You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
SSE: DNS rebinding protection enabled — SseServerTransport now receives TransportSecuritySettings(enable_dns_rebinding_protection=True), validating Host and Origin headers against an allowlist. This closes the DNS rebinding attack vector reported in #92.
Default allowed hosts are localhost:{port} and 127.0.0.1:{port}. Operators deploying behind a reverse proxy can extend the list via MCP_SSE_ALLOWED_HOSTS (comma-separated).
Graceful fallback for older mcp versions that predate transport_security.
Documentation
New Security Considerations note explaining that SSE has no built-in authentication and showing how to front it with an nginx reverse proxy (with MCP_SSE_HOST=127.0.0.1 and MCP_SSE_ALLOWED_HOSTS).
MCP_SSE_ALLOWED_HOSTS added to the .env example block.