Agent DailyAgent Daily

Security

Securing agent workflows, outputs, and infrastructure

Build a playbook about Security

Save articles from this feed, then generate a personalized implementation guide

See a sample →
120 results
RELintermediate
[Release] langchain-ai/langchain langchain-core==1.2.30: langchain-core==1.2.30

LangChain Core version 1.2.30 has been released with security improvements and bug fixes. The primary change includes hardening of private SSRF (Server-Side Request Forgery) utilities to enhance security. This is a patch release following version 1.2.29, focusing on stability and protection against potential security vulnerabilities.

github-actions[bot]Apr 16, 2026
RELintermediate
[Release] anthropics/claude-code v2.1.110: v2.1.110

Claude Code v2.1.110 introduces significant UI/UX improvements including a new `/tui` command for flicker-free fullscreen rendering, push notification capabilities, and enhanced plugin management. The release includes numerous bug fixes addressing MCP server reliability, session management, and performance issues, plus improvements to command accessibility from Remote Control clients and better handling of distributed tracing.

ashwin-antApr 16, 2026
RELintermediate
[Release] crewaiInc/crewAI 1.14.2rc1: 1.14.2rc1

crewAI 1.14.2rc1 is a release candidate that addresses critical bug fixes and security vulnerabilities. The release includes fixes for cyclic JSON schema handling in MCP tool resolution and security patches for python-multipart and pypdf dependencies. This maintenance release ensures improved stability and security for the crewAI framework.

greysonlalondeApr 16, 2026
RELintermediate
[Release] openai/openai-agents-python v0.14.1: v0.14.1

OpenAI Agents Python v0.14.1 is a maintenance release focusing on bug fixes and documentation improvements. Key fixes include sanitizing tracing export payloads, preserving computer driver compatibility for modifier keys, shielding server-managed handoffs from unsupported history rewrites, and stopping streamed tool execution after input guardrail violations. The release also includes documentation clarifications on ToolContext availability and CI improvements.

seratchApr 16, 2026
RELintermediate
[Release] openclaw/openclaw v2026.4.15-beta.1: OpenClaw 2026.4.15-beta.1

OpenClaw v2026.4.15-beta.1 introduces significant enhancements across control UI, memory management, and security. Key additions include OAuth token health monitoring, cloud storage support for LanceDB memory indexes, GitHub Copilot embedding provider integration, and experimental lean mode for local models. The release focuses on security hardening with credential redaction, symlink protection, and improved authentication handling, alongside numerous bug fixes for CLI configuration, memory access control, and provider failover logic.

steipeteApr 15, 2026
RELintermediate
[Release] openclaw/openclaw v2026.4.14: openclaw 2026.4.14

OpenClaw v2026.4.14 is a quality release focused on model provider improvements, particularly for GPT-5 family support and channel provider fixes. The release includes forward-compatibility for gpt-5.4-pro, enhanced Telegram forum topic handling, and significant performance refactors to the core codebase. Key fixes address Ollama timeout handling, Codex provider catalog validation, media tool model references, security allowlist enforcement, and various provider integrations including Slack, Google, and Discord.

vincentkocApr 14, 2026
RELintermediate
[Release] openclaw/openclaw v2026.4.14-beta.1: openclaw 2026.4.14-beta.1

OpenClaw v2026.4.14-beta.1 is a maintenance release addressing 30+ security fixes, stability improvements, and feature enhancements across messaging platforms, browser automation, scheduling, memory systems, and agent tooling. Key improvements include replacing markdown parsing to prevent ReDoS attacks, fixing Telegram forum topic handling, correcting cron scheduler behavior, and enforcing SSRF/security policies across multiple integrations. The release emphasizes background task optimization and proper context preservation across system components.

steipeteApr 14, 2026
RELintermediate
[Release] google/adk-python v1.30.0: v1.30.0

Google ADK Python v1.30.0 introduces significant enhancements including Auth Provider support in agent registry, Parameter Manager integration, Gemma 4 model support, and live avatar capabilities. The release also promotes BigQuery tools to stable status and adds artifact service integration for A2A events. Multiple bug fixes address security vulnerabilities, credential leakage, and improve the express mode user experience.

wyf7107Apr 14, 2026
RELintermediate
[Release] crewaiInc/crewAI 1.14.2a3: 1.14.2a3

crewAI 1.14.2a3 is a patch release introducing a deploy validation CLI and improved LLM initialization ergonomics. The release addresses critical security vulnerabilities in pypdf, uv, and requests libraries, plus fixes for Bedrock tool arguments, strict mode schema sanitization, and test flakiness. Documentation updates include enterprise A2A feature clarifications and OSS A2A improvements.

greysonlalondeApr 13, 2026
RELintermediate
[Release] crewaiInc/crewAI 1.14.2a2: 1.14.2a2

crewAI 1.14.2a2 introduces a checkpoint TUI with tree view and fork support, enhances LLM token tracking with reasoning and cache tokens, and adds checkpoint forking with lineage tracking. The release includes bug fixes for strict mode forwarding to Anthropic and Bedrock providers, and hardens the NL2SQLTool with read-only defaults and query validation. Key additions include the `from_checkpoint` parameter for kickoff methods and embedding `crewai_version` in checkpoints with a migration framework.

greysonlalondeApr 10, 2026
RELintermediate
[Release] google/adk-python v1.29.0: v1.29.0

Google ADK Python v1.29.0 introduces significant enhancements to authentication, security, and tooling capabilities. Key additions include auth scheme/credential support for MCP toolsets, configurable resource limits and shell metacharacter blocking in BashTool, new EnvironmentToolset for file I/O and command execution, and improved BigQuery logging with configurable view prefixes. The release also adds support for model endpoints in Agent Registry, regional endpoints for SecretManager, and enhanced session management with custom session IDs and shallow-copy options.

wyf7107Apr 10, 2026
RELintermediate
[Release] anthropics/claude-code v2.1.98: v2.1.98

Claude Code v2.1.98 introduces significant security enhancements, including subprocess sandboxing with PID namespace isolation, Perforce mode for read-only file protection, and fixes for multiple Bash permission bypass vulnerabilities. The release adds interactive Google Vertex AI setup, improved monitoring capabilities, and numerous UI/UX improvements including better `/resume` picker functionality and Vim mode navigation. Critical fixes address permission rule evaluation, MCP OAuth token refresh, and cross-user prompt caching.

ashwin-antApr 9, 2026
TUTintermediate
Build an SRE incident response agent with Claude Managed Agents Apr 2026 • Agent Patterns Observability A webhook-triggered responder that investigates logs and runbooks with a custom Skill, fixes infrastructure code, and gates the PR behind a human-approval custom tool — with the full audit trail in the Console.

This tutorial demonstrates building a webhook-triggered SRE incident response agent using Claude Managed Agents that automatically investigates production alerts, consults runbooks, proposes infrastructure fixes via pull requests, and gates merging behind human approval. The agent combines built-in sandbox tools (bash, read, edit) with custom tools for PR management and human-in-the-loop approval, providing complete audit trails in the Anthropic Console. The example uses mocked PagerDuty, GitHub, and Datadog integrations to focus on agent patterns, with guidance for swapping in real services.

Apr 9, 2026
RELintermediate
[Release] anthropics/claude-code v2.1.97: v2.1.97

Claude Code v2.1.97 introduces a focus view toggle for better prompt visibility, enhanced status line customization with git worktree support, improved permissions handling with stricter Bash tool checks, and numerous bug fixes across MCP connections, resume functionality, NO_FLICKER mode rendering, and authentication. The release also improves auto-approval logic for safe commands, image compression consistency, and CJK text input handling.

ashwin-antApr 9, 2026
RELintermediate
[Release] openclaw/openclaw v2026.4.8: openclaw 2026.4.8

OpenClaw v2026.4.8 is a maintenance release focusing on fixing import path issues in bundled channels and plugins, improving agent execution reporting, and enhancing proxy support. Key fixes address missing file references during gateway startup, plugin compatibility metadata alignment, and Slack integration improvements. The release ensures proper fallback policies for agent execution and enables proxy-only deployments to function correctly.

steipeteApr 8, 2026
RELintermediate
[Release] crewaiInc/crewAI 1.14.0: 1.14.0

crewAI 1.14.0 introduces checkpoint management with CLI commands and SqliteProvider storage, implements runtime state checkpointing with an event system, and refactors the executor. Security enhancements include SSRF/path traversal protections and RAG tool validation. The release also optimizes memory serialization by excluding embedding vectors and addresses critical CVE-2026-35030 via litellm upgrade.

joaomdmouraApr 8, 2026
TUTintermediate
Threat intelligence enrichment agent Apr 2026 • Tools Agent Patterns Build an agent that autonomously investigates IOCs by querying multiple threat intel sources, cross-referencing findings, mapping to MITRE ATT&CK, and producing structured reports for SIEM and SOAR integration.

This cookbook demonstrates building a Claude-powered threat intelligence enrichment agent that autonomously investigates Indicators of Compromise (IOCs) by querying multiple threat intel sources, correlating findings, mapping to MITRE ATT&CK, and generating structured reports for SIEM/SOAR integration. The agent uses Claude's tool-use capabilities to decide which intelligence sources to query, chain tool calls based on discoveries, and convert free-text analysis into analyst-ready JSON reports. The architecture uses simulated threat intel backends that can be swapped with real APIs (VirusTotal, AbuseIPDB, Shodan, etc.) without changing orchestration logic.

Apr 7, 2026
RELintermediate
[Release] crewaiInc/crewAI 1.14.0a4: 1.14.0a4

crewAI 1.14.0a4 introduces checkpoint storage capabilities with SqliteProvider and CheckpointConfig, implements runtime state checkpointing with an event system, and refactors the executor. Key improvements include guardrail tracing enhancements, embedding vector exclusion from memory serialization to reduce token usage, and a security bump to litellm. The release also deprecates CodeInterpreterTool and code execution parameters while improving documentation and performance with JSONB storage.

greysonlalondeApr 7, 2026
RELintermediate
[Release] anthropics/claude-code v2.1.92: v2.1.92

Claude Code v2.1.92 introduces enhanced security policies with remote settings refresh, an interactive Bedrock setup wizard for AWS integration, improved cost transparency with per-model breakdowns, and numerous bug fixes. Key improvements include better session naming with hostname prefixes, fixed subagent spawning issues, enhanced prompt cache feedback for Pro users, and performance optimizations for the Write tool. The release also streamlines the CLI by removing `/tag` and `/vim` commands while improving terminal compatibility and sandbox security.

ashwin-antApr 4, 2026
RELintermediate
[Release] crewaiInc/crewAI 1.13.0: 1.13.0

CrewAI v1.13.0 introduces significant architectural improvements including RuntimeState RootModel for unified serialization, enhanced event telemetry for skills and memory, and A2UI extension support. The release includes critical bug fixes for GPT-5.x model compatibility, RBAC permission alignment, and Windows lancedb compatibility. Performance optimizations reduce framework overhead through lazy event bus implementation and conditional tracing.

lorenzejayApr 3, 2026