costajohnt/oss-autopilot

vmcp-v5.6.1 scope: mcp Security

This release includes 1 security fix for security teams reviewing exposed deployments.

Published 1d AI Agents & Assistants

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

This release patches 1 known CVE

Topics

ai-agent anthropic claude-code claude-code-plugin cli contribution-tracker

+6 more

developer-tools github github-automation issue-discovery pr-management typescript

ReleasePort's take

Light signal

editorial:auto 1d

The release fences lastMaintainerComment.body at agent‑facing API boundaries.

Why it matters: Security fix severity rated 90 affects the agent‑facing API; operators should apply mcp-v5.6.1 immediately.

Summary

AI summary

Security fix: fenced lastMaintainerComment.body at agent‑facing boundaries.

Changes in this release

Type	Severity	Summary	CVE
Security	Critical	Fences lastMaintainerComment.body at agent-facing boundaries. Fences lastMaintainerComment.body at agent-facing boundaries. Source: llm_adapter@2026-06-12 Confidence: high	—

Full changelog

5.6.1 (2026-06-12)

Bug Fixes

security: fence lastMaintainerComment.body at agent-facing boundaries (#1427) (6707ecf), closes #1420

Security Fixes

Fenced lastMaintainerComment.body at agent‑facing boundaries

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track costajohnt/oss-autopilot

Get notified when new releases ship.

About costajohnt/oss-autopilot

Open source contribution manager with PR tracking across repos, issue discovery, CI failure diagnosis, and maintainer response drafting. Available as CLI, MCP server, and Claude Code plugin.

All releases →