🚨 Security: Critical issues in chroma-mcp container

## 🚨 Security Scan Alert

A periodic security scan found critical issues in the container image:

- **Image**: `ghcr.io/stacklok/dockyard/uvx/chroma-mcp:0.2.6`
- **Critical vulnerabilities**: 1
- **High vulnerabilities**: 5
- **Secrets detected**: 0

### Details

See the [Security tab](../../security/code-scanning) for full details.

#### Critical Vulnerabilities

- **CVE-2025-68664** in `langchain-core`: langchain-core: LangChain: Arbitrary code execution via serialization injection

---
_Automated security scan from [periodic-security-scan workflow](../actions/workflows/periodic-security-scan.yml)_

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

🚨 Security: Critical issues in chroma-mcp container #273

🚨 Security Scan Alert

Details

Critical Vulnerabilities

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

🚨 Security: Critical issues in chroma-mcp container #273

Description

🚨 Security Scan Alert

Details

Critical Vulnerabilities

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions