CVE-2026-31246: GPT-Pilot contains a command injection vulnerability in the Executor.run() method

May 11, 2026 (updated May 27, 2026)

GPT-Pilot thru commit 0819827ce20346ef5f25b3fe29293cb448840565 (2025-09-03) contains a command injection vulnerability (CWE-78) in the Executor.run() method. During project execution, when the system prompts the user to confirm or modify a command to be run, it accepts free-text input without proper validation. The user-supplied input is directly passed to asyncio.create_subprocess_shell() for execution. This allows an attacker to replace the intended command with arbitrary shell commands, leading to remote code execution with the privileges of the GPT-Pilot process.

References

github.com/Pythagora-io/gpt-pilot
github.com/advisories/GHSA-m85w-whwh-qvfx
nvd.nist.gov/vuln/detail/CVE-2026-31246
www.notion.so/CVE-2026-31246-35d1e1393188812ea3c6c88ad28d3d57

Code Behaviors & Features

Detect and mitigate CVE-2026-31246 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →