cdeust/Cortex

v3.4.3 Security

This release includes 1 security fix for security teams reviewing exposed deployments.

Published 1mo MCP Data & Storage

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

This release patches 1 known CVE

Topics

agent-memory-system anthropic artificial-intelligence causal-inference claude claude-code

+14 more

claude-code-plugin cognitive-architecture cognitive-science episodic-memory hopfield-network llm-memory long-term-memory mcp-server model-context-protocol neuroscience persistent-memory predictive-coding retrieval-augmented-generation vector-db

Affected surfaces

auth rce_ssrf

Summary

AI summary

Fixed CORS headers for discussion detail fetch.

Full changelog

fix: cross-platform MCP via uvx, hooks via python detection
fix: break CodeQL taint chain — separate subcommand and args parameters
fix: remove unused os import in git_diff.py
fix: sever CodeQL taint chain in subprocess.run — use _GIT_BINARY + fresh list
fix: CORS headers for discussion detail fetch
fix: format session_start.py
fix: whitelist-based path security + deprecated utcnow

Full Changelog: https://github.com/cdeust/Cortex/compare/v3.4.2...v3.4.3

Security Fixes

Whitelist-based path security tightened and utcnow deprecated

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track cdeust/Cortex

Get notified when new releases ship.

About cdeust/Cortex

Persistent memory for Claude Code grounded in computational neuroscience (41 cited papers)

All releases →

cdeust/Cortex

Summary

Security Fixes

Related context

Related tools