1. Ollama Embedding Client Exposes SSRF Risk via Unvalidated OLLAMA_URL Environment Variable
A medium-severity SSRF vulnerability has been identified in the Ollama embedding client, allowing potential internal network probing if the environment variable is maliciously configured. The flaw resides in the `src/infrastructure/embeddings/ollama.ts` file, where the `OLLAMA_URL` environment variable is used directly...