Skip to content

v0.4.1 - Security Patches & CI Fixes

Choose a tag to compare

@jeremylongshore jeremylongshore released this 04 Jan 22:22

What's Changed

Security

  • fix(security): Patch high-severity qs vulnerability (CVE-2025-15284) via npm override
  • fix(security): Update @modelcontextprotocol/sdk to ^1.25.1
  • fix(security): Update vitest to ^4.0.16
  • fix(security): Add js-yaml override (>=4.1.1) for remaining vulnerability
  • All npm audit vulnerabilities resolved (0 vulnerabilities)

CI/CD

  • fix(docker): Add build dependencies for native modules (python3, make, g++, libsecret-dev)
  • fix(gmail): Resolve googleapis type conflicts by using type alias
  • fix(deploy): Skip Cloud Run deploy step (MCP uses stdio transport, not HTTP)
  • fix(test): Add vitest.config.ts for proper test file discovery
  • fix(build): Add type declarations for Node.js globals in adapters

Tests

  • All 23 tests passing in CI

Full Changelog: v0.4.0...v0.4.1