I think it is also important to list vulnerabilities and fixes for identified security problems, such as Antropic MCP
I think the community can amplify the messages, to make updates on used APIs whenever a vulnerability discovered:
Such cases also serve a case for learning, how we can make our solutions less vulnerable.
We do have prescribed corporate procedures for reporting any CVE’s discovered within our product offerings. We constantly test and scan our products and to date we do not have any such items to report. When CVEs are reported in any of the third party components within our stack we remediate all those within the time frames specified in our policies based off attack surface area and criticality.
If you have any specific vulnerabilities you think are present within our product offerings please open a support case by emailing help@sambanova.ai
-Coby
Thanks Coby, it is more about the third party libraries what users using.
Many example on the github repo uses third parties, I think it is great if any vulnerability found, more people know about it.