langsmith-sdk — Vulnerabilities & Security Advisories 3

All 3 CVE vulnerabilities found in langsmith-sdk, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2026-41182	LangSmith SDK: Streaming token events bypass output redaction CWE-200	5.3	Medium	2026-04-23
CVE-2026-40190	LangSmith Client SDKs has Prototype Pollution in langsmith-sdk via Incomplete `__proto__` Guard in Internal lodash `set()` CWE-1321	5.6	Medium	2026-04-10
CVE-2026-25528	LangSmith Client SDK Affected by Server-Side Request Forgery via Tracing Header Injection CWE-918	5.8	Medium	2026-02-09

All 3 known CVE vulnerabilities affecting langsmith-sdk with full Chinese analysis, references, and POCs where available.