This release includes 1 security fix for security teams reviewing exposed deployments.
Published 1mo
MCP Data & Storage
✓ No known CVEs patched
This release patches 1 known CVE
Topics
agent-memory-system
anthropic
artificial-intelligence
causal-inference
claude
claude-code
+14 more
claude-code-plugin
cognitive-architecture
cognitive-science
episodic-memory
hopfield-network
llm-memory
long-term-memory
mcp-server
model-context-protocol
neuroscience
persistent-memory
predictive-coding
retrieval-augmented-generation
vector-db
Affected surfaces
rce_ssrf
Summary
AI summaryFixed command injection vulnerabilities (CodeQL CWE-78).
Full changelog
- fix: resolve ruff lint errors — unused/missing EmbeddingEngine imports
- release: v3.9.0 — engram slot cache (#11) + safe GPU embedding (#10)
- feat: safe GPU auto-detection for embedding engine (#10)
- perf: cache engram slots + COUNT(*) for allocate_engram_slot (#11)
- feat: sync all agents, skills, commands, hooks, tools from zetetic-team-subagents
- fix: remove unauthorized attribution from all agent files
- style: "powered by ai-architect.tools" right-aligned on two lines
- style: unify brand identity — teal accent + ai-architect.tools tag
- feat: add ASCII art banner — SVG for GitHub README
- security: fix command injection vectors (CodeQL CWE-78)
- docs: compiled arxiv PDF + LinkedIn endorser post draft
- fix: remove unused StageDetector import (ruff F401)
- style: ruff format run_benchmark + stage_detector
- feat: temporal assembler beats oracle — 0.471 MRR (+33.4%) on BEAM-10M
- fix: apply genius review corrections across all docs
- docs: arxiv-ready LaTeX paper for cs.IR submission
- fix: replace all LaTeX with Unicode + code blocks for GitHub rendering
- fix: LaTeX syntax issues in research papers
- docs: rewrite science.md + research post as arxiv-style papers
- docs: add per-category breakdowns under each benchmark
- docs: update agent count to 27 specialists
- docs: full narrative README rewrite — Zikkaron-style tutorial
- docs: full narrative README — hook, scenario, benchmarks with context
- docs: add auto-wiki feature + science table with brain analogies
- fix: remove unused own_budget variable (ruff F841)
- docs: move Scientific Foundation above Benchmarks
- docs: slim README from 680 to 416 lines — product page, not paper
- docs: slim README to product page, move science to docs/
- docs: rewrite How It Works + Architecture in plain language
- docs: reorganize scientific foundation into plain-language results
- style: ruff format all context_assembly + benchmark files
- docs: link README to public ai-prd-builder origin, not private repo
- docs: trace architecture origin to ai-prd-builder (public, Sep 2025)
- docs: add verifiable commit SHAs for prior art provenance
- docs: update README with BEAM-10M scores + research post
- feat: structured context assembly — 21.5% BEAM-10M improvement
Full Changelog: https://github.com/cdeust/Cortex/compare/v3.8.0...v3.9.0
Security Fixes
- CVE not provided — fixed command injection vectors (CodeQL CWE-78)
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About cdeust/Cortex
Persistent memory for Claude Code grounded in computational neuroscience (41 cited papers)
Related context
Beta — feedback welcome: [email protected]