What's changed
- Published npm package
mcp-scorecard@0.5.1.
- Pins transitive Hono resolution to 4.12.27 to resolve production audit advisories while keeping the public CLI and MCP API unchanged.
- Synchronized release metadata across package and MCP server descriptors.
- Self-audit score remains 100/100 in the release gate.
Verification
npm audit --omit=dev --audit-level=moderate: 0 production vulnerabilities.
npm test / prepublishOnly: passed.
npm pack --dry-run: passed.
npm: https://www.npmjs.com/package/mcp-scorecard/v/0.5.1