Skip to content

rps321321/obsidian-mcp-pro

v1.5.2 Security

This release includes 3 security fixes for security teams reviewing exposed deployments.

Published 1mo MCP Developer Tools
✓ No known CVEs patched
Read the diff → Tool health → What is this tool? →
This release patches 3 known CVEs

Affected surfaces

auth rce_ssrf

Summary

AI summary

Security patch fixes MCP log‑forward path leakage, canvas node realpath validation, and rejects Windows DOS device names.

Full changelog

What's fixed

Security patch release surfacing three issues from a deeper audit pass.

Security / Fixed

  • MCP log-forward no longer leaks absolute host paths to clients. notifications/message payloads pass through stripPaths so remote clients never see the operator's host filesystem layout — vault, configPath, and serialized-error stack traces are all covered. Stderr keeps full detail for operator debugging. Regression introduced by the logging capability in 1.5.1.
  • add_canvas_node file reference now realpath-checked. Swapped the sync resolveVaultPath for resolveVaultPathSafe so a symlinked path that escapes the vault is rejected at the same gate every other write tool uses.
  • Reject Windows DOS device names (CON, PRN, AUX, NUL, COM0-9, LPT0-9, with or without extension, case-insensitive, at any depth) at the path resolver on win32. Previously create_note path="NUL.md" on Windows silently bound to the null device and discarded the write. No-op on POSIX.

Tests

+6 regression tests covering the three fixes. 182 pass, up from 176.

Upgrade: npm install [email protected]. No API changes, no config changes. See CHANGELOG.md for full history.

Security Fixes

  • MCP log-forward no longer leaks absolute host paths to clients (CVE not listed).
  • add_canvas_node now realpath‑checked to reject vault‑escaping symlinks.
  • Reject Windows DOS device names (CON, PRN, AUX, NUL, COM0-9, LPT0-9) at path resolution.
View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track rps321321/obsidian-mcp-pro

Get notified when new releases ship.

Sign up free

About rps321321/obsidian-mcp-pro

Feature-complete Obsidian vault MCP server with 23 tools and 3 resources. Full-text search, note CRUD, frontmatter queries, tag management, backlinks, graph traversal (BFS up to 5 hops), orphan/broken link detection, and canvas support. Auto-detects vault, path traversal protection, MIT licensed.

All releases →

Related context

Beta — feedback welcome: [email protected]