This release adds 2 notable features for engineering teams evaluating rollout.
✓ No known CVEs patched in this version
Topics
+14 more
ReleasePort's take
Light signalThe release switches to a Desktop‑managed npm prefix and pins nexo‑brain@latest for runtime updates.
Why it matters: Affects npm installation path and runtime dependency versioning; operators should monitor the explicit install of nexo-brain@latest.
Summary
AI summaryUses Desktop‑managed npm prefix and installs nexo‑brain@latest explicitly.
Changes in this release
| Type | Severity | Summary | CVE |
|---|---|---|---|
| Dependency | Medium |
Installs nexo-brain@latest explicitly for packaged runtime updates. Installs nexo-brain@latest explicitly for packaged runtime updates. Source: llm_adapter@2026-05-24 Confidence: high |
— |
| Dependency | Medium |
Aligns the OpenClaw plugin package to 7.25.2. Aligns the OpenClaw plugin package to 7.25.2. Source: llm_adapter@2026-05-24 Confidence: low |
— |
| Refactor | Medium |
Uses a Desktop-managed npm prefix for packaged Brain updates. Uses a Desktop-managed npm prefix for packaged Brain updates. Source: llm_adapter@2026-05-24 Confidence: high |
— |
Full changelog
Desktop-managed Brain update hotfix.
- Uses a Desktop-managed npm prefix for packaged Brain updates so npm does not silently install into the macOS app bundle prefix.
- Installs nexo-brain@latest explicitly for packaged runtime updates instead of relying on npm update -g.
- Aligns the OpenClaw plugin package to 7.25.2.
Full Changelog: https://github.com/wazionapps/nexo/compare/v7.25.1...v7.25.2
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About wazionapps/nexo
Cognitive memory for AI agents with Atkinson-Shiffrin memory model (STM/LTM/sensory register), semantic RAG, Ebbinghaus decay, trust scoring, and 76+ MCP tools.
Related context
Beta — feedback welcome: [email protected]