aywengo/kafka-schema-reg-mcp

v2.2.1 Security

This release includes 1 security fix for security teams reviewing exposed deployments.

Published 1mo MCP Data & Storage

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

This release patches 1 known CVE

Topics

apache-kafka claude-desktop cursor docker enterprise kafka

+4 more

mcp mcp-server schema-registry vscode

Summary

AI summary

Address path traversal vulnerability GHSA-58pv-8j8x-9vj2.

Full changelog

Release v2.2.1

[2.2.1] - 2026-04-06

Security

Require jaraco-context>=6.1.0 to address GHSA-58pv-8j8x-9vj2 (path traversal; transitive via FastMCP → keyring stack).

Added

Contributor onboarding: GETTING_STARTED.md and QUICK_REFERENCE.md.
Claude Code project assets under .claude-code/ (configuration, workspace hints, Avro schema templates, skill docs) and related README updates.

Changed

Declare the FastMCP tasks extra in pyproject.toml and requirements.txt so installs consistently include background-task support; add explicit pydocket>=0.18.0 for FastMCP 3.x / constrained install paths.
Demo MCP bridge: bump pinned FastAPI and python-multipart in demo/requirements-bridge.txt.
GitHub Actions: routine version bumps across workflows (artifacts, Docker actions, Helm setup, etc.).
Local unified tests: tests/docker-compose.yml pull_policy adjusted for local image builds.

Fixed

Minor formatting cleanup in tests/fix_registry_modes.py (Black).

For complete version history, see CHANGELOG.md.

Security Fixes

GHSA-58pv-8j8x-9vj2 (path traversal in keyring)

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track aywengo/kafka-schema-reg-mcp

Get notified when new releases ship.

About aywengo/kafka-schema-reg-mcp

A comprehensive Message Control Protocol (MCP) server for Kafka Schema Registry.

All releases →