Interface●Since v1.1

LoadOptions

Options for loading serialized LangChain objects.

interface LoadOptions

Security considerations:

Deserialization can instantiate arbitrary classes from the allowed namespaces. When loading untrusted data, be aware that:

secretsFromEnv: Defaults to false. Setting to true allows the deserializer to read environment variables, which could leak secrets if the serialized data contains malicious secret references.
importMap / optionalImportsMap: These allow extending which classes can be instantiated. Never populate these from user input. Only include modules you explicitly trust.
Class instantiation: Allowed classes will have their constructors called with the deserialized kwargs. If a class performs side effects in its constructor (network calls, file I/O, etc.), those will execute.

Properties

property

importMap: Record<string, unknown>

Additional import map for the "langchain" namespace.

Security warning: This extends which classes can be instantiated during deserialization. Never populate this map with values derived from user input. Only include modules that you explicitly trust and have reviewed.

Any class exposed through this map can be instantiated with attacker-controlled kwargs if the serialized data is untrusted.

property

maxDepth: number

Maximum recursion depth allowed during deserialization.

This limit protects against denial-of-service attacks using deeply nested JSON structures that could cause stack overflow. If your legitimate data requires deeper nesting, you can increase this limit.

property

optionalImportEntrypoints: string[]

Additional optional import entrypoints to allow beyond the defaults.

Security warning: This extends which namespace paths are considered valid for deserialization. Never populate this array with values derived from user input. Each entrypoint you add expands the attack surface for deserialization.

property

optionalImportsMap: OptionalImportMap

A map of optional imports. Keys are namespace paths (e.g., "langchain_community/llms"), values are the imported modules.

Classes in these modules can be instantiated with attacker-controlled kwargs if the serialized data is untrusted.

property

secretsFromEnv: boolean

Whether to load secrets from environment variables when not found in secretsMap.

Security warning: Setting this to true allows the deserializer to read environment variables, which could be a security risk if the serialized data is not trusted. Only set this to true when deserializing data from trusted sources (e.g., your own database, not user input).

property

secretsMap: SecretMap

A map of secrets to load. Keys are secret identifiers, values are the secret values.

If a secret is not found in this map and secretsFromEnv is false, an error is thrown. If secretsFromEnv is true, the secret will be loaded from environment variables (if not found there either, an error is thrown).

View source on GitHub

Properties

property

importMap: Record<string, unknown>

Additional import map for the "langchain" namespace.

Any class exposed through this map can be instantiated with attacker-controlled kwargs if the serialized data is untrusted.

property

maxDepth: number

Maximum recursion depth allowed during deserialization.

property

optionalImportEntrypoints: string[]

Additional optional import entrypoints to allow beyond the defaults.

property

optionalImportsMap: OptionalImportMap

A map of optional imports. Keys are namespace paths (e.g., "langchain_community/llms"), values are the imported modules.

Classes in these modules can be instantiated with attacker-controlled kwargs if the serialized data is untrusted.

property

secretsFromEnv: boolean

Whether to load secrets from environment variables when not found in secretsMap.

property

secretsMap: SecretMap

A map of secrets to load. Keys are secret identifiers, values are the secret values.

LoadOptions

Properties

LangChain Assistant

Menu

LoadOptions

Properties