Tool Use

langchain-core version 1.3.0a3 is released with improvements to streaming metadata, chat model invocation parameters, SSRF security hardening, and various bug fixes. Key updates include checkpoint namespace behavior preservation for backwards compatibility, enhanced traceable metadata for chat models and LLMs, and fixes for OpenAI responses API conversion. The release includes dependency updates (pytest 9.0.3) and security patches for CVE-2026-4539 related to Pygments.

langchain-huggingface version 1.2.2 is a maintenance release that hardens hostname validation and rejects URLs in repo_id fields. The release includes security updates (CVE-2026-4539 via pygments), dependency bumps for langsmith, pytest, aiohttp, and other packages, and performance improvements like avoiding unnecessary HuggingFace API calls for local endpoints. Key changes focus on stability, security, and dependency management across the HuggingFace partner library.

OpenClaw v2026.4.15 is a major release featuring Claude Opus 4.7 as the default Anthropic model, new Google Gemini text-to-speech support, a Model Auth status card for OAuth health monitoring, cloud storage support for LanceDB memory, and GitHub Copilot embedding provider integration. The release includes numerous stability fixes across gateway tools, agent replay recovery, Docker builds, Matrix E2EE, memory management, and channel integrations, plus packaging improvements to reduce bundle size and plugin runtime dependencies.

OpenClaw v2026.4.15-beta.2 introduces Anthropic model updates with Claude Opus 4.7 as the default and new Gemini text-to-speech support in the Google plugin. The release includes improvements to gateway tool handling with enhanced security for local media tool-result passthrough and stricter validation of client tool definitions. Key enhancements focus on model defaults, TTS capabilities, and tool registration robustness.

Claude Code v2.1.111 introduces Claude Opus 4.7 with a new xhigh effort level for tuned speed/intelligence tradeoffs, Auto mode for Max subscribers, and significant UX improvements including interactive effort sliders, comprehensive code review via /ultrareview, and enhanced permission management. The release includes numerous bug fixes for terminal display, LSP diagnostics, plugin handling, and cross-platform compatibility, particularly for Windows PowerShell integration.

langchain-openai version 1.1.14 was released with a critical security fix for SSRF (Server-Side Request Forgery) vulnerabilities in image token counting. The release includes dependency updates for pytest, langsmith, and pillow libraries. This patch addresses potential security risks when processing images through the OpenAI integration.

langchain-text-splitters version 1.1.2 is released with critical security and stability improvements. Key changes include deprecating unsafe URL transport in favor of SSRF-safe alternatives, fixing silent data loss in RecursiveJsonSplitter for empty dict values, and addressing CVE-2026-4539 through pygments version constraints. The release also includes dependency updates (langsmith, pytest, nltk, requests) and performance optimizations for CI/CD pipelines.

Claude Code v2.1.110 introduces significant UI/UX improvements including a new `/tui` command for flicker-free fullscreen rendering, push notification capabilities, and enhanced plugin management. The release includes numerous bug fixes addressing MCP server reliability, session management, and performance issues, plus improvements to command accessibility from Remote Control clients and better handling of distributed tracing.

crewAI 1.14.2rc1 is a release candidate that addresses critical bug fixes and security vulnerabilities. The release includes fixes for cyclic JSON schema handling in MCP tool resolution and security patches for python-multipart and pypdf dependencies. This maintenance release ensures improved stability and security for the crewAI framework.

OpenAI's openai-agents-python v0.14.0 introduces Sandbox Agents, a beta feature enabling agents to run in persistent, isolated workspaces with file access, command execution, and cross-run continuity. The release includes multiple execution backends (local, Docker, hosted providers), workspace management with snapshots and resume capabilities, sandbox memory for learning across runs, and comprehensive examples. Runtime enhancements provide tracing, session lifecycle management, and seamless integration with the existing Agent and Runner framework.

OpenAI Agents Python v0.14.1 is a maintenance release focusing on bug fixes and documentation improvements. Key fixes include sanitizing tracing export payloads, preserving computer driver compatibility for modifier keys, shielding server-managed handoffs from unsupported history rewrites, and stopping streamed tool execution after input guardrail violations. The release also includes documentation clarifications on ToolContext availability and CI improvements.

OpenClaw v2026.4.15-beta.1 introduces significant enhancements across control UI, memory management, and security. Key additions include OAuth token health monitoring, cloud storage support for LanceDB memory indexes, GitHub Copilot embedding provider integration, and experimental lean mode for local models. The release focuses on security hardening with credential redaction, symlink protection, and improved authentication handling, alongside numerous bug fixes for CLI configuration, memory access control, and provider failover logic.

langchain-openai version 1.1.13 is released with critical bug fixes and improvements. Key changes include handling content blocks without type keys in responses API conversion, fixing token extraction in usage metadata, and allowing user-provided User-Agent headers to override Azure defaults. The release also includes security updates (Pygments CVE), model profile refreshes, and VCR cassette playback fixes for CI testing.

crewAI v1.14.2a4 is a patch release introducing resume hints to devtools for improved failure handling. The release addresses critical bug fixes including strict mode forwarding to Bedrock Converse API, a pytest security vulnerability (GHSA-6w46-j5rx-g56g), and updates the OpenAI dependency lower bound to >=2.0.0. This alpha release maintains stability while preparing for the full 1.14.2 version.

Claude Code v2.1.108 introduces prompt caching TTL configuration options, a new recap feature for session context, and improved slash command discovery via the Skill tool. The release includes numerous UX improvements such as better error messaging, enhanced session resumption, and a warning system for model switching mid-conversation. Multiple bug fixes address transcript handling, telemetry interactions, file operations, and terminal compatibility issues.

OpenClaw v2026.4.14 is a quality release focused on model provider improvements, particularly for GPT-5 family support and channel provider fixes. The release includes forward-compatibility for gpt-5.4-pro, enhanced Telegram forum topic handling, and significant performance refactors to the core codebase. Key fixes address Ollama timeout handling, Codex provider catalog validation, media tool model references, security allowlist enforcement, and various provider integrations including Slack, Google, and Discord.

OpenClaw v2026.4.14-beta.1 is a maintenance release addressing 30+ security fixes, stability improvements, and feature enhancements across messaging platforms, browser automation, scheduling, memory systems, and agent tooling. Key improvements include replacing markdown parsing to prevent ReDoS attacks, fixing Telegram forum topic handling, correcting cron scheduler behavior, and enforcing SSRF/security policies across multiple integrations. The release emphasizes background task optimization and proper context preservation across system components.

Claude Code v2.1.105 introduces significant improvements to worktree management, plugin architecture, and user experience. Key additions include the `path` parameter for EnterWorktree, PreCompact hook blocking, background monitor support for plugins, and the `/proactive` alias for `/loop`. The release focuses on stability with better API stream handling, improved error messaging, and numerous bug fixes across file operations, terminal rendering, and MCP integration.

Google ADK Python v1.30.0 introduces significant enhancements including Auth Provider support in agent registry, Parameter Manager integration, Gemma 4 model support, and live avatar capabilities. The release also promotes BigQuery tools to stable status and adds artifact service integration for A2A events. Multiple bug fixes address security vulnerabilities, credential leakage, and improve the express mode user experience.

langchain-core version 1.3.0a2 is released with improvements to reference counting for garbage collection, streaming metadata optimizations, and various bug fixes. The release includes security hardening, documentation updates, and performance enhancements across multiple components including template sanitization, prompt loading, and token counting. Key fixes address symlink handling, model serialization, and tool schema validation.