1. LangChain Core v1 Update Patches Critical SSRF Vulnerability in ChatOpenAI (CVE-2026-26013)
A major security update for LangChain Core patches a critical Server-Side Request Forgery (SSRF) vulnerability that could allow attackers to force AI applications to make unauthorized network requests. The flaw, tracked as CVE-2026-26013, resides in the `ChatOpenAI.get_num_tokens_from_messages()` method. This function,...