Skip to content

harness-sdk

v1.18.0 Security

This release includes 1 security fix for security teams reviewing exposed deployments.

Published 6mo AI Agents & Assistants
✓ No known CVEs patched
Read the diff → Tool health → What is this tool? →
This release patches 1 known CVE

Topics

agentic agentic-ai agents ai anthropic autonomous-agents
+13 more
bedrock genai litellm llama llm machine-learning mcp multi-agent-systems ollama openai opentelemetry python strands-agents

Summary

AI summary

Security hardening in tool_loader prevents tool name and sys module collisions, fixes swarm session management tests, and protects MCP connections on non‑fatal client timeouts.

Full changelog

What's Changed

  • multi agent input by @pgrayy in https://github.com/strands-agents/sdk-python/pull/1196
  • interrupt - activate - set context separately by @pgrayy in https://github.com/strands-agents/sdk-python/pull/1194
  • In PrintingCallbackHandler, make the verbose description and counting… by @marcbrooker in https://github.com/strands-agents/sdk-python/pull/1211
  • fix: fix swarm session management integ test. by @JackYPCOnline in https://github.com/strands-agents/sdk-python/pull/1155
  • move tool caller definition out of agent module by @pgrayy in https://github.com/strands-agents/sdk-python/pull/1215
  • interrupt - interruptible multi agent hook interface by @pgrayy in https://github.com/strands-agents/sdk-python/pull/1207
  • security(tool_loader): prevent tool name and sys modules collisions i… by @dbschmigelski in https://github.com/strands-agents/sdk-python/pull/1214
  • fix(mcp): protect connection on non-fatal client side timeout error by @dbschmigelski in https://github.com/strands-agents/sdk-python/pull/1231
  • fix(litellm): populate cacheWriteInputTokens from cache_creation_input_token not cache_creation_tokens by @dbschmigelski in https://github.com/strands-agents/sdk-python/pull/1233
  • fix: fix integ test for mcp elicitation_server by @JackYPCOnline in https://github.com/strands-agents/sdk-python/pull/1234

New Contributors

  • @marcbrooker made their first contribution in https://github.com/strands-agents/sdk-python/pull/1211

Full Changelog: https://github.com/strands-agents/sdk-python/compare/v1.17.0...v1.18.0

Security Fixes

  • tool_loader: prevent tool name and sys modules collisions (security hardening)
View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track harness-sdk

Get notified when new releases ship.

Sign up free

About harness-sdk

A model-driven approach to building AI agents in just a few lines of code.

All releases →

Related context

Beta — feedback welcome: [email protected]