OpenIG 6.1.0 Released

Download

What’s new

• Added JwtBuilderFilter — creates a JSON Web Token (JWT) from runtime data and injects it into the request context
• Added OpenApiValidationFilter — validates inbound HTTP requests and outbound HTTP responses against an OpenAPI specification (Swagger 2.x or OpenAPI 3.x)
• Added LLMPromptGuardFilter — intercepts outgoing LLM API requests and scans every prompt for prompt-injection attacks before the request reaches the downstream model; implements mitigations for OWASP LLM Top 10 (2025) risks LLM01 (Prompt Injection) and LLM07 (System Prompt Leakage)
• Added LLMProxyFilter — controls LLM token usage per user
• Added MCPServerFeaturesFilter — enforces allow/deny policies for Model Context Protocol (MCP) features exchanged as JSON-RPC payloads; inspects both incoming requests and outgoing responses and removes or rejects features according to configured rules
• Added JDK 26 support to the build pipeline
• Updated OpenAM dependency to version 16.0.6
• Addressed security vulnerability:
  • CVE-2026-24308 - Apache ZooKeeper improper handling of configuration values

Full changeset (more details)

Thanks for the contributions

1. Maxim Thomas
2. Valery Kharseko