Pantheon-Security/notebooklm-mcp-secure

v2026.2.4 Feature

This release adds 3 notable features for engineering teams evaluating rollout.

Published 3mo MCP Security & Auth

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Topics

ai automation browser-automation claude google llm

+5 more

mcp model-context-protocol notebooklm research typescript

Affected surfaces

auth

Summary

AI summary

Fixed re_auth without show_browser:true which previously destroyed all concurrent session credentials.

Full changelog

Auth Stability Improvements

Changes

Extended state file expiry from 24h to 7 days — Google cookies last 2-4 weeks so daily expiry was causing unnecessary auth prompts
Touch state file on every successful validateWithRetry so the 7-day clock resets on each use rather than from last setup_auth
Block headless re_auth without show_browser:true — calling it headlessly wiped credentials then failed to restore them, destroying auth for all concurrent sessions
Extended retention-engine policy_session from 1 day to 14 days to match

Bug Fix

re_auth called without show_browser:true now returns a clear error instead of destroying credentials.

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track Pantheon-Security/notebooklm-mcp-secure

Get notified when new releases ship.

About Pantheon-Security/notebooklm-mcp-secure

Security-hardened NotebookLM MCP with post-quantum encryption (ML-KEM-768), GDPR/SOC2/CSSF compliance, and 14 security layers. Query Google's Gemini-grounded research from Claude and AI agents.

All releases →

Pantheon-Security/notebooklm-mcp-secure

Summary

Auth Stability Improvements

Changes

Bug Fix

Related context

Related tools