CVE-2026-44220

Name of the Vulnerable Software and Affected Versions ciguard versions 0.8.0 through 0.8.1

Description The discover pipeline files() function in src/ciguard/discovery.py improperly handles symlinks when walking a directory tree. An attacker who can place a symlink in a directory being scanned can force the tool to access and return paths to files outside the intended root directory. This can lead to a confused-deputy scenario where an AI agent or user inadvertently exposes sensitive files, such as those in ~/.aws/, ~/.config/, or /etc/, which may contain hardcoded secrets, internal hostnames, or deploy keys.

Recommendations Update ciguard to version 0.8.2 or later. As a temporary workaround, restrict the tool from scanning directories containing untrusted symlinks.