This release adds 2 notable features for engineering teams evaluating rollout.
✓ No known CVEs patched in this version
Topics
+5 more
Affected surfaces
Summary
AI summaryUpdated remaining files to use secure cross‑platform permission utilities and ensure proper Windows ACLs.
Full changelog
What's New
This patch release completes the cross-platform secure permissions coverage started in v1.5.0.
Bug Fixes
Updated remaining files that were still using direct fs operations instead of the new cross-platform file-permissions.ts utility:
- notebook-library.ts - Library saves now use
writeFileSecure() - shared-context-manager.ts - Isolated Chrome profile directories use
mkdirSecure() - config.ts -
ensureDirectories()now usesmkdirSecure() - settings-manager.ts - Settings persistence uses
writeFileSecure()andmkdirSecure()
Technical Changes
- Simplified
file-permissions.tsto remove logger dependency, avoiding potential circular import issues - All sensitive file operations now properly set Windows ACLs via
icaclson Windows
Full Changelog: https://github.com/Pantheon-Security/notebooklm-mcp-secure/compare/v1.5.0...v1.5.1
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About Pantheon-Security/notebooklm-mcp-secure
Security-hardened NotebookLM MCP with post-quantum encryption (ML-KEM-768), GDPR/SOC2/CSSF compliance, and 14 security layers. Query Google's Gemini-grounded research from Claude and AI agents.
Related context
Beta — feedback welcome: [email protected]