GuardDog versions 2.6.0 to 2.9.0 include attacker-controlled filenames, file locations, messages, and code snippets in their default human-readable output without escaping terminal control characters. This improper encoding or escaping (CWE-116) allows malicious PyPI packages to inject ANSI or OSC escape sequences into terminals or CI logs, potentially causing unintended terminal behavior or log manipulation. The vulnerability has a CVSS 3.1 base score of 5.0, reflecting medium severity with local attack vector, low complexity, no privileges required, but user interaction necessary and scope changed. No official patch or remediation guidance is currently provided by DataDog.

The vulnerability allows a malicious PyPI package to inject terminal control sequences into the output of the GuardDog CLI tool, which could manipulate terminal display or CI logs. This may lead to confusion or misinterpretation of logs by analysts but does not directly result in code execution or system compromise. The impact is limited to confidentiality and integrity of terminal output and logs, with no reported availability impact. No known exploits are currently observed in the wild.

Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is released, users should exercise caution when analyzing untrusted PyPI packages with affected GuardDog versions. Consider running GuardDog in isolated environments or with output redirection to mitigate potential terminal manipulation. Monitor DataDog communications for updates on patches or official mitigations.