phoenix

varize-phoenix-v15.5.0 scope: arize-phoenix Security

This release patches 1 CVE for security teams tracking exposure across their dependency inventory.

Published 26d Tracing

1 patched CVE

This release patches 1 known CVE CVE-2026-42208 EPSS 57%

1 CVEs patched

Topics

agents ai-monitoring ai-observability aiengineering anthropic datasets

+10 more

evals langchain llamaindex llm-eval llm-evaluation llmops llms openai prompt-engineering smolagents

Summary

AI summary

Bump litellm to version 1.83.14 to fix multiple CVEs.

Full changelog

agents: wire /chat-v2 with tools behind experimental toggle (#13009) (7706554)
app: type frontend REST calls against the OpenAPI schema (#13060) (590669d)
support x-project-name HTTP header for OTLP trace ingestion (#12865) (7d10386)
Update session details turns layout (#13042) (a1be820)

add types-aiobotocore-bedrock-runtime in container/aws extras (#13113) (0e2c175)
deps: bump litellm floor to 1.83.14 to fix multiple CVEs (#13020) (ccf1880)

Add Phoenix release notes for 04-29-2026 through 05-05-2026 (#13058) (bdb6684)
add REST API pages for filter-based annotation DELETE endpoints (#13075) (e8c3b13)
disable sidebar drilldown navigation (#13049) (fc01ed7)
skills: weekly audit — 2026-05-06 (#13074) (a5d970b)

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Track phoenix

Get notified when new releases ship.

About phoenix

AI Observability & Evaluation

varize-phoenix-v17.0.0 Adds system settings for admin-managed assistant enablement and trace recording policy
varize-phoenix-v16.0.0 Sandboxing and Code Evaluators introduce breaking changes in Phoenix v16.0.0.
varize-phoenix-v15.7.0 Removes v1 /chat route and associated code