Skip to content

Bump mem0ai from 1.0.11 to 2.0.11#186

Open
dependabot[bot] wants to merge 1 commit into
developfrom
dependabot/uv/develop/mem0ai-2.0.11
Open

Bump mem0ai from 1.0.11 to 2.0.11#186
dependabot[bot] wants to merge 1 commit into
developfrom
dependabot/uv/develop/mem0ai-2.0.11

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 3, 2026

Copy link
Copy Markdown
Contributor

Bumps mem0ai from 1.0.11 to 2.0.11.

Release notes

Sourced from mem0ai's releases.

Mem0 Python SDK (v2.0.11)

Bug Fixes:

  • Embeddings: Guard against an embed_batch count mismatch in the OpenAI and Azure OpenAI embedders (#5966)
  • Memory: Re-raise LLM extraction failures instead of silently returning [] (#5878)
  • Vector Stores: Normalize vectors for the cosine distance strategy in FAISS (#5960)

Security:

  • Vector Stores: Validate OpenSearch filter values to prevent term query injection (#5986)
  • Vector Stores: Validate value types and escape quotes in Azure AI Search OData filters (#5983)
  • Vector Stores: Validate Databricks catalog/schema/table identifiers to prevent SQL injection (#5988)
  • Graph: Escape Neptune filter values in openCypher queries to prevent injection (#5982)

Mem0 Python SDK (v2.0.10)

New Features:

  • Client: Expose expiration_date on MemoryClient.update() and AsyncMemoryClient.update() — callers can now set or clear a memory's expiration date; None is preserved and forwarded to the API (#5874)

Bug Fixes:

  • Memory (OSS): Apply remove_code_blocks() to the LangChain path in async _create_procedural_memory so code fences are stripped consistently (#5711)
  • Rerankers: Score HuggingFace cross-encoder results with per-document sigmoid instead of set-relative min-max, preventing a single low-score document from collapsing all relevance scores to zero (#5715)
  • Core: Validate and trim entity IDs (user_id, agent_id, run_id) in delete_all() for both sync and async Memory (#5735)
  • Vector Stores: Use .get() for hash and created_at in the Redis insert() and update() paths so entity payloads that omit those fields no longer raise KeyError (#5709)
  • Memory: Fix scale-threshold notices not firing for Redis and search-engine backends by resolving col_info() signature differences and adding num_docs to the count-extraction lookup (#5687)
  • Vector Stores: Escape special characters in Valkey FT.SEARCH tag filter values to prevent wildcard and operator injection through tenant-isolation filters (#5750)

Mem0 Python SDK (v2.0.8)

New Features:

  • Embeddings: Add native embed_batch to five embedders — LM Studio, Together, HuggingFace, Vertex AI, and Google GenAI — for batched embedding requests (#5609)

Bug Fixes:

  • Core: Guard against malformed image_url entries in parse_vision_messages to prevent crashes (#5631)
  • Core: Return attributed_to from get(), get_all(), and search() (#5629)
  • Core: Fix reset() only dropping the history table and leaving stale messages behind (#5541)
  • Core: Guard against an entity embed_batch count mismatch in the v3 add pipeline (#5604)
  • Core: Fix an async delete_all race condition that corrupted the entity store's linked_memory_ids (#5553)
  • LLMs: Skip the JSON response_format for Groq compound models that reject it (#5513)
  • LLMs: Preserve reasoning fields during base-to-provider config conversion (#5638)
  • LLMs: Pass the configured anthropic_base_url to the Anthropic client (#5626)
  • LLMs: Stop the Azure provider from mutating and corrupting caller messages during content rewrite (#5731)
  • LLMs & Embeddings: Repair HTTP proxy support for httpx>=0.28 and preserve proxies in LlmFactory (#5447)
  • Embeddings: Forward embedding_dims to Titan V2 in the AWS Bedrock embedder (#5671)
  • Rerankers: Log reranking failures instead of swallowing them silently (#5717)
  • Rerankers: Clamp out-of-range LLM scores instead of mis-parsing them (#5635)
  • Rerankers: Export all five rerankers from the package root (#5636)
  • Vector Stores: Point the FastEmbed-missing warning at mem0ai[extras] (#5622)
  • Vector Stores: Preserve empty Azure AI Search update values (#5524)
  • Vector Stores: Add an auto_refresh option for OpenSearch Serverless compatibility (#3893)
  • Vector Stores: Wrap a scalar vector_id in a list for Chroma delete() (#5703)

... (truncated)

Commits
  • f2532f0 chore: update changelog, bump SDK versions to Python 2.0.11 and TypeScript 3....
  • 41c8f00 chore(integrations): plugin updates, pi-agent auto-recall, and version bumps ...
  • a36a392 fix(opensearch): validate filter values to prevent term query injection (#5986)
  • 152d1e6 fix(embeddings): guard embed_batch count mismatch in OpenAI and Azure OpenAI ...
  • bc05fd9 fix(neptune): escape filter values in openCypher queries to prevent injection...
  • ad7e098 fix(memory): re-raise LLM extraction failures instead of returning [] (salvag...
  • c325bd3 docs(changelog): consolidate per-package changelogs into the SDK changelog pa...
  • 2add7fd docs(graph-memory): gate Graph view visualization to Pro/Enterprise (#6000)
  • b2ff3ae Clean up release highlights copy and removing emdash from the docs (#5984)
  • 754034a Revert "fix(memory): accept llm kwarg in sync Memory.add()/_create_procedur...
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [mem0ai](https://github.com/mem0ai/mem0) from 1.0.11 to 2.0.11.
- [Release notes](https://github.com/mem0ai/mem0/releases)
- [Commits](mem0ai/mem0@v1.0.11...v2.0.11)

---
updated-dependencies:
- dependency-name: mem0ai
  dependency-version: 2.0.11
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels Jul 3, 2026
@github-actions

github-actions Bot commented Jul 3, 2026

Copy link
Copy Markdown
Contributor

PR Quality Check

Pylint Score: 9.74/10 [PASS]
Tests: Check workflow status above

[PASS] All checks passed!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants