CVE-2026-5974: FoundationAgents MetaGPT vulnerable to OS Command Injection in metagpt/tools/libs/terminal.py

April 9, 2026 (updated April 10, 2026)

A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.1. The affected element is the function Bash.run in the library metagpt/tools/libs/terminal.py. This manipulation causes os command injection. The attack is possible to be carried out remotely. The project was informed of the problem early through a pull request but has not reacted yet.

References

github.com/FoundationAgents/MetaGPT
github.com/FoundationAgents/MetaGPT/issues/1931
github.com/FoundationAgents/MetaGPT/pull/1940
github.com/advisories/GHSA-fcc8-4q7h-wvwc
nvd.nist.gov/vuln/detail/CVE-2026-5974
vuldb.com/submit/791758
vuldb.com/vuln/356528
vuldb.com/vuln/356528/cti

Code Behaviors & Features

Detect and mitigate CVE-2026-5974 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →