Skip to content

panther-labs/mcp-panther

v2.2.0 Breaking

This release includes 2 breaking changes for platform teams planning a safe upgrade.

Published 5mo MCP Security & Auth
✓ No known CVEs patched
Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Topics

ai security mcp-server security-operations

Affected surfaces

breaking_upgrade

Summary

AI summary

Migrated FastMCP configuration to fastmcp.json and pinned dependency to ~2.14.0, fixing the unexpected 'dependencies' error.

Full changelog

MCP Panther v2.2.0

Note: Users experiencing TypeError: FastMCP.__init__() got an unexpected keyword argument 'dependencies' when running via uvx should upgrade to this release.

This error was caused by an upstream breaking change in FastMCP that deprecated a parameter used by MCP Panther. This release migrates to the new configuration format and pins the FastMCP dependency to prevent similar issues.

Highlights

This release focuses on infrastructure improvements, better defaults for metrics tools, and documentation for production deployments.

Tools

Metrics Improvements (#143)

  • Better default date range: All metrics tools now default to the past week instead of just today, providing more useful data out of the box
  • Renamed tool: get_bytes_processed_per_log_type_and_sourceget_bytes_processed_metrics for consistency
  • Expanded default alert types: get_severity_alert_metrics now includes both Rule and Policy alerts by default (previously Rule only)

Infrastructure

FastMCP 2.14.0 Upgrade

  • Updated FastMCP dependency to ~=2.14.0 for improved stability and performance
  • Migrated from deprecated dependencies param to new fastmcp.json configuration
  • Pinned minor version to avoid unexpected breaking changes from future releases

New Configuration: fastmcp.json

Dependencies are now declared in src/mcp_panther/fastmcp.json, which follows FastMCP's new pattern for declaring runtime dependencies.

Documentation

Version Pinning Instructions

Added clear guidance for pinning versions in production environments:

Docker:

"ghcr.io/panther-labs/mcp-panther:v2.2.0"

UVX:

"args": ["mcp-panther==2.2.0"]

Links to version registries now included in README for easy reference.

Development

Improved Developer Setup

  • Added development installation instructions to src/README.md
  • Updated integration tests for new FastMCP error message format

Migration Guide

For users upgrading from v2.1.x

Tool rename: get_bytes_processed_per_log_type_and_source is now get_bytes_processed_metrics. Update any scripts or prompts referencing the old name.

Recommended: Pin your installation to a specific version for production stability using the new documentation in the README.

Installation

Docker (Recommended)

docker pull ghcr.io/panther-labs/mcp-panther:v2.2.0

UVX

uvx mcp-panther==2.2.0

PyPI

pip install mcp-panther==2.2.0

Breaking Changes

  • Removed `dependencies` keyword argument from FastMCP.__init__ and migrated declaration to src/mcp_panther/fastmcp.json
  • Pinned FastMCP dependency to ~2.14.0
View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track panther-labs/mcp-panther

Get notified when new releases ship.

Sign up free

About panther-labs/mcp-panther

MCP server that enables security professionals to interact with Panther's SIEM platform using natural language for writing detections, querying logs, and managing alerts.

All releases →

Related context

Beta — feedback welcome: [email protected]