REPRO-2026-00062 HIGH RCE Verified

langgraph-checkpoint: Constructor Deserialization RCE in JsonPlusSerializer

langgraph-checkpoint (pip) Jan 12, 2026

Open in Codespaces Download Script

Confidence HIGH

Reproduced in 1m 7s

Tool calls 6

Affected < 3.0.0

Fixed in 3.0.0

What's the vulnerability?

Constructor deserialization vulnerability in langgraph-checkpoint's JsonPlusSerializer allows RCE when attacker can persist untrusted data into checkpoints

Root Cause Analysis

One Command

Verify with pruva-verify

Run the Pruva CLI to automatically fetch and execute the reproduction script.

pruva-verify REPRO-2026-00062

or pruva-verify GHSA-wwqv-p2pp-99h5

or pruva-verify CVE-2025-64439

Install: curl -fsSL https://pruva.dev/install.sh | sh

Or Run Manually

Download the script

curl -O https://pruva.dev/api/v1/reproductions/REPRO-2026-00062/artifacts/repro/reproduction_steps.sh

Make executable

chmod +x reproduction_steps.sh

Run the script

./reproduction_steps.sh

Run in a VM, container, or disposable environment. This exploits a real vulnerability.

How Pruva Reproduced This

Watch the AI agent's step-by-step process.

Loading session...

Artifacts

repro/reproduction_steps.sh5.2 KB

repro/rca_report.md3.8 KB

bundle/ticket.md1.8 KB

bundle/context.json0.7 KB

repro/logs/result.json0.3 KB

repro/logs/vulnerable.log0.6 KB

repro/logs/patched.log0.7 KB