This release includes 1 security fix for security teams reviewing exposed deployments.
Published 3mo
MCP Developer Tools
✓ No known CVEs patched
This release patches 1 known CVE
Summary
AI summaryMinor fixes and improvements.
Full changelog
What's Changed
- Update sigstore/cosign-installer action to v4 by @renovate[bot] in https://github.com/StacklokLabs/ocireg-mcp/pull/44
- Enable parallel runners for golangci-lint by @JAORMX in https://github.com/StacklokLabs/ocireg-mcp/pull/54
- feat: add pagination, structured content, and tool annotations by @JAORMX in https://github.com/StacklokLabs/ocireg-mcp/pull/58
- fix(deps): update module github.com/mark3labs/mcp-go to v0.44.1 by @renovate[bot] in https://github.com/StacklokLabs/ocireg-mcp/pull/56
- fix(deps): update module github.com/google/go-containerregistry to v0.21.2 by @renovate[bot] in https://github.com/StacklokLabs/ocireg-mcp/pull/57
- chore(deps): update actions/upload-artifact action to v7 by @renovate[bot] in https://github.com/StacklokLabs/ocireg-mcp/pull/59
- chore(deps): update aquasecurity/trivy-action action to v0.34.0 [security] by @renovate[bot] in https://github.com/StacklokLabs/ocireg-mcp/pull/60
- chore(deps): update aquasecurity/trivy-action action to v0.34.2 by @renovate[bot] in https://github.com/StacklokLabs/ocireg-mcp/pull/55
Full Changelog: https://github.com/StacklokLabs/ocireg-mcp/compare/v0.1.0...v0.2.0
Security Fixes
- Update aquasecurity/trivy-action to v0.34.2 — includes security patches
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About StacklokLabs/ocireg-mcp
An SSE-based MCP server that allows LLM-powered applications to interact with OCI registries. It provides tools for retrieving information about container images, listing tags, and more.
Related context
Beta — feedback welcome: [email protected]