This release fixes issues for SREs watching stability and regressions.
✓ No known CVEs patched in this version
Topics
+13 more
Summary
AI summaryFixed rate‑limit and charge accounting to count a single user action once.
Changes in this release
| Type | Severity | Summary | CVE |
|---|---|---|---|
| Bugfix | Medium |
An MCP tool callback to REST endpoint now counted exactly once for rate-limit and charge accounting. An MCP tool callback to REST endpoint now counted exactly once for rate-limit and charge accounting. Source: llm_adapter@2026-05-21 Confidence: high |
— |
Full changelog
PATCH release on top of v1.33.1.
Fixed
- An MCP tool that calls back into a REST endpoint had that in-process hop counted as a separate request for rate-limit and charge accounting. A single user action is now accounted exactly once at the MCP gate.
Unchanged
- No response schema / wire change — identical output shape.
- MCP surface unchanged: 53 tools, 7 Resources, 3 Prompts.
Tests
- 2417 → 2422 pytest (+5).
No client action required.
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About UPinar/contrastapi
Security intelligence API with 31 MCP tools for CVE/EPSS/KEV lookup, domain recon (DNS/WHOIS/SSL/subdomains/CT logs), IOC/threat intel, OSINT (email/phone/username), and code security scanning (secrets, injection). Free 100 req/hr.
Related context
Related tools
Earlier breaking changes
- v1.33.11 `bulk_sigma_rule_lookup` now costs 1 credit per `rule_id`, changing from flat 1 credit/call.
Beta — feedback welcome: [email protected]