โ Back to Database
Dependency Confusion in Agent Toolchains
๐ด CRITICAL
structural
proven
AVE-2025-0084
ยท aka: Package Squatting
Summary
Agent's tool dependencies are replaced with malicious packages through name confusion in package registries.
Blast Radius
Arbitrary code execution through dependency resolution.
Prerequisites
Agent with automatic dependency resolution.
Environment
- Frameworks: LangGraph
- Models tested: [Available in NAIL SDK]
- Multi-agent: No
- Tools required: Yes
- Memory required: No