Update dependency langsmith to v0.7.31 [SECURITY]

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
langsmith	0.7.20 → 0.7.31

GitHub Vulnerability Alerts

GHSA-rr7j-v2q5-chgv

Summary

The LangSmith SDK's output redaction controls (hideOutputs in JS, hide_outputs in Python) do not apply to streaming token events. When an LLM run produces streaming output, each chunk is recorded as a new_token event containing the raw token value. These events bypass the redaction pipeline entirely — prepareRunCreateOrUpdateInputs (JS) and _hide_run_outputs (Python) only process the inputs and outputs fields on a run, never the events array. As a result, applications relying on output redaction to prevent sensitive LLM output from being stored in LangSmith will still leak the full streamed content via run events.

Details

Both JS and Python SDKs are affected. The same pattern exists in both:

• JS SDK: traceable.ts:997-1003 and traceable.ts:1044-1050
• Python SDK: run_helpers.py:1924 and run_helpers.py:1996

In both SDKs, new_token events with raw kwargs.token values are added during streaming, and the redaction pipeline (hideOutputs in JS, hide_outputs in Python) only processes inputs/outputs — never events.

Severity

• CVSS Score: 5.3 / 10 (Medium)
• Vector String: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

---

LangSmith SDK: Streaming token events bypass output redaction

GHSA-rr7j-v2q5-chgv

More information

Details

Summary

The LangSmith SDK's output redaction controls (hideOutputs in JS, hide_outputs in Python) do not apply to streaming token events. When an LLM run produces streaming output, each chunk is recorded as a new_token event containing the raw token value. These events bypass the redaction pipeline entirely — prepareRunCreateOrUpdateInputs (JS) and _hide_run_outputs (Python) only process the inputs and outputs fields on a run, never the events array. As a result, applications relying on output redaction to prevent sensitive LLM output from being stored in LangSmith will still leak the full streamed content via run events.

Details

Both JS and Python SDKs are affected. The same pattern exists in both:

• JS SDK: traceable.ts:997-1003 and traceable.ts:1044-1050
• Python SDK: run_helpers.py:1924 and run_helpers.py:1996

In both SDKs, new_token events with raw kwargs.token values are added during streaming, and the redaction pipeline (hideOutputs in JS, hide_outputs in Python) only processes inputs/outputs — never events.

Severity

• CVSS Score: 5.3 / 10 (Medium)
• Vector String: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

References

• https://github.com/langchain-ai/langsmith-sdk/security/advisories/GHSA-rr7j-v2q5-chgv
• https://github.com/langchain-ai/langsmith-sdk

This data is provided by OSV and the GitHub Advisory Database (CC-BY 4.0).

---

Release Notes

langchain-ai/langsmith-sdk (langsmith)

v0.7.31

Compare Source

What's Changed

• chore(deps-dev): bump langchain-core from 1.2.23 to 1.2.28 in /python by @​dependabot[bot] in #​2692
• chore(deps-dev): bump @​anthropic-ai/sdk from 0.82.0 to 0.84.0 in /js by @​dependabot[bot] in #​2684
• chore(deps): bump cryptography from 46.0.6 to 46.0.7 in /python by @​dependabot[bot] in #​2693
• chore(deps-dev): bump @​anthropic-ai/sdk from 0.84.0 to 0.85.0 in /js by @​dependabot[bot] in #​2700
• feat(py): Tag OpenAI Agent Python SDK runs with ls_agent_type by @​jacoblee93 in #​2699
• feat(js): Adds ls_agent_type metadata to AI SDK runs by @​jacoblee93 in #​2701
• chore(deps-dev): bump types-tqdm from 4.67.3.20260303 to 4.67.3.20260408 in /python by @​dependabot[bot] in #​2710
• chore(deps): bump pnpm/action-setup from 5 to 6 by @​dependabot[bot] in #​2705
• chore(deps): bump the py-minor-and-patch group across 1 directory with 10 updates by @​dependabot[bot] in #​2711
• chore(deps-dev): bump @​anthropic-ai/sdk from 0.85.0 to 0.86.0 in /js by @​dependabot[bot] in #​2702
• chore(deps): bump actions/github-script from 8 to 9 by @​dependabot[bot] in #​2706
• chore(deps-dev): bump the js-minor-and-patch group across 1 directory with 7 updates by @​dependabot[bot] in #​2712
• chore(deps-dev): bump types-psutil from 7.2.2.20260130 to 7.2.2.20260408 in /python by @​dependabot[bot] in #​2709
• chore(deps-dev): bump rich from 14.3.3 to 15.0.0 in /python by @​dependabot[bot] in #​2708
• feat: Filter kwargs from new token events by @​jacoblee93 in #​2714
• release(py): 0.7.31 by @​jacoblee93 in #​2716

Full Changelog: langchain-ai/langsmith-sdk@v0.7.30...v0.7.31

v0.7.30

Compare Source

What's Changed

• feat(python): add service feature to sandbox by @​DanielKneipp in #​2665
• fix(js): Fix prototype pollution bug in anonymizers by @​jacoblee93 in #​2690
• release(js): 0.5.18 by @​jacoblee93 in #​2691
• chore(js/sandbox): suppress warning log by @​hntrl in #​2694
• feat(js): Add metadata to Claude Agent SDK JS tracing by @​jacoblee93 in #​2695
• fix(py): Fix run tree memory leak by @​jacoblee93 in #​2696
• release(py): 0.7.30 by @​jacoblee93 in #​2698

Full Changelog: langchain-ai/langsmith-sdk@v0.7.29...v0.7.30

v0.7.29

Compare Source

What's Changed

• release(js): 0.5.17 by @​jacoblee93 in #​2681
• feat(py): Fix race condition around Claude Agent SDK instrumentation by @​jacoblee93 in #​2685
• release(py): 0.7.29 by @​jacoblee93 in #​2686

Full Changelog: langchain-ai/langsmith-sdk@v0.7.28...v0.7.29

v0.7.28

Compare Source

What's Changed

• feat(py): Support subagent tracing in Claude Agents SDK, fix usage and duplicate messages by @​jacoblee93 in #​2670
• chore(deps-dev): bump the py-minor-and-patch group across 1 directory with 11 updates by @​dependabot[bot] in #​2677
• chore(deps-dev): bump the js-minor-and-patch group across 1 directory with 8 updates by @​dependabot[bot] in #​2667
• chore(deps): bump pnpm/action-setup from 4 to 5 by @​dependabot[bot] in #​2658
• chore(py): Deflake test by @​jacoblee93 in #​2680
• feat(py,js): Allow dynamically setting custom client headers by @​jacoblee93 in #​2678
• chore(deps): bump google-cloud-aiplatform from 1.126.1 to 1.133.0 in /python by @​dependabot[bot] in #​2679
• Fix(py): Add model_dump fallback to prevent .dict() deprecation warning by @​dnguyenv in #​2655
• fix(py): Fix type checking by @​jacoblee93 in #​2683
• release(py): 0.7.28 by @​jacoblee93 in #​2682

New Contributors

• @​dnguyenv made their first contribution in #​2655

Full Changelog: langchain-ai/langsmith-sdk@v0.7.27...v0.7.28

v0.7.27

Compare Source

What's Changed

• chore(js): Vendor Chalk and console-table-printer deps, pin others by @​jacoblee93 in #​2664
• chore(deps-dev): bump vite from 6.4.1 to 6.4.2 in /js/internal/environment_tests/test-exports-vite in the npm_and_yarn group across 1 directory by @​dependabot[bot] in #​2666
• feat(js): Add ls_integration metadata to AI SDK and Claude Agents SDK by @​tanushree-sharma in #​2668
• fix: retry on 502/3/4 in get_prompt by @​jdrogers940 in #​2672
• fix: add more retryable errors to the async client by @​jdrogers940 in #​2675
• release(python): 0.7.27 by @​jdrogers940 in #​2676

New Contributors

• @​tanushree-sharma made their first contribution in #​2668
• @​jdrogers940 made their first contribution in #​2672

Full Changelog: langchain-ai/langsmith-sdk@v0.7.26...v0.7.27

v0.7.26

Compare Source

What's Changed

• chore(deps-dev): bump @​anthropic-ai/sdk from 0.80.0 to 0.81.0 in /js by @​dependabot[bot] in #​2646
• feat(sdk): add list_project_issues method by @​Palashio in #​2654
• chore: bump version to 0.7.26 by @​Palashio in #​2663

Full Changelog: langchain-ai/langsmith-sdk@v0.7.25...v0.7.26

v0.7.25

Compare Source

What's Changed

• fix: anthropic parse messages in js by @​ericdong-langchain in #​2644
• chore: bump js by @​ericdong-langchain in #​2647
• chore: remove index_dataset, similar_examples, and sync_indexed_dataset from clients by @​open-swe[bot] in #​2645
• feat(py, js): add description to hub prompts sdk by @​asrira428 in #​2639
• feat(otel): add set_metadata to OtelSpanProcessor for thread_id propagation by @​angus-langchain in #​2650
• Bump version: 0.7.24 → 0.7.25 by @​angus-langchain in #​2652

New Contributors

• @​asrira428 made their first contribution in #​2639

Full Changelog: langchain-ai/langsmith-sdk@v0.7.24...v0.7.25

v0.7.24

Compare Source

What's Changed

• chore(deps): bump handlebars from 4.7.8 to 4.7.9 in /js by @​dependabot[bot] in #​2620
• chore(deps): bump the py-minor-and-patch group across 1 directory with 20 updates by @​dependabot[bot] in #​2629
• chore(deps): bump pygments from 2.19.2 to 2.20.0 in /python by @​dependabot[bot] in #​2633
• chore(deps-dev): bump the js-minor-and-patch group across 1 directory with 6 updates by @​dependabot[bot] in #​2634
• chore: Switch to pnpm, use minimumReleaseAge by @​jacoblee93 in #​2635
• chore: Adds exclude-newer to uv settings by @​jacoblee93 in #​2638
• fix: add wrapping for client.beta.messages.parse by @​ericdong-langchain in #​2642
• chore: bump py version by @​ericdong-langchain in #​2643

Full Changelog: langchain-ai/langsmith-sdk@v0.7.23...v0.7.24

v0.7.23

Compare Source

What's Changed

• chore(deps): bump flatted from 3.3.3 to 3.4.2 in /js by @​dependabot[bot] in #​2600
• feat(js): Parse AI SDK reasoning blocks into standard content blocks by @​jacoblee93 in #​2601
• release(js): 0.5.12 by @​jacoblee93 in #​2602
• feat(js): Add proper aggregation for AI SDK reasoning when streaming by @​jacoblee93 in #​2606
• release(js): 0.5.13 by @​jacoblee93 in #​2607
• feat(python): add ttl feature for sandboxes by @​DanielKneipp in #​2609
• feat(js): fix tracing of subagents for newer versions of @​anthropic/claude-agent-sdk, harden null checks by @​dqbd in #​2611
• release(js): 0.5.14 by @​dqbd in #​2612
• chore(deps): bump requests from 2.32.5 to 2.33.0 in /python by @​dependabot[bot] in #​2613
• feat(js): add ttl feature for sandboxes by @​christian-bromann in #​2617
• chore(deps): bump picomatch from 2.3.1 to 2.3.2 in /js/internal/environment_tests/test-exports-metro in the npm_and_yarn group across 1 directory by @​dependabot[bot] in #​2616
• chore(deps-dev): bump the js-minor-and-patch group across 1 directory with 17 updates by @​dependabot[bot] in #​2614
• fix: include model field in wrap_gemini js traced inputs by @​QuentinBrosse in #​2608
• release(js): 0.5.15 by @​jacoblee93 in #​2618
• chore(deps-dev): bump langchain-core from 1.2.15 to 1.2.22 in /python by @​dependabot[bot] in #​2622
• chore(deps): bump cryptography from 46.0.5 to 46.0.6 in /python by @​dependabot[bot] in #​2623
• chore: support aws saas cluster by @​joaquin-borggio-lc in #​2628
• feat(python): Support headers arg in sandbox client by @​bracesproul in #​2619
• chore(python): Release 0.7.23 by @​bracesproul in #​2632

New Contributors

• @​christian-bromann made their first contribution in #​2617
• @​joaquin-borggio-lc made their first contribution in #​2628

Full Changelog: langchain-ai/langsmith-sdk@v0.7.22...v0.7.23

v0.7.22

Compare Source

What's Changed

• chore: add experiment id by @​hinthornw in #​2599

Full Changelog: langchain-ai/langsmith-sdk@v0.7.21...v0.7.22

v0.7.21

Compare Source

What's Changed

• fix(js): Fix AI SDK and Claude Agents SDK in non-Node envs by @​jacoblee93 in #​2591
• release(js): 0.5.11 by @​jacoblee93 in #​2592
• chore(deps-dev): bump dotenv from 16.4.7 to 17.3.1 in /js by @​dependabot[bot] in #​2507
• chore(deps-dev): bump multipart from 1.3.0 to 1.3.1 in /python by @​dependabot[bot] in #​2566
• chore(deps): bump authlib from 1.6.8 to 1.6.9 in /python by @​dependabot[bot] in #​2580
• chore(deps): bump pyopenssl from 25.3.0 to 26.0.0 in /python by @​dependabot[bot] in #​2581
• chore(deps): bump pyasn1 from 0.6.2 to 0.6.3 in /python by @​dependabot[bot] in #​2587
• chore(deps): bump dorny/paths-filter from 3 to 4 by @​dependabot[bot] in #​2578
• chore(deps): bump pyjwt from 2.10.1 to 2.12.0 in /python by @​dependabot[bot] in #​2594
• fix: add debug logging to background thread shutdown and final flush by @​baskaryan in #​2597
• chore: bump python SDK version to 0.7.21 by @​baskaryan in #​2598

Full Changelog: langchain-ai/langsmith-sdk@v0.7.20...v0.7.21

---

Configuration

📅 Schedule: (in timezone US/Eastern)

• Branch creation
  • ""
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.