Flowise
Open-source low-code tool to build LLM apps and AI agents visually.
Flowise hardens its security surface while opening its flows to MCP clients.
◆Recent moves
- 17d ago
Flowise 3.1.3: chatflows can be exposed as MCP servers
⚡ SPARK3.1.3 bundles fixes (clickjacking, node-action notifications, Start-node form filtering) with a notable capability: any chatflow can now be turned into an MCP server — fitting the trajectory toward agent-ecosystem interop.
View source ↗ - 2mo ago
A security-focused release: fixes for a CORS-wildcard credential-abuse hole, mass assignment in the tools endpoint, a credential data leak, and MCP-server config hardening — admin-relevant patches, not cosmetic bug fixes.
View source ↗ - 2mo ago
[email protected]: Release/3.1.2 (#6215)
A monorepo UI-package release snapshot (flowise-ui 3.1.2) carrying no standalone user-facing change.
View source ↗ - 2mo ago
[email protected]: Release/3.1.2 (#6215)
A monorepo component-package release snapshot (flowise-components 3.1.2) with no standalone user-facing content.
View source ↗ - 3mo ago
3.1.1 adds a rich-text editor for content editing and migrates Weaviate to the v3 client, alongside path-traversal and agentflow parameter fixes — incremental builder improvements with security patches.
View source ↗ - 3mo ago
3.1.0 turns on HTTP security validation by default, using a built-in deny list to block SSRF-style requests to internal addresses — a breaking but defensive default-hardening change for self-hosted deployments.
View source ↗