CVE-2026-53597 - Prompty: Arbitrary code execution via JavaScript frontmatter in TypeScript loader
CVE ID :CVE-2026-53597 Published : July 16, 2026, 4:19 p.m. | 15 minutes ago Description :Prompty is a markdown file format (.prompty) for LLM prompts. From 2.0.0-alpha.1 until 2.0.0-beta.3, the @prompty/core TypeScript loader in runtime/typescript/packages/core/src/core/loader.ts used...