LLM Tooling

Frameworks, runtimes, and infrastructure for building with large language models.

All Breaking Security Features

Important Recent

← Releases

Upgrade now

Jovancoding/Network-AI v5.9.1 Security relevant 1d

RCE / SSRF Breaking upgrade

OS command injection fix

Open

Upgrade now

mem0 cli-node-v0.2.8 Security relevant 2d

Dependencies

CVE remediation

Open

vts-v3.0.6 (2d) Dependency bumps for CVE fixes

vopenclaw-v1.0.12 (2d) Dependency pins for CVEs

vercel-ai-v2.0.6 (2d) Dependency pins for CVEs

Config change

BlazeUp-AI/Observal](https: v1.4.1 Security relevant 3d

Auth

API key redaction gaps

Open

Upgrade now

coder v2.32.5 Security relevant 4d

Dependencies

CVE patches for crypto & net

Open

Upgrade now

flytohub/flyto-core v2.26.3 Security relevant 4d

RCE / SSRF

SSRF guard fix

Open

Upgrade now

Onyx Community Edition v3.3.10 Security relevant 5d

RCE / SSRF

ReDoS elimination

Open

v4.0.3 (5d) ReDoS elimination

Upgrade now

ymw0407/auth-fetch-mcp v3.0.2 Security relevant 7d

RCE / SSRF

SSRF guard fix

Open

No immediate action

anything-llm v1.13.0 Security relevant 8d

Model Router + Scheduled Jobs + Memories

patches CVE-2025-31125

Open

Upgrade now

solace-agent-mesh 1.26.1 Security relevant 8d

Dependencies

CVE security fixes + UI version bump

Open

Review required

Bilig libraries-v0.90.6 Security relevant 10d

RCE / SSRF

xlsx formula rejection

Open

Review required

Jovancoding/Network-AI v5.8.5 Security relevant 10d

Auth

Audit log justification truncation + redaction

Open

v5.8.4 (10d) File path-traversal fix

v5.8.2 (10d) Masked tokens + blocked prompt injection

Review required

shinpr/mcp-local-rag v0.14.2 Security relevant 11d

RCE / SSRF Auth

Path rejection + realpath checks

Open

Review required

DocsGPT 0.17.2 Security relevant 12d

Dependencies Breaking upgrade

Webhook call marking + bug fixes

patches CVE-2023-4863

Open

Review required

pydantic-ai v1.102.0 Security relevant 12d

RCE / SSRF

SSRF fix + bug fixes

Open

No immediate action

chatgpt-on-wechat 2.0.9 Security relevant 13d

Model management + MCP + security

patches CVE-2023-4863

Open

Upgrade now

typebot.io v3.17.0 Security relevant 13d

Auth RBAC RCE / SSRF +1 more

Security hardening + UI/content updates

Open

Review required

opik 2.0.43 Security relevant 13d

Dependencies

CVE fix + dependency upgrades

Open

Upgrade now

monolabsdev/openbench-ai v0.1.1 Security relevant 14d

RCE / SSRF Breaking upgrade

Unverified code execution fix

Open

Review required

0xMassi/webclaw v0.6.3 Security relevant 15d

RCE / SSRF

Core hardened

Open

No immediate action

opik 2.0.40 Security relevant 15d

npm ci security

Open

No immediate action

crewAI 1.14.5 Security relevant 16d

CrewAgentExecutor deprecation + tool rename

patches CVE-2023-4863 patches CVE-2026-42208

Open

Review required

escapeboy/agent-fleet-o v1.26.0 Security relevant 16d

Auth RBAC

CRLF stripping security fix

Open

Review required

Local Deep Research v1.6.11 Security relevant 17d

Auth RCE / SSRF

IMDS block + API key redaction

Open

No immediate action

sglang v0.5.12 Security relevant 18d

DeepSeek V4 support

patches CVE-2023-4863

Open

Subscribe to this feed

Get LLM Tooling releases in your personal feed.

341

Tools

9,226

Releases

Top tools

Superset

open-webui

LightRAG

Aura

LocalAI

blockrunai/blockrun-mcp

vllm

Modus

View all 341 tools →

Browse releases

View all 13 releases →