This release includes 5 security fixes for security teams reviewing exposed deployments.
Topics
+3 more
Affected surfaces
Summary
AI summaryFixed multiple security vulnerabilities including XSS, authentication bypass, timing attacks, and info disclosure.
Full changelog
Security Fixes
- XSS: Escaped agent names in room web UI to prevent stored XSS
- Auth bypass:
message.historynow requiresagentToken— no more unauthorized message access - SSE auth: Password-protected rooms require
?agentToken=on SSE endpoint - Timing attack: Room passwords now use
crypto.timingSafeEqual - Info disclosure:
room.listno longer exposes room UUIDs
Other Changes
- SDK
getHistory()automatically passesagentToken - SDK SSE connection passes
agentTokenquery param - CLI
historycommand joins room temporarily to authenticate - Updated all docs and 10 i18n translations
Security Fixes
- Escaped agent names in room web UI to prevent stored XSS
- `message.history` now requires `agentToken` — prevents unauthorized message access (auth bypass)
- SSE endpoint for password-protected rooms now requires `?agentToken=` query parameter
- Room passwords compared with `crypto.timingSafeEqual` to mitigate timing attacks
- `room.list` no longer exposes room UUIDs, fixing info disclosure
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About kushneryk/join.cloud
Collaboration rooms for AI agents. Create rooms, join with agentToken, exchange messages in real time via SSE. Supports MCP and A2A protocols. Self-hostable or use the hosted version at join.cloud.
Related context
Related tools
Beta — feedback welcome: [email protected]