Skip to content

chore(deps): bump ai from 4.3.19 to 6.0.202#14

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/ai-6.0.202
Open

chore(deps): bump ai from 4.3.19 to 6.0.202#14
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/ai-6.0.202

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 12, 2026

Copy link
Copy Markdown
Contributor

Bumps ai from 4.3.19 to 6.0.202.

Release notes

Sourced from ai's releases.

ai@6.0.202

Patch Changes

  • 942f2f8: fix(security): re-validate tool approvals from client message history before execution

    The approval-replay path in generateText/streamText reconstructed approved tool calls from the client-supplied messages array and executed them without re-validating input against the tool's schema or re-checking that the tool actually requires approval. A client could forge an assistant message with a pre-approved tool-call part and have the server execute a tool with attacker-chosen arguments.

    The replay path now verifies the HMAC signature (when experimental_toolApprovalSecret is configured), re-validates tool-call input against the tool's input schema, and re-resolves whether the tool requires approval before execution.

  • Updated dependencies [942f2f8]

    • @​ai-sdk/provider-utils@​4.0.28
    • @​ai-sdk/gateway@​3.0.128

ai@6.0.201

Patch Changes

  • 0c8c0ed: fix(ai): return schema-transformed elements in array output mode

    Previously final array output validation checked each element against the schema but returned the raw model output. Array output now returns the validated values so Zod transforms, coercions, defaults, and pipes are applied consistently with object output.

ai@5.0.199

Patch Changes

  • 040dc83: fix(ai): return schema-transformed elements in array output mode

    Previously final array output validation checked each element against the schema but returned the raw model output. Array output now returns the validated values so Zod transforms, coercions, defaults, and pipes are applied consistently with object output.

ai@5.0.198

Patch Changes

  • b02267c: Harden UI message stream processing against prototype pollution from chunk IDs.
Changelog

Sourced from ai's changelog.

6.0.202

Patch Changes

  • 942f2f8: fix(security): re-validate tool approvals from client message history before execution

    The approval-replay path in generateText/streamText reconstructed approved tool calls from the client-supplied messages array and executed them without re-validating input against the tool's schema or re-checking that the tool actually requires approval. A client could forge an assistant message with a pre-approved tool-call part and have the server execute a tool with attacker-chosen arguments.

    The replay path now verifies the HMAC signature (when experimental_toolApprovalSecret is configured), re-validates tool-call input against the tool's input schema, and re-resolves whether the tool requires approval before execution.

  • Updated dependencies [942f2f8]

    • @​ai-sdk/provider-utils@​4.0.28
    • @​ai-sdk/gateway@​3.0.128

6.0.201

Patch Changes

  • 0c8c0ed: fix(ai): return schema-transformed elements in array output mode

    Previously final array output validation checked each element against the schema but returned the raw model output. Array output now returns the validated values so Zod transforms, coercions, defaults, and pipes are applied consistently with object output.

6.0.200

Patch Changes

  • 14098e7: fix(ai): reject streamText result promises with NoOutputGeneratedError when the model stream ends without producing any output. Previously such streams resolved with an empty step. Incomplete streams with partial output still resolve with the partial result.
  • 2cabe9c: Harden UI message stream processing against prototype pollution from chunk IDs.

6.0.199

Patch Changes

  • 49d9364: fix(ai): add approval guard for denied tool outputs
  • Updated dependencies [3851e29]
  • Updated dependencies [2a91a17]
    • @​ai-sdk/gateway@​3.0.127

6.0.198

Patch Changes

  • Updated dependencies [ff16d3b]
    • @​ai-sdk/gateway@​3.0.126

6.0.197

Patch Changes

  • Updated dependencies [fef3b24]

... (truncated)

Commits
  • 9ef2c3c Version Packages (#15998)
  • 942f2f8 Backport: fix(security): harden tool approval replay path against client-forg...
  • dca8c38 Version Packages (#15992)
  • 0c8c0ed Backport: fix(ai): return schema-transformed elements in array output mode (#...
  • a340536 Version Packages (#15965)
  • 14098e7 Backport: fix(ai): reject incomplete model streams (#15971)
  • 2cabe9c Backport: fix(ai): Harden UI message stream processing against prototype poll...
  • f6e5881 Version Packages (#15902)
  • 49d9364 Backport: fix(ai): add approval guard for denied tool outputs (#15914)
  • 8ad68fe Version Packages (#15898)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for ai since your current version.


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps): bump ai from 4.3.19 to 6.0.202
e4d8795 
Bumps [ai](https://github.com/vercel/ai/tree/HEAD/packages/ai) from 4.3.19 to 6.0.202.
- [Release notes](https://github.com/vercel/ai/releases)
- [Changelog](https://github.com/vercel/ai/blob/ai@6.0.202/packages/ai/CHANGELOG.md)
- [Commits](https://github.com/vercel/ai/commits/ai@6.0.202/packages/ai)

---
updated-dependencies:
- dependency-name: ai
  dependency-version: 6.0.202
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jun 12, 2026
@dependabot dependabot Bot requested a review from xfajarr as a code owner June 12, 2026 03:47
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jun 12, 2026
@dependabot dependabot Bot mentioned this pull request Jun 12, 2026
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@xfajarr xfajarr Awaiting requested review from xfajarr xfajarr is a code owner

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants