This release includes 1 security fix for security teams reviewing exposed deployments.
Topics
+2 more
Affected surfaces
ReleasePort's take
Moderate signalVersion v1.7.3 backports lockfile vulnerability fixes and introduces a Docker job gate.
Why it matters: Addresses high‑severity (90) lockfile vulnerabilities affecting CI pipelines; the new Docker job gate enforces gating before deployment.
Summary
AI summaryBackported lockfile vulnerability fixes and added a Docker job gate.
Changes in this release
| Type | Severity | Summary | CVE |
|---|---|---|---|
| Security | Critical |
Backports lockfile vulnerability fixes and adds Docker job gate. Backports lockfile vulnerability fixes and adds Docker job gate. Source: llm_adapter@2026-06-10 Confidence: high |
— |
Full changelog
What's Changed
- release: 1.7.2 by @PaSympa in https://github.com/PaSympa/discord-mcp/pull/49
- chore(deps-dev): bump @types/node from 25.9.1 to 25.9.2 by @dependabot[bot] in https://github.com/PaSympa/discord-mcp/pull/43
- chore(deps-dev): bump typescript-eslint from 8.60.0 to 8.60.1 by @dependabot[bot] in https://github.com/PaSympa/discord-mcp/pull/44
- fix(security): backport lockfile vuln fixes and Docker job gate to main by @PaSympa in https://github.com/PaSympa/discord-mcp/pull/57
Full Changelog: https://github.com/PaSympa/discord-mcp/compare/v1.7.2...v1.7.3
Security Fixes
- Backported lockfile vulnerability fixes and added a Docker job gate to main.
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About PaSympa/discord-mcp
Lightweight multi-guild Discord MCP server with 60+ tools for messages, channels, roles, forums, webhooks, and moderation.
Related context
Beta — feedback welcome: [email protected]