This release includes 1 security fix for security teams reviewing exposed deployments.
Topics
+12 more
Affected surfaces
Summary
AI summarySecurity fix for VS Code clipboard injection vulnerability.
Full changelog
What's Changed in v4.7.0
- Release v4.7.0 - Security fixes and wizard cleanup (be6ec49b)
- fix(vscode): use clipboard paste for Claude Code command injection (755c5fa5)
- refactor(tests): replace xfail tests with mock agents in composition patterns (8b062ef5)
- fix: remove orphaned tests and fix CI failures (ef34b2c0)
- feat: experimental work post-v4.6.6 (74cbb83c)
- refactor: update VS Code extension to use new CLI structure (6725f5a4)
- chore: add TestTrackingPanel and update Redis dump (fb555c8d)
- chore: update patterns, docs, and remove obsolete test (cd30e561)
- refactor: reorganize CLI with utility subcommand group (1208468d)
- feat: add test tracking view to dashboard (676e51cc)
- docs: update test count to 11,000+ across README and FAQ (b19451dc)
- chore: bump version to 4.6.6 for PyPI (bcfb6df5)
Full Changelog: https://github.com/Smart-AI-Memory/empathy-framework/compare/v4.6.6...v4.7.0
Security Fixes
- fix(vscode): use clipboard paste for Claude Code command injection (prevents code injection vulnerability)
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About Smart-AI-Memory/empathy-framework
Five-level AI collaboration system with persistent memory and anticipatory capabilities. MCP-native integration for Claude and other LLMs with local-first architecture via MemDocs.
Related context
Beta — feedback welcome: [email protected]