[Release] crewaiInc/crewAI 1.14.0: 1.14.0

crewAI 1.14.0 introduces checkpoint management with CLI commands and SqliteProvider storage, implements runtime state checkpointing with an event system, and refactors the executor. Security enhancements include SSRF/path traversal protections and RAG tool validation. The release also optimizes memory serialization by excluding embedding vectors and addresses critical CVE-2026-35030 via litellm upgrade.

Key Points

• •Add checkpoint list/info CLI commands for managing workflow state snapshots
• •Implement SqliteProvider for persistent checkpoint storage alongside existing providers
• •Add CheckpointConfig for automatic checkpointing without manual intervention
• •Deploy runtime state checkpointing with event system for better workflow observability
• •Add SSRF and path traversal protections to prevent security vulnerabilities
• •Implement path and URL validation in RAG tools to secure external data access
• •Exclude embedding vectors from memory serialization to reduce token consumption
• •Bump litellm to >=1.83.0 to fix critical CVE-2026-35030 vulnerability
• •Deprecate CodeInterpreterTool and code execution parameters in favor of safer alternatives
• •Refactor executor architecture for improved performance and maintainability

Workflow Diagram

Concepts