- Published on
swagger-typescript-api, one of npm's most-used OpenAPI-to-TypeScript client generators (~600K downloads/week), shipped four RCE CVEs, an SSRF, and an authorization-token exfiltration. Here's how a single attacker-controlled OpenAPI spec turns a code generator into remote code execution.