Skip to content

UPinar/contrastapi

v1.33.6 Bugfix

This release fixes issues for SREs watching stability and regressions.

Published 18d MCP Security & Auth
✓ No known CVEs patched
Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Topics

ai-agents ai-security api claude cve security
+13 more
domain-recon email-security email-validation llm-tools mcp mitre-atlas mitre-d3fend model-context-protocol osint sigma-rules threat-intelligence vulnerability-management web-intel

Summary

AI summary

Dropped JSON‑Schema annotation keywords from the tools/list response reducing payload size.

Changes in this release

Performance Medium

tools/list response size reduced from ~586KB to ~295KB (-57%), gzip from ~87KB to ~36KB (-58%)

tools/list response size reduced from ~586KB to ~295KB (-57%), gzip from ~87KB to ~36KB (-58%)

Source: llm_adapter@2026-05-21

Confidence: high
Refactor Low

Dropped JSON-Schema annotation keywords (description, title, examples, default) in MCP tools/list schema

Dropped JSON-Schema annotation keywords (description, title, examples, default) in MCP tools/list schema

Source: granite4.1:30b@2026-05-21-audit

Confidence: low
Full changelog

Follow-up to v1.33.5.

Performance

The MCP tools/list response carried ~586KB of JSON-Schema annotation text (description/title/examples/default) across nested $defs — 86% of a 679KB response. These annotation keywords are now dropped at schema level on every tools/list (fast-path cache + cache-None lazy-rebuild). Raw 679KB -> 295KB (-57%), gzip ~87KB -> ~36KB (-58%).

Keyword-aware: keys inside properties/$defs/definitions/patternProperties are field/model names and are preserved — every field declaration, type, required, and $ref is intact (0 dangling $ref, spec-valid). Wire-only: internal tool objects and tools/call structuredContent are unaffected.

Consumers that read advisory description/title text from the advertised outputSchema will no longer see it; structural validation and structured outputs are unchanged.

Meta

  • Tests: 2437 -> 2439 (regression guard: keyword-named fields survive + prose-stripped + 0-dangling, both emission paths).
  • MCP surface unchanged: 53 tools, 7 Resources, 3 Prompts (no contract change -> MCP Registry republish skipped).
View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track UPinar/contrastapi

Get notified when new releases ship.

Sign up free

About UPinar/contrastapi

Security intelligence API with 31 MCP tools for CVE/EPSS/KEV lookup, domain recon (DNS/WHOIS/SSL/subdomains/CT logs), IOC/threat intel, OSINT (email/phone/username), and code security scanning (secrets, injection). Free 100 req/hr.

All releases →

Related context

Earlier breaking changes

  • v1.33.11 `bulk_sigma_rule_lookup` now costs 1 credit per `rule_id`, changing from flat 1 credit/call.

Beta — feedback welcome: [email protected]