Skip to content

escapeboy/agent-fleet-o

v1.13.0 Security

This release includes 2 security fixes for security teams reviewing exposed deployments.

Published 2mo AI Agents & Assistants
✓ No known CVEs patched
Read the diff → Tool health → What is this tool? →
This release patches 2 known CVEs

Topics

agent-orchestration agentic-ai ai-agents ai-automation autonomous-agents claude
+14 more
crewai-alternative langgraph-alternative laravel livewire llm-workflow mcp-server model-context-protocol multi-agent n8n-alternative ollama openai php self-hosted workflow-automation

Affected surfaces

rce_ssrf

Summary

AI summary

Full autonomous web dev pipeline added with per-call working directory, QA improvements, and security hardening.

Full changelog

What's changed

  • chore: release v1.13.0 — autonomous web dev pipeline, ClawWork quality improvements (21a7dcf)
  • feat(chatbot): is_enabled toggle for knowledge sources (8070557)
  • fix(crew): validate task_rubrics at crew creation and update (a205c2d)
  • fix(agent): QA and security fixes for ClawWork improvements (a0baddb)
  • feat(agent): ClawWork-inspired agent quality improvements (5477028)
  • fix: harden host-bridge.php working_directory against path traversal (a3bcd5a)
  • fix: path traversal + wrong attribute name in working_directory support (0a433fa)
  • feat: per-call working directory, Web Dev Cycle workflow, pipeline tool tests (f93b0d6)
  • fix: security and correctness fixes in autonomous pipeline tools (339d6d6)
  • feat: full autonomous web dev pipeline — git ops, deploy drivers, test & lint tools (c00f710)
  • fix(migration): guard pgvector column behind extension availability check (088c490)

Upgrade

git fetch --tags origin
git checkout tags/v1.13.0
composer install --no-dev --optimize-autoloader
php artisan migrate --force
php artisan optimize

Docker users: Pull the latest image and restart your containers.

Security Fixes

  • Harden host-bridge.php working_directory against path traversal
  • Fix path traversal + wrong attribute name in working_directory support
View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track escapeboy/agent-fleet-o

Get notified when new releases ship.

Sign up free

About escapeboy/agent-fleet-o

AI Agent Mission Control with 200+ MCP tools. Manage agents, experiments, workflows, crews, skills, and more via stdio + HTTP/SSE. Self-hosted, open-source (AGPL-3.0)

All releases →

Related context

Beta — feedback welcome: [email protected]