arvindand/maven-tools-mcp

v2.1.1 Breaking

This release includes 1 breaking change for platform teams planning a safe upgrade.

Published 22d MCP Developer Tools

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Topics

ai-tools dependency-management developer-tools docker graalvm gradle

+9 more

java maven maven-central maven-tools mcp mcp-server native-image spring-ai spring-boot

Affected surfaces

deps breaking_upgrade

ReleasePort's take

Light signal

editorial:auto 13d

Spring Boot advanced to 3.5.14 and Spring AI moved to 1.1.6; the temporary MCP SDK BOM override was eliminated, causing direct resolution of MCP SDK 0.18.2.

Why it matters: Upgrade your project to version v2.1.1 now to receive the Boot and AI updates and the corrected dependency resolution; test in development before deploying to production.

Summary

AI summary

Removes temporary MCP SDK BOM override, upgrading Spring Boot and Spring AI.

Changes in this release

Type	Severity	Summary	CVE
Dependency	Medium	Spring Boot upgraded from 3.5.13 to 3.5.14 Spring Boot upgraded from 3.5.13 to 3.5.14 Source: llm_adapter@2026-05-21 Confidence: high	—
Dependency	Medium	Spring AI upgraded from 1.1.4 to 1.1.6 Spring AI upgraded from 1.1.4 to 1.1.6 Source: llm_adapter@2026-05-21 Confidence: high	—
Bugfix	Medium	Logback 1.5.22 pinned for native stdio safety; Boot status-line risk mitigated Logback 1.5.22 pinned for native stdio safety; Boot status-line risk mitigated Source: llm_adapter@2026-05-21 Confidence: high	—
Refactor	Medium	MCP SDK BOM override removed; Spring AI resolves MCP SDK 0.18.2 directly MCP SDK BOM override removed; Spring AI resolves MCP SDK 0.18.2 directly Source: llm_adapter@2026-05-21 Confidence: high	—

Full changelog

Dependency patch release for Spring Boot and Spring AI.

Upgrades Spring Boot from 3.5.13 to 3.5.14.
Upgrades Spring AI from 1.1.4 to 1.1.6.
Removes the temporary MCP SDK BOM override; Spring AI now resolves MCP SDK 0.18.2 directly.
Keeps the Logback 1.5.22 pin in place for native stdio safety while Boot's managed line still exposes the previous status-line risk.

Breaking Changes

Removed temporary MCP SDK BOM override; Spring AI now resolves MCP SDK 0.18.2 directly

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track arvindand/maven-tools-mcp

Get notified when new releases ship.

About arvindand/maven-tools-mcp

Universal Maven Central dependency intelligence for JVM build tools (Maven, Gradle, SBT, Mill). Features bulk operations, version comparison, stability filtering, dependency age analysis, release patterns, and Context7 integration for upgrade guidance.

All releases →

Related context

Related tools

Earlier breaking changes

v3.0.0 Java toolchain upgraded from Java 24 to Java 25 (LTS); builds now require Java 25.

Featured in

2026-W21