Skip to content

mrjoshuak/godoc-mcp

v1.0.0 Security

This release includes 1 security fix for security teams reviewing exposed deployments.

Published 3mo MCP Developer Tools
✓ No known CVEs patched
Read the diff → Tool health → What is this tool? →
This release patches 1 known CVE

Topics

ai-agents ai-tools anthropic claude documentation go
+4 more
llm llm-tools mcp model-context-protocol

Summary

AI summary

New HTTP transports (SSE and Streamable HTTP) were added.

Full changelog

What's New

  • Docker image — available at ghcr.io/mrjoshuak/godoc-mcp with CI publishing (linux/amd64 + arm64)
  • HTTP transports — SSE and Streamable HTTP via --transport sse / --transport http
  • Upgraded mcp-go — v0.5.1 to v0.44.0 (MCP spec 2025-11-25)
  • Security — cmd_flags allowlist, exec timeouts
  • Reliability — per-request temp dir cleanup, bounded cache with eviction, signal handling
  • Error handling — tool errors returned as tool results so LLMs can self-correct
  • Tests — 12 unit and integration tests

Install

go install github.com/mrjoshuak/[email protected]

Docker

docker pull ghcr.io/mrjoshuak/godoc-mcp:latest

Security Fixes

  • cmd_flags now use an allowlist and exec operations have timeouts
View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track mrjoshuak/godoc-mcp

Get notified when new releases ship.

Sign up free

About mrjoshuak/godoc-mcp

Token-efficient Go documentation server that provides AI assistants with smart access to package docs and types without reading entire source files

All releases →

Related context

Beta — feedback welcome: [email protected]