{"schema_version":"1.6.0","id":"ROOT-APP-NPM-CVE-2026-45134","modified":"2026-06-08T06:38:18Z","published":"2026-06-08T06:38:18Z","upstream":["CVE-2026-45134"],"summary":"CVE-2026-45134 in @rootio/langsmith - Patched by Root","details":"Root has patched CVE-2026-45134 in the @rootio/langsmith package for Root:npm. Multiple fixed versions available.","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N"}],"affected":[{"package":{"name":"@rootio/langsmith","ecosystem":"Root:npm"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.5.19-root.io.2"},{"fixed":"0.3.29-root.io.4"},{"fixed":"0.3.29-root.io.3"},{"fixed":"0.5.19-root.io.1"},{"fixed":"0.3.29-root.io.5"},{"fixed":"0.3.29-root.io.6"}]}],"database_specific":{"all_fixed_versions":["0.5.19-root.io.2","0.3.29-root.io.4","0.3.29-root.io.3","0.5.19-root.io.1","0.3.29-root.io.5","0.3.29-root.io.6"],"root_patch_version":"","root_patched":true,"total_fixed_versions":6,"upstream_version":"0.3.29-root.io.6"}},{"package":{"name":"langsmith","ecosystem":"Root:npm"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.5.19-aikido.2"},{"fixed":"0.3.29-aikido.4"},{"fixed":"0.3.29-aikido.5"},{"fixed":"0.3.29-aikido.6"}]}],"database_specific":{"all_fixed_versions":["0.5.19-aikido.2","0.3.29-aikido.4","0.3.29-aikido.5","0.3.29-aikido.6"],"root_patch_version":"","root_patched":true,"total_fixed_versions":4,"upstream_version":"0.3.29-aikido.6"}}],"database_specific":{"distro":"npm","distro_version":"","severity":"HIGH","source":"Root"}}