This release focuses on security improvements and bug fixes, including prevention of PATH hijacking vulnerabilities and fixes to environment file support.
Bug Fixes
- Fixes prevention of PATH hijacking and TOCTOU (Time-of-Check-Time-of-Use) vulnerabilities in shell/binary resolution (CWE-426)
- Fixes --env-file support for the gateway
Technical Changes
- Removes debug code from codebase
- Reverts user prompt options feature that was previously added
What's Changed
- docs: update CHANGELOG.md for v1.32.1 by @docker-read-write[bot] in #2084
- fix: prevent PATH hijacking and TOCTOU in shell/binary resolution by @dgageot in #2083
- Remove debug code by @dgageot in #2086
- Fix --env-file support for the gateway by @dgageot in #2085
- Revert "Add options-based selection to user_prompt tool" by @trungutt in #2088
Full Changelog: v1.32.1...v1.32.2