OsVault/npm/opencode-ai
npm

opencode-ai

2 known vulnerabilities · 0 critical · 0 high

CVE-2026-22812

OpenCode's Unauthenticated HTTP Server Allows Arbitrary Command Execution

Published Jan 13, 2026
CVE-2026-22813

Malicious website can execute commands on the local system through XSS in the OpenCode web UI

Published Jan 13, 2026
Check your entire dependency tree at onceRun dependency scan →