Skip to content

PatrickSys/codebase-context

v1.10.0 Security

This release includes 1 security fix for security teams reviewing exposed deployments.

Published 1mo Developer Productivity
✓ No known CVEs patched
Read the diff → Tool health → What is this tool? →
This release patches 1 known CVE

Topics

ai-agents ai-coding claude code-intelligence context-engineering copilot
+14 more
cursor developer-tools evidence-scoring hybrid-search local-first mcp mcp-server model-context-protocol pattern-detection preflight reranking second-brain semantic-search team-memory

Affected surfaces

deps

Summary

AI summary

Added HTTP transport mode with server config support and several analyzers (React, Next.js).

Full changelog

1.10.0 (2026-04-14)

Features

  • add HTTP transport mode alongside stdio (8e97d0f)
  • add HTTP transport mode and server config file support (3c8c273)
  • add react and nextjs analyzers (3da89f9)
  • add server config file support for pre-registering projects (08539c6)
  • eval: add 5-comparator benchmark harness with timing and output flag (999faf7)
  • freeze discovery benchmark contract (1c78171)
  • implement DISC-01 compact/full search modes and SAFE-01 freshness-aware edit gating (059aa0c)
  • map: promote codebase map as primary first-call surface (Phase 7) (328d03b)
  • phase-6: add codebase-context init wizard (#90) (e52cf0d)
  • support per-project analyzer hints (#83) (4441b41)
  • tighten search contract (Phase 8 - DISC-01 + SAFE-01) (164ff14)
  • surface map structural skeleton and search metadata (#95) (8650c0a)

Bug Fixes

  • address greptile P2 review comments (41c252a)
  • align discovery protocol metrics (21c3e43)
  • benchmarks: make all comparator lanes cross-platform on Windows (#97) (6c19628)
  • clean up benchmark MCP sessions (408c248)
  • close Phase 8 review follow-ups (b549be4)
  • config: reject empty roots and invalid ports (912e6f6)
  • deps: patch picomatch audit path (c637bf5)
  • finalize token budget advisory (2df5399)
  • format discovery benchmark sources (b4ab479)
  • guard against unhandled rejections and resource leaks in HTTP transport (e031a56)
  • harden managed MCP session cleanup (fcce4b6)
  • metadata: prevent framework misclassification in codebase detection (#96) (ae649dd)
  • patch vulnerable hono dependencies (fa79e90)
  • prevent zombie MCP processes via handshake timeout + deferred init (#89) (37fd4b9)
  • resolve PR #98 review blockers (396dd66)
  • satisfy lint in index (e218859)
  • search: finalize token budget advisory payload (2d08c89)
  • search: query-aware bestExample, golden file threshold, ONNX thread limits (9cec82a)
  • search: wire SearchResult imports/exports and stabilize map hub selection (#100) (922f9fc)
  • test: update multi-project routing assertions for new map header (adfe8d5)

Security Fixes

  • Patched vulnerable hono dependencies (dep: CVE‑2026‑XXXXX)
View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track PatrickSys/codebase-context

Get notified when new releases ship.

Sign up free

About PatrickSys/codebase-context

Local MCP server that shows AI agents which patterns your team actually uses, what files a change will affect, and when there is not enough context to trust an edit. 30+ languages, fully local.

All releases →

Related context

Beta — feedback welcome: [email protected]