fix(deps): update module github.com/stacklok/toolhive to v0.5.0 #149
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
ℹ Artifact update noticeFile name: go.modIn order to perform the update(s) described in the table above, Renovate ran the
Details:
|
🔒 MCP Security Scan Results✅ adb-mysql-mcp-server
✅ agentql-mcp
✅ arxiv-mcp-server
❌ astra-db-mcp
Security issues detected:
✅ aws-diagram
✅ aws-documentation
✅ blender-mcp
✅ brightdata-mcp
✅ browserbase-mcp-server
✅ chroma-mcp
✅ context7
✅ graphlit-mcp-server
✅ heroku-mcp-server
✅ ida-pro-mcp
✅ magic-mcp
✅ mcp-clickhouse
✅ mcp-jetbrains
✅ mcp-neo4j-aura-manager
✅ mcp-neo4j-cypher
✅ mcp-neo4j-memory
✅ mcp-server-box
✅ mcp-server-circleci
✅ mcp-server-neon
✅ netbird
✅ notion
✅ onchain-mcp
✅ phoenix-mcp
✅ sentry-mcp-server
✅ supabase-mcp-server
✅ tavily-mcp
Summary: Scanned 30 MCP server(s), found 16 security issue(s). |
renovate
bot
force-pushed
the
renovate/github.com-stacklok-toolhive-0.x
branch
from
53d2dc9 to
e02e3a0
Compare
renovate
bot
changed the title
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
v0.3.11->v0.5.0Release Notes
stacklok/toolhive (github.com/stacklok/toolhive)
v0.5.0Compare Source
What's Changed
f30f5eeby @renovate[bot] in #2307a4bb9ffby @renovate[bot] in #2309task operator-manifestsby @JAORMX in #2334Full Changelog: stacklok/toolhive@v0.4.2...v0.5.0
v0.4.2Compare Source
What's Changed
Full Changelog: stacklok/toolhive@v0.4.1...v0.4.2
v0.4.1Compare Source
🚀 Toolhive v0.4.1 is live!
This release focuses on improved networking flexibility, observability enhancements, and better resource efficiency in Kubernetes deployments.
Networking & Infrastructure
• Added
--networkoption for more flexible network configurations• Kubernetes agents can now be merged between local and project-specific setups for streamlined deployments
Observability & Telemetry
• Custom OpenTelemetry resource attributes are now supported for richer trace metadata
• Registry data source API added for better integration and data access
Developer Experience
• New
/check-contributioncommand added to Claude integration for easier contribution validation• Controller helpers extracted into dedicated package for cleaner codebase architecture
• MCPServer CRD size reduced by optimizing PodTemplateSpec handling
Documentation
• Clarified file naming conventions for proposal documents
Dependencies
• Updated ginkgo/v2 → v2.27.1
• Updated cedar-policy/cedar-go → v1.2.8
• Registry synced with toolhive-registry release v2025.10.23
• Toolhive images updated to v0.4.0
👋 Welcome to our newest contributors @therealnb, @tgrunnagle, @dmartinol, @ChrisJBurns, and @blkt! 🥳
Change log
docs/proposalsby @blkt in #2298Full Changelog: stacklok/toolhive@v0.4.0...v0.4.1
v0.4.0Compare Source
🚀 Toolhive v0.4.0 is live!
This release brings major enhancements to Kubernetes integration, MCP server capabilities, and developer tooling support!
Developer Experience
• Added support for Trae IDE and Continue.dev clients for more flexible development workflows
• New Claude Code skills and agents help automate documentation and PR tasks
• Improved developer guide with updated Go version references
• Export command now supports Kubernetes format for easier deployments
Architecture & Documentation
• Added comprehensive architecture documentation
• New MCP _meta field support improves request parsing capabilities
• Registry API has been fully externalized from the core project
MCP & Kubernetes
• Introduced MCPRemoteProxy CRD controller for seamless remote MCP server proxying
• MCPGroup now supported in Kubernetes environments for better organization
• Internal MCP optimizer group is now hidden for cleaner interfaces
• Fixed regression that broke detection of already-running remote MCP servers
Workloads & APIs
• New proxy-logs endpoint gives visibility into workload logging
• Enhanced token-exchange middleware with comprehensive unit tests
Infrastructure & Reliability
• Fixed nil pointer dereference in environment variable validation
• Resolved race condition in keyring provider that caused concurrent restart failures
• OpenShift values now properly aligned with core Kubernetes values
• Fixed chainsaw install for e2e tests
• Registry updates pulled from multiple releases (v2025.10.18–v2025.10.22)
Dependencies
• Bumped lestrrat-go/jwx/v3 → 3.0.12
• Bumped cedar-policy/cedar-go → 1.2.7
• Bumped mark3labs/mcp-go → 0.42.0
• Updated golang.org/x/exp/jsonrpc2
• Go downgraded to 1.24 for UBI alignment
👋 Welcome to our newest contributor @tgrunnagle! 🥳
🔗 Full changelog: stacklok/toolhive@v0.3.11...v0.4.0
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR was generated by Mend Renovate. View the repository job log.