Security

OpenClaw v2026.4.14-beta.1 is a maintenance release addressing 30+ security fixes, stability improvements, and feature enhancements across messaging platforms, browser automation, scheduling, memory systems, and agent tooling. Key improvements include replacing markdown parsing to prevent ReDoS attacks, fixing Telegram forum topic handling, correcting cron scheduler behavior, and enforcing SSRF/security policies across multiple integrations. The release emphasizes background task optimization and proper context preservation across system components.

Google ADK Python v1.30.0 introduces significant enhancements including Auth Provider support in agent registry, Parameter Manager integration, Gemma 4 model support, and live avatar capabilities. The release also promotes BigQuery tools to stable status and adds artifact service integration for A2A events. Multiple bug fixes address security vulnerabilities, credential leakage, and improve the express mode user experience.

crewAI 1.14.2a3 is a patch release introducing a deploy validation CLI and improved LLM initialization ergonomics. The release addresses critical security vulnerabilities in pypdf, uv, and requests libraries, plus fixes for Bedrock tool arguments, strict mode schema sanitization, and test flakiness. Documentation updates include enterprise A2A feature clarifications and OSS A2A improvements.

crewAI 1.14.2a2 introduces a checkpoint TUI with tree view and fork support, enhances LLM token tracking with reasoning and cache tokens, and adds checkpoint forking with lineage tracking. The release includes bug fixes for strict mode forwarding to Anthropic and Bedrock providers, and hardens the NL2SQLTool with read-only defaults and query validation. Key additions include the `from_checkpoint` parameter for kickoff methods and embedding `crewai_version` in checkpoints with a migration framework.

Google ADK Python v1.29.0 introduces significant enhancements to authentication, security, and tooling capabilities. Key additions include auth scheme/credential support for MCP toolsets, configurable resource limits and shell metacharacter blocking in BashTool, new EnvironmentToolset for file I/O and command execution, and improved BigQuery logging with configurable view prefixes. The release also adds support for model endpoints in Agent Registry, regional endpoints for SecretManager, and enhanced session management with custom session IDs and shallow-copy options.

Claude Code v2.1.98 introduces significant security enhancements, including subprocess sandboxing with PID namespace isolation, Perforce mode for read-only file protection, and fixes for multiple Bash permission bypass vulnerabilities. The release adds interactive Google Vertex AI setup, improved monitoring capabilities, and numerous UI/UX improvements including better `/resume` picker functionality and Vim mode navigation. Critical fixes address permission rule evaluation, MCP OAuth token refresh, and cross-user prompt caching.

This tutorial demonstrates building a webhook-triggered SRE incident response agent using Claude Managed Agents that automatically investigates production alerts, consults runbooks, proposes infrastructure fixes via pull requests, and gates merging behind human approval. The agent combines built-in sandbox tools (bash, read, edit) with custom tools for PR management and human-in-the-loop approval, providing complete audit trails in the Anthropic Console. The example uses mocked PagerDuty, GitHub, and Datadog integrations to focus on agent patterns, with guidance for swapping in real services.

Claude Code v2.1.97 introduces a focus view toggle for better prompt visibility, enhanced status line customization with git worktree support, improved permissions handling with stricter Bash tool checks, and numerous bug fixes across MCP connections, resume functionality, NO_FLICKER mode rendering, and authentication. The release also improves auto-approval logic for safe commands, image compression consistency, and CJK text input handling.

OpenClaw v2026.4.8 is a maintenance release focusing on fixing import path issues in bundled channels and plugins, improving agent execution reporting, and enhancing proxy support. Key fixes address missing file references during gateway startup, plugin compatibility metadata alignment, and Slack integration improvements. The release ensures proper fallback policies for agent execution and enables proxy-only deployments to function correctly.

crewAI 1.14.0 introduces checkpoint management with CLI commands and SqliteProvider storage, implements runtime state checkpointing with an event system, and refactors the executor. Security enhancements include SSRF/path traversal protections and RAG tool validation. The release also optimizes memory serialization by excluding embedding vectors and addresses critical CVE-2026-35030 via litellm upgrade.

This cookbook demonstrates building a Claude-powered threat intelligence enrichment agent that autonomously investigates Indicators of Compromise (IOCs) by querying multiple threat intel sources, correlating findings, mapping to MITRE ATT&CK, and generating structured reports for SIEM/SOAR integration. The agent uses Claude's tool-use capabilities to decide which intelligence sources to query, chain tool calls based on discoveries, and convert free-text analysis into analyst-ready JSON reports. The architecture uses simulated threat intel backends that can be swapped with real APIs (VirusTotal, AbuseIPDB, Shodan, etc.) without changing orchestration logic.

crewAI 1.14.0a4 introduces checkpoint storage capabilities with SqliteProvider and CheckpointConfig, implements runtime state checkpointing with an event system, and refactors the executor. Key improvements include guardrail tracing enhancements, embedding vector exclusion from memory serialization to reduce token usage, and a security bump to litellm. The release also deprecates CodeInterpreterTool and code execution parameters while improving documentation and performance with JSONB storage.

Claude Code v2.1.92 introduces enhanced security policies with remote settings refresh, an interactive Bedrock setup wizard for AWS integration, improved cost transparency with per-model breakdowns, and numerous bug fixes. Key improvements include better session naming with hostname prefixes, fixed subagent spawning issues, enhanced prompt cache feedback for Pro users, and performance optimizations for the Write tool. The release also streamlines the CLI by removing `/tag` and `/vim` commands while improving terminal compatibility and sandbox security.

CrewAI v1.13.0 introduces significant architectural improvements including RuntimeState RootModel for unified serialization, enhanced event telemetry for skills and memory, and A2UI extension support. The release includes critical bug fixes for GPT-5.x model compatibility, RBAC permission alignment, and Windows lancedb compatibility. Performance optimizations reduce framework overhead through lazy event bus implementation and conditional tracing.

Claude Code v2.1.90 introduces the `/powerup` interactive lesson feature, adds environment variable support for offline marketplace caching, and delivers significant bug fixes and performance improvements. Key fixes address rate-limit dialog crashes, prompt-cache misses with deferred tools, file editing conflicts, and auto-mode boundary violations. Performance enhancements include quadratic slowdown elimination in SDK sessions and SSE transport optimization.

Claude Code v2.1.89 is a major release introducing deferred permission decisions for headless sessions, flicker-free rendering, improved MCP connection handling, and numerous bug fixes across tool execution, file handling, and UI rendering. Key improvements include named subagents, enhanced auto-mode permission workflows, and fixes for critical issues like memory leaks, LSP crashes, and prompt cache misses in long sessions.

OpenClaw v2026.3.31 is a major release introducing significant breaking changes to node execution, plugin SDK deprecations, and stricter security defaults for dangerous code scanning. Key improvements include a unified background task control plane, new channel integrations (QQ Bot), enhanced Matrix/MCP support, and security hardening across gateway authentication and node command execution. The release emphasizes safer defaults while expanding platform capabilities for agents, channels, and integrations.

OpenClaw v2026.3.31-beta.1 introduces significant breaking changes to node execution, plugin SDK deprecation, and stricter security defaults for plugin/skill installation. Key improvements include unified background task management with flow control, expanded channel support (QQ Bot), enhanced MCP capabilities with remote HTTP/SSE servers, and security hardening across gateway authentication, node commands, and event handling. Multiple channel-specific enhancements (Matrix, LINE, Teams, WhatsApp, Slack) and provider integrations (OpenAI Responses, Pi Codex, TTS diagnostics) round out the release.

OpenClaw v2026.3.28-beta.1 introduces significant breaking changes including removal of deprecated Qwen OAuth integration and stricter config validation, while adding major features like async tool approval hooks, MiniMax image generation, xAI search integration, and unified file upload actions across platforms. The release includes numerous fixes for Telegram message splitting, WhatsApp echo loops, image tool fallbacks, and security improvements for credential auditing.

Google ADK Python v2.0.0-alpha.2 is a security-focused release addressing critical vulnerabilities and deployment safety. Key improvements include agent name validation to prevent arbitrary module imports, protection against unauthorized file access in the builder API, secure GKE deployment defaults, and dependency updates to exclude compromised LiteLLM versions. This release strengthens the framework's security posture for production AI agent development.