github vercel/ai ai@6.0.118
on GitHub

latest releases: ai@6.0.119, @ai-sdk/angular@2.0.120, @ai-sdk/svelte@4.0.119...
9 hours ago

Patch Changes

  • 64ac0fd: fix(security): validate redirect targets in download functions to prevent SSRF bypass

    Both downloadBlob and download now validate the final URL after following HTTP redirects, preventing attackers from bypassing SSRF protections via open redirects to internal/private addresses.

  • Updated dependencies [64ac0fd]

    • @ai-sdk/provider-utils@4.0.20
    • @ai-sdk/gateway@3.0.68
Check out latest releases or
releases around vercel/ai ai@6.0.118

Don't miss a new ai release

NewReleases is sending notifications on new releases.

Get notifications