cdeust/Cortex

v3.16.0 Security

This release includes 1 security fix for security teams reviewing exposed deployments.

Published 21d MCP Data & Storage

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

This release patches 1 known CVE

Topics

agent-memory-system anthropic artificial-intelligence causal-inference claude claude-code

+14 more

claude-code-plugin cognitive-architecture cognitive-science episodic-memory hopfield-network llm-memory long-term-memory mcp-server model-context-protocol neuroscience persistent-memory predictive-coding retrieval-augmented-generation vector-db

Affected surfaces

auth deps

ReleasePort's take

Light signal

editorial:auto 13d

v3.16.0 patches CVE-2026-44681 in authlib 1.7.2 and improves wiki stability with page IDs, redirects, and migration support.

Why it matters: Update authlib to 1.7.2 for CVE-2026-44681 patch. Wiki stability improvements—stable page IDs, redirect stubs, bulk migration—enhance reference organization and scale.

Summary

AI summary

CVE‑2026‑44681 security fix in authlib dependency.

Changes in this release

Type	Severity	Summary	CVE
Security	High	authlib upgraded to 1.7.2, fixing CVE-2026-44681 (GHSA-r95x-qfjj-fjj2) authlib upgraded to 1.7.2, fixing CVE-2026-44681 (GHSA-r95x-qfjj-fjj2) Source: granite4.1:30b@2026-05-23-audit Confidence: low	—
Security	Medium	authlib bumped to 1.7.2 fixing CVE-2026-44681 authlib bumped to 1.7.2 fixing CVE-2026-44681 Source: llm_adapter@2026-05-21 Confidence: low	—
Feature
Feature	Medium	Wiki supports richer multi-axis classification system Wiki supports richer multi-axis classification system Source: llm_adapter@2026-05-21 Confidence: high	—
Feature	Medium	Wiki adds Phase 2 pilot migration analyzer with reporting Wiki adds Phase 2 pilot migration analyzer with reporting Source: llm_adapter@2026-05-21 Confidence: high	—
Feature	Medium	Wiki implements stable page IDs and redirect stubs Wiki implements stable page IDs and redirect stubs Source: llm_adapter@2026-05-21 Confidence: high	—
Feature	Medium	Wiki adds handler-layer redirects and bulk migration Wiki adds handler-layer redirects and bulk migration Source: llm_adapter@2026-05-21 Confidence: high	—
Feature	Medium	Wiki filters auto-generated pages from default views Wiki filters auto-generated pages from default views Source: llm_adapter@2026-05-21 Confidence: high	—
Feature	Medium	Wiki re-buckets 8734 file-doc notes to reference Wiki re-buckets 8734 file-doc notes to reference Source: llm_adapter@2026-05-21 Confidence: high	—
Dependency	Medium	urllib3 bumped from 2.6.3 to 2.7.0 urllib3 bumped from 2.6.3 to 2.7.0 Source: llm_adapter@2026-05-21 Confidence: low	—
Bugfix
Bugfix	Medium	Wiki routes codebase_analyze output to kind=reference Wiki routes codebase_analyze output to kind=reference Source: llm_adapter@2026-05-21 Confidence: high	—
Bugfix	Medium	Wiki seed-codebase emits modern kind tags correctly Wiki seed-codebase emits modern kind tags correctly Source: llm_adapter@2026-05-21 Confidence: high	—
Bugfix	Medium	Wiki fixes slug and title leaks in file paths Wiki fixes slug and title leaks in file paths Source: llm_adapter@2026-05-21 Confidence: low	—
Bugfix	Medium	codebase_analyze treats max_files<=0 as unbounded codebase_analyze treats max_files<=0 as unbounded Source: llm_adapter@2026-05-21 Confidence: low	—
Bugfix	Medium	Wiki corrects slug and title leaks that produced .md.md, timestamp slugs, and path titles Wiki corrects slug and title leaks that produced .md.md, timestamp slugs, and path titles Source: granite4.1:30b@2026-05-23-audit Confidence: low	—
Refactor	Medium	Wiki refactors closed enums to data-driven axis registry Wiki refactors closed enums to data-driven axis registry Source: llm_adapter@2026-05-21 Confidence: low	—

Full changelog

release: v3.16.0 — ADR-2244 Phases 2-6.2 (wiki classification redesign complete) (#41)
fix(wiki): seed-codebase emits modern kind tags the classifier reads (ADR-2244 Phase 6.2) (#40)
feat(wiki): filter auto-generated pages from default views (ADR-2244 Phase 5) (#39)
feat(wiki): re-bucket 8734 file-doc notes to reference/ (ADR-2244 Phase 4.2) (#37)
fix(wiki): route codebase_analyze output to kind=reference (ADR-2244 Phase 6) (#38)
feat(wiki): Phases 3.2 + 4.1 — handler-layer redirects + bulk migration onto main (#36)
feat(wiki): stable page IDs + redirect stubs (ADR-2244 Phase 3 foundation) (#33)
docs(wiki): verify Phase 2 pilot on 1000-page sample (96.7% kept) (#32)
feat(wiki): ADR-2244 Phase 2 — pilot migration analyzer + first 100-page report (#31)
fix(deps): bump authlib 1.7.0 → 1.7.2 (CVE-2026-44681 / GHSA-r95x-qfjj-fjj2) (#30)
release: v3.15.4 — ADR-2244 wiki classification redesign (#29)
refactor(wiki): replace closed enums with data-driven axis registry (#28)
feat(wiki): richer multi-axis classification (ADR-2244 Phase 1) (#27)
fix(wiki): plug slug/title leaks producing .md.md, timestamp-slugs, path-titles (#26)
fix(codebase_analyze): default to no file cap, treat max_files<=0 as unbounded (#25)
chore(deps): bump urllib3 in the uv group across 1 directory (#24)

What's Changed

chore(deps): bump urllib3 from 2.6.3 to 2.7.0 in the uv group across 1 directory by @dependabot[bot] in https://github.com/cdeust/Cortex/pull/24
fix(codebase_analyze): default to no file cap, treat max_files<=0 as unbounded by @cdeust in https://github.com/cdeust/Cortex/pull/25
fix(wiki): plug slug/title leaks producing .md.md, timestamp-slugs, path-titles by @cdeust in https://github.com/cdeust/Cortex/pull/26
feat(wiki): richer multi-axis classification (ADR-2244 Phase 1) by @cdeust in https://github.com/cdeust/Cortex/pull/27
refactor(wiki): replace closed enums with data-driven axis registry by @cdeust in https://github.com/cdeust/Cortex/pull/28
release: v3.15.4 — ADR-2244 wiki classification redesign by @cdeust in https://github.com/cdeust/Cortex/pull/29
fix(deps): bump authlib 1.7.0 → 1.7.2 (CVE-2026-44681 / GHSA-r95x-qfjj-fjj2) by @cdeust in https://github.com/cdeust/Cortex/pull/30
feat(wiki): ADR-2244 Phase 2 — pilot migration analyzer + first 100-page report by @cdeust in https://github.com/cdeust/Cortex/pull/31
docs(wiki): verify Phase 2 pilot on 1000-page sample (96.7% kept — passes ADR-2244 target) by @cdeust in https://github.com/cdeust/Cortex/pull/32
feat(wiki): stable page IDs + redirect stubs (ADR-2244 Phase 3 foundation) by @cdeust in https://github.com/cdeust/Cortex/pull/33
feat(wiki): Phases 3.2 + 4.1 — handler-layer redirects + bulk migration onto main by @cdeust in https://github.com/cdeust/Cortex/pull/36
fix(wiki): route codebase_analyze output to kind=reference (ADR-2244 Phase 6) by @cdeust in https://github.com/cdeust/Cortex/pull/38
feat(wiki): re-bucket 8734 file-doc notes to reference/ (ADR-2244 Phase 4.2) by @cdeust in https://github.com/cdeust/Cortex/pull/37
feat(wiki): filter auto-generated pages from default views (ADR-2244 Phase 5) by @cdeust in https://github.com/cdeust/Cortex/pull/39
fix(wiki): seed-codebase emits modern kind tags the classifier reads (ADR-2244 Phase 6.2) by @cdeust in https://github.com/cdeust/Cortex/pull/40
release: v3.16.0 — ADR-2244 Phases 2-6.2 (wiki classification redesign complete) by @cdeust in https://github.com/cdeust/Cortex/pull/41

New Contributors

@dependabot[bot] made their first contribution in https://github.com/cdeust/Cortex/pull/24

Full Changelog: https://github.com/cdeust/Cortex/compare/v3.15.3...v3.16.0

Security Fixes

CVE-2026-44681 — authlib upgraded from 1.7.0 to 1.7.2

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track cdeust/Cortex

Get notified when new releases ship.

About cdeust/Cortex

Persistent memory for Claude Code grounded in computational neuroscience (41 cited papers)