Three now-patched security vulnerabilities have been disclosed in LangGraph, an open-source framework used to build multi-agent AI applications. The most serious is a critical chain involving SQL injection that can lead to remote code execution on self-hosted deployments. Organisations running LangGraph on their own infrastructure are at risk if they have not yet applied the available patches.

Security Architect’s Take: Audit all self-hosted LangGraph deployments and apply the latest patches immediately. Additionally, enforce network-level controls to restrict access to LangGraph API endpoints, and review whether untrusted input can reach any SQL-handling functions within your AI agent pipelines.

Original advisory: LangGraph Flaw Chain Exposes Self-Hosted AI Agents to Remote Code Execution