Live data from GitHub and PyPI, updated daily.
Data last fetched: 2026-06-29
6 active CVEs reported via OSV.dev
Cross-Site Request Forgery vulnerability in Prefect
Prefect CORS (Cross-Origin Resource Sharing) misconfiguration
Prefect Git Argument Injection in GitRepository Pull Steps
Prefect Auth Bypass via endswith() Health Check Exemption
Prefect Unauthenticated Event Injection via /api/events/in WebSocket
Prefect SSRF Bypass via DNS Rebinding in validate_restricted_url
Other Workflow projects in the Python ecosystem worth evaluating.
Get SLA-backed support, security patches, and direct access to senior engineers for Prefect — without relying on volunteer maintainers.