This release fixes issues for SREs watching stability and regressions.
✓ No known CVEs patched in this version
Topics
+4 more
Summary
AI summaryFixed silent failure of publish-binaries job producing standalone Bun executables.
Full changelog
CI-only release
No source changes since v1.36.2. This release re-triggers the publish-binaries job against a corrected workflow.
What broke in v1.36.2
The publish-binaries job (compiles standalone Bun executables for each platform) silently failed because bun install --frozen-lockfile rejected the @biomejs/biome 2.4.14 → 2.4.15 drift in package.json. The bump went through npm install which doesn't touch bun.lock, so the lockfile fell behind by exactly one devDep version.
Fix
- Dropped
--frozen-lockfilefrom the compile-onlypublish-binariesjob. The dependency tree is already validated bypublish-npmearlier in the workflow (npm ciagainstpackage-lock.json). - Bumped Bun runner 1.3.11 → 1.3.13.
npm consumers
@overpod/[email protected] is byte-identical to v1.36.2 except for package.json version + this changelog entry. Users on v1.36.2 do not need to update.
Standalone binary consumers
This release will produce the missing mcp-telegram-{linux,darwin,windows}-{x64,arm64} and mcp-telegram-login-* binaries that v1.36.2 didn't.
Full Changelog: https://github.com/mcp-telegram/mcp-telegram/compare/v1.36.2...v1.36.3
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About overpod/mcp-telegram
Telegram MCP server via MTProto/GramJS — 20 tools for reading chats, searching messages, downloading media, managing contacts. QR code login, npx zero-install. Hosted version at mcp-telegram.com.
Related context
Beta — feedback welcome: [email protected]