The scanner detected YAML content with patterns that could lead to security vulnerabilities. YAML is a powerful configuration format that, when parsed unsafely, can execute code or cause denial of service.
YAML content contains patterns that could be exploited
The scanner detected YAML content with patterns that could lead to security vulnerabilities. YAML is a powerful configuration format that, when parsed unsafely, can execute code or cause denial of service.
YAML deserialization vulnerabilities are a well-known attack vector. Dangerous patterns include:
!!python/object or Ruby's !ruby/object can execute arbitrary codeReview the YAML content:
!!python or !ruby tags โ these are almost never needed in agent memory