Tags: tuannvm/mcp-trino
Tags
chore(deps): bump the github-actions group across 1 directory with 5 … …updates (#116) Bumps the github-actions group with 5 updates in the / directory: | Package | From | To | | --- | --- | --- | | [actions/setup-go](https://github.com/actions/setup-go) | `5` | `6` | | [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) | `0.32.0` | `0.33.1` | | [github/codeql-action](https://github.com/github/codeql-action) | `3` | `4` | | [anchore/sbom-action](https://github.com/anchore/sbom-action) | `0.20.5` | `0.20.6` | | [peter-evans/repository-dispatch](https://github.com/peter-evans/repository-dispatch) | `3` | `4` | Updates `actions/setup-go` from 5 to 6 - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](actions/setup-go@v5...v6) Updates `aquasecurity/trivy-action` from 0.32.0 to 0.33.1 - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](aquasecurity/trivy-action@0.32.0...0.33.1) Updates `github/codeql-action` from 3 to 4 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@v3...v4) Updates `anchore/sbom-action` from 0.20.5 to 0.20.6 - [Release notes](https://github.com/anchore/sbom-action/releases) - [Changelog](https://github.com/anchore/sbom-action/blob/main/RELEASE.md) - [Commits](anchore/sbom-action@v0.20.5...v0.20.6) Updates `peter-evans/repository-dispatch` from 3 to 4 - [Release notes](https://github.com/peter-evans/repository-dispatch/releases) - [Commits](peter-evans/repository-dispatch@v3...v4) --- updated-dependencies: - dependency-name: actions/setup-go dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: aquasecurity/trivy-action dependency-version: 0.33.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: github/codeql-action dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions - dependency-name: anchore/sbom-action dependency-version: 0.20.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: peter-evans/repository-dispatch dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Tommy Nguyen <[email protected]>
Merge Upstream (#102) * feat(oauth): Add OIDC discovery endpoint for MCP client support (#13) * feat(oauth): Add OIDC discovery endpoint for MCP client support Signed-off-by: Tommy Nguyen <[email protected]> * refactor(metadata): Comment out jwks_uri to delay implementation Signed-off-by: Tommy Nguyen <[email protected]> --------- Signed-off-by: Tommy Nguyen <[email protected]> Co-authored-by: Tommy Nguyen <[email protected]> * fix(server): replace inline OAuth metadata with shared method call (#14) Signed-off-by: Tommy Nguyen <[email protected]> Co-authored-by: Tommy Nguyen <[email protected]> * fix(server): use MCPURL from OAuth config for 401 challenges (#15) Signed-off-by: Tommy Nguyen <[email protected]> Co-authored-by: Tommy Nguyen <[email protected]> * feat(mcp): add OAuth discovery endpoints for mcp-remote compatibility (#16) Signed-off-by: Tommy Nguyen <[email protected]> Co-authored-by: Tommy Nguyen <[email protected]> * refactor(server): Remove JSON encoding from OAuth unauthorized response (#17) Signed-off-by: Tommy Nguyen <[email protected]> Co-authored-by: Tommy Nguyen <[email protected]> * chore(server): update status endpoint path to /status Signed-off-by: Tommy Nguyen <[email protected]> * fix: Update health check paths to /status in deployment configs Signed-off-by: Tommy Nguyen <[email protected]> * refactor(oauth): add security headers and enhance success page (#18) Signed-off-by: Tommy Nguyen <[email protected]> Co-authored-by: Tommy Nguyen <[email protected]> * fix(mcp): add JSON error response for OAuth 401 unauthorized (#19) * fix(mcp): add JSON error response for OAuth 401 unauthorized Signed-off-by: Tommy Nguyen <[email protected]> * fix(server): update comment for OAuth 401 response Signed-off-by: Tommy Nguyen <[email protected]> * fix(server): add error handling for JSON encoding in OAuth response Signed-off-by: Tommy Nguyen <[email protected]> --------- Signed-off-by: Tommy Nguyen <[email protected]> Co-authored-by: Tommy Nguyen <[email protected]> * Pe 7353 oauth fix 7 (#20) * fix(mcp): add JSON error response for OAuth 401 unauthorized Signed-off-by: Tommy Nguyen <[email protected]> * fix(server): update comment for OAuth 401 response Signed-off-by: Tommy Nguyen <[email protected]> * fix(server): add error handling for JSON encoding in OAuth response Signed-off-by: Tommy Nguyen <[email protected]> * feat(oauth): add CORS headers and handle OPTIONS requests Signed-off-by: Tommy Nguyen <[email protected]> --------- Signed-off-by: Tommy Nguyen <[email protected]> Co-authored-by: Tommy Nguyen <[email protected]> * feat(oauth): Add CORS headers and OPTIONS handling to OAuth handlers (#21) Signed-off-by: Tommy Nguyen <[email protected]> Co-authored-by: Tommy Nguyen <[email protected]> * fix(docs/oauth.md): Add detailed lessons learned for browser OAuth support Signed-off-by: Tommy Nguyen <[email protected]> --------- Signed-off-by: Tommy Nguyen <[email protected]> Co-authored-by: Tommy Nguyen <[email protected]>
fix(oidc): add explicit audience validation in token claims validation ( #100) * fix(oidc): add explicit audience validation in token claims validation Signed-off-by: Tommy Nguyen <[email protected]> * refactor(oauth): Add validation for OIDC issuer and audience during init Signed-off-by: Tommy Nguyen <[email protected]> --------- Signed-off-by: Tommy Nguyen <[email protected]>
PreviousNext