zhangpanda/gomcp

v1.2.0 Breaking

This release includes breaking changes for platform teams planning a safe upgrade.

Published 1mo MCP Developer Tools

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Topics

ai claude cursor gin go grpc

+5 more

kiro mcp mcp-server model-context-protocol openapi

Affected surfaces

deps

Summary

AI summary

Minor fixes and improvements.

Full changelog

What's Changed

Added

SECURITY.md with vulnerability reporting policy
Dependabot for automated dependency updates (Go modules + GitHub Actions)
CodeQL static analysis workflow (weekly + on push)
CHANGELOG.md following Keep a Changelog format

Fixed

Removed useless modTimes initialization in watchDir (CodeQL go/useless-assignment-to-local)

Changed

Upgraded actions/checkout from v5 to v6 (via Dependabot)
Upgraded github/codeql-action from v3 to v4 (via Dependabot)
Enhanced glama.json with license, repository, author, tools, resources, and prompts metadata

Full Changelog: https://github.com/zhangpanda/gomcp/compare/v1.1.0...v1.2.0

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track zhangpanda/gomcp

Get notified when new releases ship.

About zhangpanda/gomcp

A Gin-like framework for building MCP servers in Go. Struct-tag auto schema, middleware chain, auth, tool groups, adapters for Gin/OpenAPI/gRPC, async tasks, Inspector UI.

All releases →