This release includes breaking changes for platform teams planning a safe upgrade.
✓ No known CVEs patched in this version
Summary
AI summaryAdded analyze_url_with_urlscan_io, scan_hash_with_virustotal tools, expert SOC analyst prompt, AbuseFinder email analysis support, and macOS code signing.
Full changelog
• New analyze_url_with_urlscan_io tool for comprehensive URL threat intelligence analysis
• New scan_hash_with_virustotal tool for file hash reputation checking
• Added expert SOC analyst prompt
• Enhanced AbuseFinder integration now supports email analysis in addition to IP, domain, FQDN, and URL
• Updated to rmcp 0.3.0 and cortex-client 0.1.1 for improved reliability
• Restructured codebase with modularized architecture and separate tool modules
• Added library + binary structure for better reusability
• Implemented configurable retry mechanisms with max_retries parameter for all tools
• Enhanced error handling with detailed diagnostic information and better timeout management
• All tools now accept optional analyzer_name parameter for flexible analyzer selection
• Improved observable validation with better error messages
• Enhanced test suite with integration tests and mock Cortex server
• Added support for MCP 2024-11-05 protocol with prompts integration
• Better tool discovery with improved schema generation
• Added code signing and notarization for macOS binaries - eliminates security warnings and allows direct execution
without manual overrides
• Comprehensive documentation updates with visual examples
• No breaking changes - all existing functionality remains compatible with optional new parameters
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About gbrigandi/mcp-server-cortex
A Rust-based MCP server to integrate Cortex, enabling observable analysis and automated security responses through AI.
Related context
Beta — feedback welcome: [email protected]