[Snyk] Security upgrade langchain from 0.0.67 to 0.1.29

[bozza-man]

Snyk has created this PR to fix 1 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

• examples/langchain/langchainjs-localai-example/package.json
• examples/langchain/langchainjs-localai-example/package-lock.json

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Prototype Pollution SNYK-JS-EXPREVAL-13508636	186

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Prototype Pollution

---

Note

Upgrades langchain in examples/langchain/langchainjs-localai-example to v0.1.29 and refreshes the lockfile with new LangChain package split and updated OpenAI/Anthropic SDKs.

• Dependencies:
  • Bump langchain from ^0.0.67 to ^0.1.29 in examples/langchain/langchainjs-localai-example/package.json.
• Lockfile updates (major transitive changes):
  • Introduces LangChain split packages: @langchain/core, @langchain/community, @langchain/openai; adds langsmith, langchainhub, js-tiktoken, js-yaml.
  • Upgrades SDKs: openai to ^4.x (adds CLI, encoder/formdata deps) and @anthropic-ai/sdk to ^0.9.x.
  • Removes older deps tied to previous versions (e.g., legacy openai@3, browser-or-node, object-hash).
  • Adds/updates supporting libs and peer deps (e.g., zod, zod-to-json-schema, uuid, p-queue/p-retry).

^{Written by Cursor Bugbot for commit ae11adc. This will update automatically on new commits. Configure here.}

[coderabbitai]

Important

Review skipped

Ignore keyword(s) in the title.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

✨ Finishing touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch snyk-fix-9db68f1449c3bbd47d4c721e2f8a9ae5

Tip

📝 Customizable high-level summaries are now available in beta!

You can now customize how CodeRabbit generates the high-level summary in your pull requests — including its content, structure, tone, and formatting.

• Provide your own instructions using the high_level_summary_instructions setting.
• Format the summary however you like (bullet lists, tables, multi-section layouts, contributor stats, etc.).
• Use high_level_summary_in_walkthrough to move the summary from the description to the walkthrough section.

Example instruction:

"Divide the high-level summary into five sections:

1. 📝 Description — Summarize the main change in 50–60 words, explaining what was done.
2. 📓 References — List relevant issues, discussions, documentation, or related PRs.
3. 📦 Dependencies & Requirements — Mention any new/updated dependencies, environment variable changes, or configuration updates.
4. 📊 Contributor Summary — Include a Markdown table showing contributions:
   | Contributor | Lines Added | Lines Removed | Files Changed |
5. ✔️ Additional Notes — Add any extra reviewer context.
   Keep each section concise (under 200 words) and use bullet or numbered lists for clarity."

Note: This feature is currently in beta for Pro-tier users, and pricing will be announced later.

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}