AI & Machine Learning

LLMs, vector databases, ML frameworks, and AI infrastructure tooling.

All Breaking Security Features

Important Recent

← Releases

Upgrade now

Jovancoding/Network-AI v5.9.1 Security relevant 1d

RCE / SSRF Breaking upgrade

OS command injection fix

Open

Upgrade now

mem0 cli-node-v0.2.8 Security relevant 2d

Dependencies

CVE remediation

Open

vts-v3.0.6 (2d) Dependency bumps for CVE fixes

vopenclaw-v1.0.12 (2d) Dependency pins for CVEs

vercel-ai-v2.0.6 (2d) Dependency pins for CVEs

Config change

BlazeUp-AI/Observal](https: v1.4.1 Security relevant 3d

Auth

API key redaction gaps

Open

Upgrade now

flytohub/flyto-core v2.26.3 Security relevant 4d

RCE / SSRF

SSRF guard fix

Open

Upgrade now

Onyx Community Edition v3.3.10 Security relevant 5d

RCE / SSRF

ReDoS elimination

Open

v4.0.3 (5d) ReDoS elimination

Review required

streamlit 1.58.0 Security relevant 6d

Auth RBAC

Breaking removals + new features

patches CVE-2023-4863

Open

Upgrade now

cdeust/Cortex v3.17.2 Security relevant 7d

RCE / SSRF Breaking upgrade

GHSA‑gvpp‑v77h‑5w8g fix advertising

Open

Upgrade now

ymw0407/auth-fetch-mcp v3.0.2 Security relevant 7d

RCE / SSRF

SSRF guard fix

Open

No immediate action

anything-llm v1.13.0 Security relevant 8d

Model Router + Scheduled Jobs + Memories

patches CVE-2025-31125

Open

Upgrade now

solace-agent-mesh 1.26.1 Security relevant 8d

Dependencies

CVE security fixes + UI version bump

Open

Review required

Jovancoding/Network-AI v5.8.5 Security relevant 10d

Auth

Audit log justification truncation + redaction

Open

v5.8.4 (10d) File path-traversal fix

v5.8.2 (10d) Masked tokens + blocked prompt injection

Review required

shinpr/mcp-local-rag v0.14.2 Security relevant 11d

RCE / SSRF Auth

Path rejection + realpath checks

Open

Review required

DocsGPT 0.17.2 Security relevant 12d

Dependencies Breaking upgrade

Webhook call marking + bug fixes

patches CVE-2023-4863

Open

Review required

pydantic-ai v1.102.0 Security relevant 12d

RCE / SSRF

SSRF fix + bug fixes

Open

No immediate action

chatgpt-on-wechat 2.0.9 Security relevant 13d

Model management + MCP + security

patches CVE-2023-4863

Open

Upgrade now

typebot.io v3.17.0 Security relevant 13d

Auth RBAC RCE / SSRF +1 more

Security hardening + UI/content updates

Open

Review required

opik 2.0.43 Security relevant 13d

Dependencies

CVE fix + dependency upgrades

Open

Review required

0xMassi/webclaw v0.6.3 Security relevant 15d

RCE / SSRF

Core hardened

Open

No immediate action

opik 2.0.40 Security relevant 15d

npm ci security

Open

Review required

edit-mind v0.22.0 Security relevant 16d

Auth RBAC

REST API, MCP server, token management

patches CVE-2023-4863

Open

No immediate action

sglang v0.5.12 Security relevant 18d

DeepSeek V4 support

patches CVE-2023-4863

Open

No immediate action

agentscope v1.0.20 Security relevant 19d

Routine maintenance and dependency updates.

patches CVE-2026-42208

Open

No immediate action

mlflow ts/v0.2.0 Security 20d

Routine maintenance and dependency updates.

patches CVE-2023-4863 patches CVE-2026-42208

Open

Review required

llama_index v0.14.22 Security relevant 20d

Dependencies

Multimodal synthesis

patches CVE-2026-42208

Open

Subscribe to this feed

Get AI & Machine Learning releases in your personal feed.

339

Tools

7,915

Releases

Top tools

Superset

open-webui

LightRAG

DeepTutor

blockrunai/blockrun-mcp

ingero-io/ingero

LocalAI

mcp-toolbox

View all 339 tools →

Browse releases

View all 13 releases →