vanna prompt injection code execution

Details

The Vanna library uses a prompt function to present the user with visualized results, it is possible to alter the prompt using prompt injection and run arbitrary Python code instead of the intended visualization code. Specifically - allowing external input to the library’s “ask” method with "visualize" set to True (default behavior) leads to remote code execution.

Are you affected?

Enter the version of the package you're using.

Affected packages

PyPI / vanna
Introduced in: 0

No fixed version published yet for vanna (pip). Pin to a known-safe version or switch to an alternative.

References