chore(deps): update dependency langchain-community to v0.2.19 [security] by renovate-bot · Pull Request #117 · googleapis/langchain-google-memorystore-redis-python

renovate-bot · 2025-05-28T09:12:40Z

This PR contains the following updates:

Package	Change	Age	Confidence
langchain-community (changelog)	`==0.2.12` -> `==0.2.19`

GitHub Vulnerability Alerts

CVE-2024-8309

A vulnerability in the GraphCypherQAChain class of langchain-ai/langchain version 0.2.5 allows for SQL injection through prompt injection. This vulnerability can lead to unauthorized data manipulation, data exfiltration, denial of service (DoS) by deleting all data, breaches in multi-tenant security environments, and data integrity issues. Attackers can create, update, or delete nodes and relationships without proper authorization, extract sensitive data, disrupt services, access data across different tenants, and compromise the integrity of the database.

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Never, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

dpebot · 2025-05-28T09:12:45Z

/gcbrun

dpebot · 2025-05-28T23:04:48Z

/gcbrun

dpebot · 2025-05-29T05:16:01Z

/gcbrun

dpebot · 2025-05-29T13:24:03Z

/gcbrun

dpebot · 2025-05-29T23:30:13Z

/gcbrun

dpebot · 2025-05-30T06:08:19Z

/gcbrun

dpebot · 2025-05-30T18:37:55Z

/gcbrun

dpebot · 2025-05-31T01:40:32Z

/gcbrun

dpebot · 2025-05-31T11:23:10Z

/gcbrun

dpebot · 2025-05-31T18:20:27Z

/gcbrun

dpebot · 2025-06-01T01:37:56Z

/gcbrun

dpebot · 2025-06-01T09:47:04Z

/gcbrun

dpebot · 2025-06-01T16:33:16Z

/gcbrun

dpebot · 2025-08-23T22:04:35Z

/gcbrun

dpebot · 2025-08-24T04:30:48Z

/gcbrun

dpebot · 2025-08-24T16:57:59Z

/gcbrun

dpebot · 2025-08-25T01:52:10Z

/gcbrun

dpebot · 2025-08-25T09:55:15Z

/gcbrun

dpebot · 2025-08-25T17:42:32Z

/gcbrun

dpebot · 2025-08-26T01:12:16Z

/gcbrun

dpebot · 2025-08-26T12:08:03Z

/gcbrun

dpebot · 2025-08-26T23:03:10Z

/gcbrun

dpebot · 2025-08-27T05:59:10Z

/gcbrun

dpebot · 2025-08-27T19:11:05Z

/gcbrun

dpebot · 2025-08-28T01:00:59Z

/gcbrun

dpebot · 2025-08-28T23:53:26Z

/gcbrun

dpebot · 2025-08-31T14:09:15Z

/gcbrun

dpebot · 2025-08-31T22:04:46Z

/gcbrun

renovate-bot requested a review from a team as a code owner May 28, 2025 09:12

renovate-bot requested a review from a team May 28, 2025 09:12

blunderbuss-gcf bot assigned PingXie May 28, 2025

product-auto-label bot added the api: redis Issues related to the googleapis/langchain-google-memorystore-redis-python API. label May 28, 2025

renovate-bot force-pushed the renovate/pypi-langchain-community-vulnerability branch from 4f326ff to ad142af Compare May 28, 2025 23:04

renovate-bot force-pushed the renovate/pypi-langchain-community-vulnerability branch from ad142af to 926dcc4 Compare May 29, 2025 05:15

renovate-bot force-pushed the renovate/pypi-langchain-community-vulnerability branch from 926dcc4 to 2445254 Compare May 29, 2025 13:23

renovate-bot force-pushed the renovate/pypi-langchain-community-vulnerability branch from 2445254 to 4e1e101 Compare May 29, 2025 23:30

renovate-bot force-pushed the renovate/pypi-langchain-community-vulnerability branch from 4e1e101 to 7281f40 Compare May 30, 2025 06:08

renovate-bot force-pushed the renovate/pypi-langchain-community-vulnerability branch from 7281f40 to 1656901 Compare May 30, 2025 18:37

renovate-bot force-pushed the renovate/pypi-langchain-community-vulnerability branch from 1656901 to 9f56426 Compare May 31, 2025 01:40

renovate-bot force-pushed the renovate/pypi-langchain-community-vulnerability branch from 9f56426 to 638da1e Compare May 31, 2025 11:23

renovate-bot force-pushed the renovate/pypi-langchain-community-vulnerability branch from 638da1e to 1d36c35 Compare May 31, 2025 18:20

renovate-bot force-pushed the renovate/pypi-langchain-community-vulnerability branch from 1d36c35 to 60cef87 Compare June 1, 2025 01:37

renovate-bot force-pushed the renovate/pypi-langchain-community-vulnerability branch from 60cef87 to 42f071b Compare June 1, 2025 09:47

renovate-bot force-pushed the renovate/pypi-langchain-community-vulnerability branch from 42f071b to b08b378 Compare June 1, 2025 16:33

renovate-bot force-pushed the renovate/pypi-langchain-community-vulnerability branch from b08b378 to 2803e56 Compare June 2, 2025 00:31

renovate-bot force-pushed the renovate/pypi-langchain-community-vulnerability branch from 12002a2 to 70ac379 Compare August 24, 2025 04:30

renovate-bot force-pushed the renovate/pypi-langchain-community-vulnerability branch from 70ac379 to 7eb9b0e Compare August 24, 2025 16:57

renovate-bot force-pushed the renovate/pypi-langchain-community-vulnerability branch from 7eb9b0e to b6ed7be Compare August 25, 2025 01:52

renovate-bot force-pushed the renovate/pypi-langchain-community-vulnerability branch from b6ed7be to dbcb183 Compare August 25, 2025 09:55

renovate-bot force-pushed the renovate/pypi-langchain-community-vulnerability branch from dbcb183 to 49de1a2 Compare August 25, 2025 17:42

renovate-bot force-pushed the renovate/pypi-langchain-community-vulnerability branch from 49de1a2 to 6e78c79 Compare August 26, 2025 01:12

renovate-bot force-pushed the renovate/pypi-langchain-community-vulnerability branch from 6e78c79 to 339cddc Compare August 26, 2025 12:07

renovate-bot force-pushed the renovate/pypi-langchain-community-vulnerability branch from 339cddc to b394d7b Compare August 26, 2025 23:03

renovate-bot force-pushed the renovate/pypi-langchain-community-vulnerability branch from b394d7b to c151fbe Compare August 27, 2025 05:59

renovate-bot force-pushed the renovate/pypi-langchain-community-vulnerability branch from c151fbe to 7c20842 Compare August 27, 2025 19:10

renovate-bot force-pushed the renovate/pypi-langchain-community-vulnerability branch from 7c20842 to fdaae79 Compare August 28, 2025 01:00

renovate-bot force-pushed the renovate/pypi-langchain-community-vulnerability branch from fdaae79 to a17b027 Compare August 28, 2025 23:53

renovate-bot force-pushed the renovate/pypi-langchain-community-vulnerability branch from a17b027 to 7d0a614 Compare August 31, 2025 14:09

chore(deps): update dependency langchain-community to v0.2.19 [security]

91aad41

renovate-bot force-pushed the renovate/pypi-langchain-community-vulnerability branch from 7d0a614 to 91aad41 Compare August 31, 2025 22:04

Conversation

renovate-bot commented May 28, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

GitHub Vulnerability Alerts

CVE-2024-8309

Configuration

Uh oh!

dpebot commented May 28, 2025

Uh oh!

dpebot commented May 28, 2025

Uh oh!

dpebot commented May 29, 2025

Uh oh!

dpebot commented May 29, 2025

Uh oh!

dpebot commented May 29, 2025

Uh oh!

dpebot commented May 30, 2025

Uh oh!

dpebot commented May 30, 2025

Uh oh!

dpebot commented May 31, 2025

Uh oh!

dpebot commented May 31, 2025

Uh oh!

dpebot commented May 31, 2025

Uh oh!

dpebot commented Jun 1, 2025

Uh oh!

dpebot commented Jun 1, 2025

Uh oh!

dpebot commented Jun 1, 2025

Uh oh!

dpebot commented Aug 23, 2025

Uh oh!

dpebot commented Aug 24, 2025

Uh oh!

dpebot commented Aug 24, 2025

Uh oh!

dpebot commented Aug 25, 2025

Uh oh!

dpebot commented Aug 25, 2025

Uh oh!

dpebot commented Aug 25, 2025

Uh oh!

dpebot commented Aug 26, 2025

Uh oh!

dpebot commented Aug 26, 2025

Uh oh!

dpebot commented Aug 26, 2025

Uh oh!

dpebot commented Aug 27, 2025

Uh oh!

dpebot commented Aug 27, 2025

Uh oh!

dpebot commented Aug 28, 2025

Uh oh!

dpebot commented Aug 28, 2025

Uh oh!

dpebot commented Aug 31, 2025

Uh oh!

dpebot commented Aug 31, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

renovate-bot commented May 28, 2025 •

edited

Loading