CVE-2026-24056: pnpm has symlink traversal in file:/git dependencies

January 26, 2026 (updated January 29, 2026)

When pnpm installs a file: (directory) or git: dependency, it follows symlinks and reads their target contents without constraining them to the package root. A malicious package containing a symlink to an absolute path (e.g., /etc/passwd, ~/.ssh/id_rsa) causes pnpm to copy that file’s contents into node_modules, leaking local data.

Preconditions: Only affects file: and git: dependencies. Registry packages (npm) have symlinks stripped during publish and are NOT affected.

References

github.com/advisories/GHSA-m733-5w8f-5ggw
github.com/pnpm/pnpm
github.com/pnpm/pnpm/commit/b277b45bc35ae77ca72d7634d144bbd58a48b70f
github.com/pnpm/pnpm/releases/tag/v10.28.2
github.com/pnpm/pnpm/security/advisories/GHSA-m733-5w8f-5ggw
nvd.nist.gov/vuln/detail/CVE-2026-24056

Code Behaviors & Features

Detect and mitigate CVE-2026-24056 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →