[Security Report] - Vulnerability Disclosure Notification – swagger-parser Library #2206
Description
Hi Team @frantuma @CalemRoelofsSB
I've identified a medium/high severity security vulnerability in the swagger-parser Java library that affects all current versions, including the latest (2.1.30 as of June 2025).
A detailed report, along with a working proof of concept and recommended mitigations, has been sent to your security contact email at:
📧 security@swagger.io
Kindly confirm receipt of the disclosure when convenient. I am happy to assist with verification, testing, or coordinated disclosure if needed.
Thank you!
Best regards,
Jeya Seelan S
🔐 Security Researcher
🌐 https://rootxjs.github.io/