You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This commit was created on GitHub.com and signed with GitHub’s verified signature.
Fixed
All MISP requests now go through undici's own fetch instead of the Node.js global fetch. Passing an npm-undici Agent to the runtime-bundled global fetch fails outright when the two undici versions disagree on the dispatcher interface (with undici 8 on Node 22 every request died with fetch failed before reaching the network), which surfaced as the server never contacting the MISP API (#2).
Network errors now include the underlying cause chain and a targeted hint instead of a bare fetch failed: TLS certificate rejections point at MISP_VERIFY_SSL, DNS failures report the unresolvable hostname, and refused or unreachable connections call out the URL, port, and firewall path.
Changed
README now opens with a what / why / how-it-differs lead and a copy-paste npx -y misp-mcp MCP client config, surfaces the website link near the top, and adds "Why not the MISP web UI or raw API?" and "What misp-mcp is not" sections. The full tool list is re-verified against the server source (36 tools, 3 resources, 3 prompts).
Added
Maintainer-health files: SECURITY.md (private reporting, scope, and the API-key trust model), CONTRIBUTING.md, CODE_OF_CONDUCT.md, a CHANGELOG.md, GitHub issue forms (bug, feature, plus a config.yml that disables blank issues and routes security and MISP-platform questions off-issue), and a pull request template with a no-PII / content-guard checklist.