[v4.1.2] - 2026-04-03
Fixed
- Task Control: Added support for stopping running tasks, allowing users to actively terminate scans in progress
- AI Infra Scan: Fixed a bug where the "No Model" option could not be selected in AI infrastructure scan task configuration, preventing users from creating model-free scan tasks
- AI Infra Scan: Fixed double-dot filename bug in scan file upload that caused certain filenames to be incorrectly rejected
- AI Infra Scan: Fixed concurrent goroutine hang in multi-IP scan scenarios, improving scan stability and task completion reliability
- Agent Scan: Hardened LLM error handling to prevent scan crashes on unexpected model responses
- LLM Input: Fixed inappropriate input text passed to LLM in certain scan scenarios
Added
- Vulnerability Rules [2026-03-26]: Added 15 new CVE rules covering n8n (×11), OpenClaw (×3), llama.cpp (×1)
- Vulnerability Rules [2026-03-27]: Added 29 new CVE rules covering BentoML (×1), Langflow (×2), OpenClaw (×26); added BentoML fingerprint
- Vulnerability Rules [2026-03-30]: Added 15 new CVE rules covering Langflow (×1), LibreChat (×4), LoLLMs (×1), MLflow (×1), OpenClaw (×8); added Wallos fingerprint
- Coverage: AI component vulnerability coverage expanded to 52 components / 1000+ CVEs
Changed
- Fingerprint Accuracy: Aligned fingerprint
info.namewith vulnerability rule names for consistent detection matching - Documentation: Updated AI infra scan component and CVE statistics in README
Contributors
Special thanks to @feiyang666, @Yang1k, @aigsec