Skip to content

fix(deps): update toolhive#788

Open
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/toolhive
Open

fix(deps): update toolhive#788
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/toolhive

Conversation

@renovate

@renovate renovate Bot commented Jul 17, 2026

Copy link
Copy Markdown
Contributor

This PR contains the following updates:

Package Change Age Confidence
github.com/stacklok/toolhive v0.38.0v0.40.0 age confidence
github.com/stacklok/toolhive-core v0.0.28v0.0.30 age confidence

Release Notes

stacklok/toolhive (github.com/stacklok/toolhive)

v0.40.0

Compare Source

🚀 Toolhive v0.40.0 is live!

This release hardens Virtual MCP authorization end-to-end — explicit HTTP 403 denials, a unified authz gate, and complete capability pagination — while laying the groundwork for agentic auth (RFC 8693 token exchange, the MCP 2026-07-28 revision) and moving MCP protocol handling onto the official modelcontextprotocol/go-sdk. It also fixes network isolation silently breaking --network host workloads and closes an SSRF gap in upstream Dynamic Client Registration.

🆕 New Features

  • The embedded authorization server gains an RFC 8693 OAuth 2.0 Token Exchange grant handler, so an agent can exchange a user's token for a delegated token carrying both the user (sub) and the acting agent (act.sub) — the foundation for agentic delegation (not yet wired into the server) (#​5822).
  • ToolHive's request-parsing layer now understands the upcoming stateless MCP 2026-07-28 ("Modern") revision — a revision classifier, the Mcp-Method/Mcp-Name header and _meta vocabulary, and server/discover/subscriptions/listen authz registration — dormant until later slices wire it into proxy routing, with no change to existing traffic (#​5834).

🐛 Bug Fixes

  • Virtual MCP now returns an explicit HTTP 403 (with a JSON-RPC error code 403 and a "denied by authorization policy" message) when a Cedar policy denies a tools/call, resources/read, or prompts/get, instead of a misleading -32602 "not found" at HTTP 200 — and records the denial as denied in the audit log (#​5841).
  • thv run --network host no longer silently loses outbound connectivity: network isolation (on by default) is dropped for host/none networking with a warning, and explicitly combining --isolate-network=true with --network host now fails fast with an actionable error instead of starting a broken workload (#​5794).
  • The Virtual MCP authz gate is hardened so the gate decision, the enforced decision, and the backend forward all derive from a single argument decode, and a backend tool named execute_tool_script now fails loudly instead of being silently shadowed by the code-mode virtual tool (#​5850).
  • Virtual MCP capability discovery now follows list pagination cursors to exhaustion, so backends advertising more than one page (>1000 tools, resources, or prompts) no longer have their extra capabilities silently dropped from routing and clients (#​5851).
  • Upstream Dynamic Client Registration (DCR) discovery and registration calls are now routed through a private-IP-guarded HTTP client, closing an SSRF vector (CWE-918) — safe by default and honoring the upstream's existing allow_private_ips setting (#​5826).
  • Multi-upstream embedded authservers with two or more OAuth2 DCR upstreams requesting the same scopes now register a distinct client per upstream instead of silently reusing the first upstream's credentials, fixing failed or misattributed authorization (#​5824).

🧹 Misc

  • Migrated MCP protocol handling from mark3labs/mcp-go to the go-sdk-backed toolhive-core/mcpcompat compatibility shim (a pure, atomic import swap with no call-site logic changes), moving ToolHive onto the official modelcontextprotocol/go-sdk. Note: the stdio bridge currently forwards only progress/message notifications, so tools/list_changed and similar notifications are dropped — dynamic-capability servers may show stale lists until clients re-list (#​5729).
  • Resolved temp-dir symlinks in the plugin adapter tests so task test passes on macOS (/var/private/var); product code is unchanged (#​5849).

📦 Dependencies

Module Version
github.com/stacklok/toolhive-core v0.0.29
github.com/stacklok/toolhive-catalog v0.20260716.0
github/codeql-action 7188fc3
golang.org/x/exp/jsonrpc2 9ea1abe
Full commit log

What's Changed

Full Changelog: stacklok/toolhive@v0.39.0...v0.40.0

v0.39.0

Compare Source

What's Changed

Full Changelog: stacklok/toolhive@v0.38.0...v0.39.0

stacklok/toolhive-core (github.com/stacklok/toolhive-core)

v0.0.30

Compare Source

Add per-session prompt support (SessionWithPrompts) so consumers can inject prompts per session that are served by both prompts/list and prompts/get. See #​172.

v0.0.29

Compare Source

What's Changed

New Contributors

Full Changelog: stacklok/toolhive-core@v0.0.28...v0.0.29


Configuration

📅 Schedule: (UTC)

  • Branch creation
    • Between 12:00 AM and 03:59 AM, only on Monday (* 0-3 * * 1)
  • Automerge
    • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.


  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@toolhive-release-app

Copy link
Copy Markdown
Contributor

🛡️ Skill Security Scan Results

⚠️ No skills were scanned in this PR.

@toolhive-release-app

Copy link
Copy Markdown
Contributor

🔒 MCP Security Scan Results

⚠️ No MCP servers were scanned in this PR.

@renovate
renovate Bot force-pushed the renovate/toolhive branch from 0e4645c to 8e40578 Compare July 17, 2026 14:48
@renovate
renovate Bot force-pushed the renovate/toolhive branch from 8e40578 to 2a4ef2d Compare July 17, 2026 17:53
@renovate

renovate Bot commented Jul 17, 2026

Copy link
Copy Markdown
Contributor Author

ℹ️ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

  • 2 additional dependencies were updated

Details:

Package Change
golang.org/x/exp/event v0.0.0-20260603202125-055de637280b -> v0.0.0-20260611194520-c48552f49976
golang.org/x/exp/jsonrpc2 v0.0.0-20260611194520-c48552f49976 -> v0.0.0-20260709172345-9ea1abe57597

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants