What's Changed
🛡️ Security
- Normalize IPv6 transition forms in URL validation by @DouweM in #5528
- Security advisory: SSRF cloud-metadata blocklist bypass via IPv6-encoded address forms GHSA-cqp8-fcvh-x7r3
- This fix went out in yesterday's v1.99.0.
- You are affected only if your application explicitly opts a
FileUrlintoforce_download='allow-local'on a URL that is, or could be, influenced by untrusted input. - You are not affected if you use any of the bundled integrations to ingest user input:
Agent.to_web/clai web;VercelAIAdapter;AGUIAdapter/Agent.to_ag_ui
🚀 Features
- Support Bedrock native JSON output + strict tool calls by @shailendher in #4237
🐛 Bug Fixes
- Ignore signatures on incomplete incoming thinking parts when Vercel AI by @pydanty[bot] in #5534
🆕 V2 Preparation
- Deprecate
gateway/gemini:prefix in favor ofgateway/google-cloud:by @dsfaccini in #5543 - Deprecate method-style
StreamedResponse.usage(); raise on region-less Gateway API keys by @dsfaccini in #5546 - Deprecate positional construction of evals classes ahead of v2 kw-only flip by @dmontagu in #5547
- Deprecate
evaluation_name/evaluator_versionattribute pattern in favor of explicit accessor methods by @dmontagu in #5554
New Contributors
- @shailendher made their first contribution in #4237
Full Changelog: v1.99.0...v1.100.0