Skip to content

getplumber/plumber

v0.3.28 Bugfix

This release fixes issues for SREs watching stability and regressions.

Published 2d Pipelines
✓ No known CVEs patched
Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Affected surfaces

auth

Summary

AI summary

Fixed trustedUrls scoping for curl/wget fetch targets and corrected bare‑hostname matching.

Changes in this release

Bugfix Medium

Fixes trustedUrls scope for curl/wget fetch target in controls.

Fixes trustedUrls scope for curl/wget fetch target in controls.

Source: llm_adapter@2026-06-01

Confidence: high
Bugfix Medium

Fixes trustedUrls bare-hostname matching and partial semver false positives in controls.

Fixes trustedUrls bare-hostname matching and partial semver false positives in controls.

Source: llm_adapter@2026-06-01

Confidence: high
Full changelog

0.3.28 (2026-06-01)

🐛 Bug Fixes

  • controls: scope ISSUE-411 trustedUrls to the curl/wget fetch target (3541e75), closes #214
  • controls: trustedUrls bare-hostname matching and partial semver false positives (a7975cd)
View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track getplumber/plumber

Get notified when new releases ship.

Sign up free

About getplumber/plumber

All releases →

Related context

Related tools

Beta — feedback welcome: [email protected]