JDP Security Research Series

Vulnerability Disclosures & Technical White Papers (2026)

Welcome to the central portal for the 2026 AI Orchestration Framework Research Series. This repository houses verified vulnerability disclosures, proof-of-concept walk-throughs, and structural defense guidelines targeting major agentic runtime frameworks.

Published Advisories

• JDP-2026-001: Microsoft Semantic Kernel & Agent Framework 1.0 The Orchestration Trust Gap: Remediation Evasions and Incomplete Output Masking (CVSS 10.0).

• JDP-2026-002: Microsoft Agent Framework v1.0.0 Infrastructure Breach: Container Privilege Escalation via Automated Host Socket Mounting (CVSS 10.0).

• JDP-2026-003: LlamaIndex Core Infrastructure Compromise: Path Traversal and Source File Overwrites (CVSS 10.0).

• JDP-2026-004: LangChain Core Architectural Boundary Failures: Remote Code Execution via Symlink Traversal (CVSS 10.0).

• JDP-2026-005: Deepset Haystack Serialization Boundary Evasion: Persistent Framework Integrity Compromise (CVSS 10.0).

---

All research published here is formatted for direct integration into enterprise application security threat models and architectural standards.