This release adds 1 notable feature for engineering teams evaluating rollout.
Published 24d
MCP Developer Tools
✓ No known CVEs patched
✓ No known CVEs patched in this version
Topics
ai-agents
anthropic
api-gateway
api-to-mcp
chatgpt
claude
+14 more
database
gemini
graphql
llm-tools
mcp
mcp-gateway
mcp-middleware
mcp-proxy
mcp-server
model-context-protocol
openapi
rest
self-hosted
soap
Affected surfaces
deps
Summary
AI summaryHR WORKS v2 connector adds full read access to German HR/payroll platform.
Full changelog
Highlights
New connector
- HR WORKS v2 — full read access to the German HR/payroll platform: 30 tools across persons, absences, sick leaves, remote work, working times, projects, applicants, holidays, cost centers.
Infrastructure
- Dependabot auto-merge workflow + branch protection on `main` with required CI checks. Patch/minor npm and github-actions PRs now auto-merge once CI is green; majors and runtime bumps are labelled `needs-review` for human triage.
- CI: rxjs duplicate-Observable fix — root override + backend pin to deduplicate rxjs across the workspace, unblocking the @nestjs/cli 11.0.21 bump and future nestjs upgrades.
Dependency bumps merged
- next 16.2.4 → 16.2.6 (security fixes), react patch
- soap 1.7.1 → 1.9.1
- graphql 16.13 → 16.14
- @rekog/mcp-nest 1.9.6 → 1.9.9
- @nestjs/cli 11.0.16 → 11.0.21, @nestjs/testing 11.1.18 → 11.1.19 (via lockfile refresh)
- prisma + @prisma/client (group)
- jest + ts-jest (group)
- @types/* (group)
- eslint + prettier + typescript-eslint (group)
- autoprefixer 10.4.27 → 10.5.0
Code fixes
- Frontend: fix `use-before-define` in `connectors/store/page.tsx` and `settings/license/page.tsx` (eslint-plugin-react-hooks 7.1.x rule).
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About AnythingMCP
All releases →Related context
Beta — feedback welcome: [email protected]