Security Advisories for github.com/stacklok/toolhive in go
Low
about 4 hours ago
ToolHive: SSRF in remote MCP server authentication discovery (host-side, bypasses container isolation)
go
github.com/stacklok/toolhive
Low
about 6 hours ago
ToolHive: SSRF guard misses IPv6 NAT64 ranges (64:ff9b::/96, 64:ff9b:1::/48), allowing metadata/internal access behind a NAT64 gateway
go
github.com/stacklok/toolhive