Skip to content

fradser/mcp-server-apple-reminders

v1.0.0 Security

This release includes 1 security fix for security teams reviewing exposed deployments.

Published 7mo MCP Developer Tools
✓ No known CVEs patched
Read the diff → Tool health → What is this tool? →
This release patches 1 known CVE

Topics

calendar eventkit macos mcp-server model-context-protocol reminders
+2 more
swift typescript

Affected surfaces

breaking_upgrade

Summary

AI summary

Requires building a native Swift CLI binary before startup, switches imports to ES Modules with .js extensions, and consolidates tools from six to two.

Full changelog

This is a major milestone release that completes the transition to native Swift CLI integration with comprehensive EventKit operations.

What's New

🚀 Complete Swift CLI Integration

  • Native EventKit operations through Swift binary for maximum performance and reliability
  • Dual URL storage strategy (EventKit field + structured notes format)
  • Enhanced Unicode support for international character sets

🛡️ Security & Validation

  • Comprehensive input validation with security-first design patterns
  • URL filtering to prevent SSRF attacks
  • Robust error handling with consistent response formatting

📋 MCP Protocol Compliance

  • Standardized tool definitions with JSON Schema validation
  • Structured prompt templates for guided productivity workflows
  • Enhanced error handling with consistent response formatting

🧪 Quality Assurance

  • 179 passing tests covering all functionality
  • Comprehensive integration testing for Swift CLI operations
  • Enhanced TypeScript type safety throughout the codebase

Technical Highlights

  • Swift Binary: Direct EventKit integration eliminates AppleScript limitations
  • Dual URL Storage: Single URL in EventKit field + multiple URLs in structured notes
  • Unicode Support: Full CJK character support for international users
  • Security: Input validation blocks control characters and malicious URLs

Breaking Changes

  • Requires Swift CLI binary (pnpm build) before server startup
  • ES Modules only - all imports must use .js extensions
  • Simplified tool architecture from 6 tools to 2 action-based tools

Migration Guide

  1. Run pnpm build to compile the Swift binary
  2. Update imports to use .js extensions for TypeScript files
  3. Review tool usage - now unified under reminders and lists tools

Breaking Changes

  • Requires Swift CLI binary (`pnpm build`) before server startup
  • ES Modules only - all imports must use `.js` extensions
  • Simplified tool architecture from 6 tools to 2 action-based tools

Security Fixes

  • Comprehensive input validation blocks control characters and malicious URLs; URL filtering prevents SSRF attacks
View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track fradser/mcp-server-apple-reminders

Get notified when new releases ship.

Sign up free

About fradser/mcp-server-apple-reminders

An MCP server for interacting with Apple Reminders on macOS

All releases →

Related context

Beta — feedback welcome: [email protected]