DigiCatalyst-Systems/dep-diff-mcp

v0.1.2 Maintenance

This release keeps dependencies and maintenance posture current for teams operating this tool.

Published 1mo MCP Security & Auth

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Topics

changelog cve dependabot dependency-management mcp model-context-protocol

+4 more

npm pypi security typescript

Summary

AI summary

Minor fixes and improvements.

Full changelog

Added

Test suite (tests/analyzer.test.ts) with 39 unit tests covering classifyBump, extractGitHubRepo, extractBreakingChanges, extractMigrationLinks, and extractReleaseExcerpts. Uses Node's built-in node:test runner plus tsx — zero new dependencies.
npm test script.
.github/workflows/ci.yml runs npm ci && npm run build && npm test on every push to main and every PR.

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track DigiCatalyst-Systems/dep-diff-mcp

Get notified when new releases ship.

About DigiCatalyst-Systems/dep-diff-mcp

Translates a lockfile diff (npm, PyPI) into a human-readable upgrade plan. Point it at a Dependabot PR and get back semver classification, breaking changes from GitHub release notes, CVEs fixed in range, migration links, and a per-package recommendation. Bulk tool ranks up to 50 changes by risk (security > caution > review > likely-safe > safe)

All releases →

DigiCatalyst-Systems/dep-diff-mcp

Summary

Added

Related context

Related tools