This release adds 1 notable feature for engineering teams evaluating rollout.
✓ No known CVEs patched in this version
Topics
Affected surfaces
Summary
AI summarySSRF protection with DNS rebinding prevention is added and enabled by default.
Changes in this release
| Type | Severity | Summary | CVE |
|---|---|---|---|
| Feature | Medium |
Add SSRF protection with DNS rebinding prevention Add SSRF protection with DNS rebinding prevention Source: llm_adapter@2026-05-21 Confidence: high |
— |
| Bugfix | Medium |
Stabilize model toggle and refresh Agent dropdown after provider changes Stabilize model toggle and refresh Agent dropdown after provider changes Source: llm_adapter@2026-05-21 Confidence: high |
— |
| Bugfix | Medium |
Update Docker base images to Trixie and force pull latest images in nightly builds Update Docker base images to Trixie and force pull latest images in nightly builds Source: llm_adapter@2026-05-21 Confidence: low |
— |
| Bugfix | Medium |
Update security dependencies Update security dependencies Source: llm_adapter@2026-05-21 Confidence: low |
— |
| Bugfix | Medium |
Upgrade langchain-classic to 1.0.7 Upgrade langchain-classic to 1.0.7 Source: llm_adapter@2026-05-21 Confidence: low |
— |
| Bugfix | Medium |
Backport policies ToolGuard lazy imports Backport policies ToolGuard lazy imports Source: llm_adapter@2026-05-21 Confidence: low |
— |
| Other | Medium |
SSRF protection enabled by default documented SSRF protection enabled by default documented Source: llm_adapter@2026-05-21 Confidence: low |
— |
Full changelog
What's Changed
✨ New Features
- feat: Add SSRF protection with DNS rebinding prevention by @Jkavia in https://github.com/langflow-ai/langflow/pull/13016
🐛 Bug Fixes
- fix: update Docker base images to Trixie and force pull latest images in nightly builds by @vjgit96 in https://github.com/langflow-ai/langflow/pull/13015
- fix: update security dependencies by @Jkavia in https://github.com/langflow-ai/langflow/pull/13053
- fix: stabilize model toggle and refresh Agent dropdown after provider changes by @erichare in https://github.com/langflow-ai/langflow/pull/13113
- fix: upgrade langchain-classic to 1.0.7 by @Jkavia in https://github.com/langflow-ai/langflow/pull/13130
- fix: backport policies ToolGuard lazy imports by @erichare in https://github.com/langflow-ai/langflow/pull/13144
📝 Documentation Updates
- docs: SSRF protection enabled by default by @mendonk in https://github.com/langflow-ai/langflow/pull/13106
Others
- chore: Add DESIGN.md for Langflow's visual design system by @ogabrielluiz in https://github.com/langflow-ai/langflow/pull/12830
- ci: block PR titles ending in ellipsis by @ogabrielluiz in https://github.com/langflow-ai/langflow/pull/13004
- chore: improve AI-agent context (CLAUDE.md auto-load + AGENTS.md tweaks) by @ogabrielluiz in https://github.com/langflow-ai/langflow/pull/13028
Full Changelog: https://github.com/langflow-ai/langflow/compare/v1.9.2...1.9.3
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About Langflow
All releases →Related context
Related tools
Beta — feedback welcome: [email protected]